$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa File: b5e54a86-ed38-4b92-882c-c19087637bc3.roa (raw, json) Hash identifier: raVbdNpKvuNxSG9yGZLwv3vYSBftbRpOcbZm84fXYYI= Subject key identifier: DB:D8:E5:DD:89:E1:25:F9:B9:5B:A1:FC:02:70:83:CB:88:7A:E6:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7869AF41226401AACF9DF1B737872F4D4E85F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa Signing time: Fri 20 Jun 2025 00:01:12 +0000 ROA not before: Fri 20 Jun 2025 00:01:12 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:69:af:41:22:64:01:aa:cf:9d:f1:b7:37:87:2f:4d:4e:85:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:01:12 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=0e1c4f654de4ed037bd881e45cbd6b9ba92ce4f0ab2ea2b48a5083251e4c983d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2c:3d:6f:3f:c2:28:b8:2a:e5:1a:ed:ac:21: 1c:9d:ae:0a:cf:bd:41:2f:96:5a:bf:43:37:21:ad: ae:c0:52:2d:85:c8:c6:32:4d:e4:9d:db:30:c9:74: f5:89:bb:60:af:78:de:7b:a3:47:3a:99:34:af:5a: a3:79:0a:96:af:37:e3:be:c3:28:7e:3e:56:70:8f: c9:b4:48:25:77:4f:11:db:53:95:6c:6c:b9:4f:34: 50:56:30:92:64:91:a0:64:61:3b:e0:ff:29:50:bd: 8e:49:1a:dc:36:ea:63:b5:ea:8e:15:44:ba:62:56: 9f:6a:a9:dc:af:dc:26:87:6d:a8:37:56:3b:7c:f3: 59:af:49:03:26:e8:64:f2:5b:ae:8a:13:c5:b9:77: c2:bf:fb:f9:d7:5a:50:09:75:3c:7b:e4:78:b5:13: ec:d7:93:41:9d:cf:71:60:93:67:37:45:fc:c9:09: 01:81:b4:c2:34:5b:4f:2b:2e:05:00:a2:16:7c:73: fc:2b:d2:e2:99:09:51:2f:6c:d3:a1:7d:4e:10:49: d1:54:cd:57:d8:ad:f2:df:80:7a:10:96:b2:45:f7: da:1c:1b:c3:07:f9:63:49:51:a1:d9:00:92:a7:28: 04:f6:74:3e:7a:ec:2e:e2:2a:5f:72:85:0a:fd:66: 9d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D8:E5:DD:89:E1:25:F9:B9:5B:A1:FC:02:70:83:CB:88:7A:E6:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:b7:d5:2a:eb:a9:df:c5:ad:59:c0:02:88:ec:9e:9c:1a:71: 10:c6:65:f2:5b:ec:35:e5:3a:45:43:3e:ac:66:36:c7:b0:b0: 58:ca:ee:cd:45:40:a5:68:98:04:a1:df:0b:95:dd:7a:b7:f0: 3a:6c:25:2d:43:00:71:a9:ae:52:2e:3f:69:ba:47:0f:b7:4f: 28:5a:1b:87:a2:34:7a:7a:e4:75:f8:b3:c8:0b:fd:5b:73:f9: f7:dd:49:70:1d:ca:44:79:c4:43:d8:5f:90:20:35:27:18:6e: 05:05:d1:d7:6d:db:7e:77:6f:57:64:08:f3:73:76:fb:0f:f9: d6:94:a0:cd:8a:f1:ca:e6:70:d9:95:6c:f3:6b:3a:f6:d4:cb: b0:54:f2:5f:6b:23:cc:9c:ea:3f:a1:73:ea:20:37:7c:f7:0d: 28:e1:b4:34:92:b3:80:d7:6b:1c:d8:76:f9:4c:5e:ad:9c:8e: 4f:54:65:29:da:38:0a:54:97:93:2d:a9:37:23:67:c2:de:90: a2:f6:3b:56:67:2a:5d:0a:90:e1:3c:8c:d9:d5:f0:ae:44:d8: dd:49:c8:a7:3d:74:75:da:83:2f:65:d3:c1:28:86:06:d2:e3: b3:c8:71:09:ab:12:4d:6a:37:72:f7:af:c3:7c:3f:a5:f1:de: b0:a9:51:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITeGmvQSJkAarPnfG3N4cvTU6F+DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MjAwMDAxMTJaFw0yNTA3MjUyMzU5NTla MHoxSTBHBgNVBAUTQDBlMWM0ZjY1NGRlNGVkMDM3YmQ4ODFlNDVjYmQ2YjliYTky Y2U0ZjBhYjJlYTJiNDhhNTA4MzI1MWU0Yzk4M2QxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANIsPW8/wii4KuUa7awhHJ2uCs+9QS+WWr9DNyGtrsBSLYXI xjJN5J3bMMl09Ym7YK943nujRzqZNK9ao3kKlq83477DKH4+VnCPybRIJXdPEdtT lWxsuU80UFYwkmSRoGRhO+D/KVC9jkka3DbqY7XqjhVEumJWn2qp3K/cJodtqDdW O3zzWa9JAyboZPJbrooTxbl3wr/7+ddaUAl1PHvkeLUT7NeTQZ3PcWCTZzdF/MkJ AYG0wjRbTysuBQCiFnxz/CvS4pkJUS9s06F9ThBJ0VTNV9it8t+AehCWskX32hwb wwf5Y0lRodkAkqcoBPZ0PnrsLuIqX3KFCv1mnTMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTb2OXdieEl+blbofwCcIPLiHrmHTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYjVlNTRhODYtZWQzOC00YjkyLTg4MmMtYzE5MDg3NjM3YmMzLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGiZcDANBgkqhkiG9w0BAQsFAAOCAQEAPbfVKuup38WtWcACiOyenBpxEMZl 8lvsNeU6RUM+rGY2x7CwWMruzUVApWiYBKHfC5XderfwOmwlLUMAcamuUi4/abpH D7dPKFobh6I0enrkdfizyAv9W3P5991JcB3KRHnEQ9hfkCA1JxhuBQXR123bfndv V2QI83N2+w/51pSgzYrxyuZw2ZVs82s69tTLsFTyX2sjzJzqP6Fz6iA3fPcNKOG0 NJKzgNdrHNh2+UxerZyOT1RlKdo4ClSXky2pNyNnwt6QovY7VmcqXQqQ4TyM2dXw rkTY3UnIpz10ddqDL2XTwSiGBtLjs8hxCasSTWo3cvevw3w/pfHesKlRKw== -----END CERTIFICATE-----Generated at Sun Jun 29 08:58:31 2025 by rpki-client