$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa File: 0cafe4c1-68f8-4701-986b-5ec06431a231.roa (raw, json) Hash identifier: XFYPTUcYo8T/El4QXqEkK1Qkv700UKTcrYVswElLOhE= Subject key identifier: 23:88:55:60:2B:FC:7C:22:E6:68:98:10:FF:45:1F:44:C5:61:39:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EE10920259A246D7D1D9FF6C5F0E02FA8CBB101 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa Signing time: Fri 25 Apr 2025 00:51:59 +0000 ROA not before: Fri 25 Apr 2025 00:51:59 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e1:09:20:25:9a:24:6d:7d:1d:9f:f6:c5:f0:e0:2f:a8:cb:b1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:51:59 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6c74a4776f53b42b181a7ad4e50513c056d28db19cc4465bc728c51ebec329e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:ab:87:b8:3a:dc:47:70:fe:f9:01:a7:aa: 53:03:19:51:a5:3f:53:ee:ea:c6:cc:ff:82:9d:a3: 1e:99:bd:26:e0:37:6e:7a:6f:dc:32:8c:f8:59:5f: f2:c0:ba:03:2e:16:fc:35:8d:97:0c:86:03:84:99: ff:d0:f0:5e:fe:46:d6:b7:d6:71:c7:06:7c:17:8a: 09:8f:12:10:7b:fb:82:9d:3c:00:83:2b:37:b0:51: 1f:98:19:d8:e2:5b:22:ed:4c:a2:87:7f:95:49:af: 46:e6:7f:5f:50:ee:e2:68:a7:7d:22:9c:35:3f:9e: 0c:3a:da:cc:1f:71:53:de:f0:c8:51:fb:ea:c4:03: fb:9d:e1:24:a1:70:05:dd:6b:b0:47:65:6d:b3:38: 19:b8:08:3a:26:ac:1d:d6:34:a1:09:1e:40:44:9f: a4:21:e0:07:07:30:b3:63:12:54:6f:bf:11:d1:4e: 17:4d:19:f9:da:17:27:4f:59:f6:1d:cf:c6:d5:e7: 0f:c1:05:92:55:da:c2:8e:85:84:32:3d:a5:b8:ce: d0:72:d1:69:93:af:3f:1e:2d:42:21:69:b4:3d:d1: f3:a9:d4:12:38:1b:74:91:f5:da:06:9c:09:e1:fc: a1:d3:ed:e9:3d:b8:d8:84:ef:7b:e0:e8:e8:c8:b5: eb:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:88:55:60:2B:FC:7C:22:E6:68:98:10:FF:45:1F:44:C5:61:39:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:1d:45:fe:0e:30:3d:88:77:40:21:ac:db:9c:f1:76:5f:c6: b7:2e:36:ed:ba:04:6d:6b:c3:1e:c3:3a:89:0e:42:94:e5:fd: ef:39:b0:b9:be:3d:f1:40:32:97:2b:99:f5:6c:a3:76:b6:58: b6:b0:30:47:cc:84:99:17:2c:07:fd:35:2f:df:9a:b5:b8:8e: 13:c6:5d:39:31:26:e4:3b:04:6e:ba:15:58:d4:c0:5f:51:16: da:d5:0d:07:6c:03:01:79:bb:2e:b7:f8:e3:9d:cd:b4:09:99: fd:d5:9e:6d:b9:35:ef:87:68:a2:24:a1:7a:bb:a2:2a:14:08: eb:81:d3:a9:a4:7f:cf:6d:a5:14:f1:e0:f4:07:bc:a9:aa:a0: 43:40:fb:60:13:1f:b0:54:d0:22:8c:31:69:5d:3b:0c:e0:a9: 84:07:e3:34:51:7d:6c:41:97:86:8d:0d:82:c6:fd:b2:ad:b2: 70:c9:d5:d5:e4:d2:bd:46:b4:b5:6b:b3:0d:a3:2b:e2:77:22: f0:31:26:ee:13:71:99:14:d4:f6:ec:11:18:ef:65:84:6a:17: db:f2:eb:77:44:6d:cc:71:c1:9a:12:87:9f:44:3c:ae:cd:40: fb:21:d3:69:c1:84:f1:bf:f8:c8:02:60:7a:22:5b:1a:6d:4e: 10:ca:19:51 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPuEJICWaJG19HZ/2xfDgL6jLsQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA1MTU5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yzc0YTQ3NzZmNTNiNDJiMTgxYTdhZDRlNTA1MTNjMDU2 ZDI4ZGIxOWNjNDQ2NWJjNzI4YzUxZWJlYzMyOWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMSauHuDrcR3D++QGnqlMDGVGlP1Pu6sbM/4Kdox6ZvSbg N256b9wyjPhZX/LAugMuFvw1jZcMhgOEmf/Q8F7+Rta31nHHBnwXigmPEhB7+4Kd PACDKzewUR+YGdjiWyLtTKKHf5VJr0bmf19Q7uJop30inDU/ngw62swfcVPe8MhR ++rEA/ud4SShcAXda7BHZW2zOBm4CDomrB3WNKEJHkBEn6Qh4AcHMLNjElRvvxHR ThdNGfnaFydPWfYdz8bV5w/BBZJV2sKOhYQyPaW4ztBy0WmTrz8eLUIhabQ90fOp 1BI4G3SR9doGnAnh/KHT7ek9uNiE73vg6OjItes/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUI4hVYCv8fCLmaJgQ/0UfRMVhOZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYWZlNGMxLTY4ZjgtNDcwMS05ODZiLTVlYzA2NDMxYTIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GTANBgkqhkiG9w0BAQsFAAOCAQEAWh1F/g4wPYh3QCGs25zxdl/Gty42 7boEbWvDHsM6iQ5ClOX97zmwub498UAylyuZ9WyjdrZYtrAwR8yEmRcsB/01L9+a tbiOE8ZdOTEm5DsEbroVWNTAX1EW2tUNB2wDAXm7Lrf4453NtAmZ/dWebbk174do oiSheruiKhQI64HTqaR/z22lFPHg9Ae8qaqgQ0D7YBMfsFTQIowxaV07DOCphAfj NFF9bEGXho0Ngsb9sq2ycMnV1eTSvUa0tWuzDaMr4nci8DEm7hNxmRTU9uwRGO9l hGoX2/Lrd0RtzHHBmhKHn0Q8rs1A+yHTacGE8b/4yAJgeiJbGm1OEMoZUQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:49 2025 by rpki-client