$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa File: 0f928fc8-8614-4113-b84d-7aa32406a477.roa (raw, json) Hash identifier: 1RafeE6hy/6Oadd3GzXR1xcj3czZHXU0irNF3VccW+Q= Subject key identifier: CD:A5:13:5B:F7:6E:BC:6B:75:18:7A:5A:76:6B:E2:D1:73:97:0A:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4852CAD6046A155A6222E38EC3CA74D4C0400E47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa Signing time: Tue 08 Apr 2025 00:20:27 +0000 ROA not before: Tue 08 Apr 2025 00:20:27 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:52:ca:d6:04:6a:15:5a:62:22:e3:8e:c3:ca:74:d4:c0:40:0e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:20:27 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=fb591d504e0bf8302dd92e808f65602a58b3dbdc7e62df7411ff056aa6033649, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a4:55:66:03:3d:fa:74:04:a4:bf:6d:97:09: 4e:2d:ab:8c:21:cc:11:e4:5e:c9:90:0f:c9:b3:a3: 21:d5:da:a5:03:a1:2d:8c:a5:f1:68:94:ea:9c:5d: 35:5f:b1:bf:27:20:09:2e:30:19:92:bf:72:54:b7: b1:1a:28:7a:3d:58:06:76:80:61:ff:61:5a:e0:60: 14:18:fc:c2:26:b4:76:24:9a:2f:1d:91:9f:32:03: 8a:d4:82:58:ba:cc:0c:c7:60:bd:f7:cf:88:ba:f1: b6:df:1c:9e:85:84:52:b8:4d:cf:0c:13:cb:67:fb: 95:0b:ad:bd:51:46:ce:7a:ba:de:9e:7c:fc:8f:e7: 13:24:7b:87:8d:a1:6a:56:28:c0:dc:f1:23:0b:eb: 2f:f3:37:45:7e:a3:17:d7:7a:1c:2c:6d:72:af:d0: 01:db:32:96:bb:cc:5b:69:49:50:aa:3d:85:ab:fc: 14:22:fe:3e:36:40:40:88:2f:e4:63:03:75:99:93: 4b:59:54:c6:92:16:14:18:f8:63:23:e2:dd:fa:53: 60:18:67:1f:f5:7e:d8:6f:05:20:f9:26:e8:bd:68: 85:7b:9f:66:21:c7:65:6e:61:5e:de:2a:bc:f3:e9: fd:15:01:6e:db:a5:09:ab:c6:db:8c:cd:fb:f6:32: 1a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A5:13:5B:F7:6E:BC:6B:75:18:7A:5A:76:6B:E2:D1:73:97:0A:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption b2:8b:4a:cb:08:59:45:3d:e5:93:11:f7:6f:c1:34:bc:53:ee: cd:96:68:52:75:0b:28:ee:15:21:2c:c3:48:54:99:bb:84:ae: cc:1a:28:44:23:b1:86:28:d1:60:15:c0:48:d1:6e:d0:5a:1c: 76:1d:ec:3d:0e:d6:20:3b:cd:e2:82:54:3f:f9:f2:73:82:af: 62:6f:a3:9d:85:aa:92:90:7e:4d:c1:24:86:e6:ca:dd:f4:e5: 84:de:a8:e9:a4:5c:ac:22:ff:c3:05:06:3f:77:03:e6:8a:9a: 91:c6:69:a1:35:59:9a:e8:25:a6:77:74:71:71:63:cb:f4:25: db:ae:40:6e:1b:46:da:df:f0:18:42:29:98:85:f5:10:58:34: a9:0f:a1:43:39:1e:88:2d:1b:3e:38:d7:00:c8:64:8c:c4:2e: e3:a7:43:bf:82:a6:98:16:a3:18:bf:c7:d9:4f:f3:22:25:8e: 61:70:0f:e4:0a:12:fc:41:61:34:ba:fe:c4:14:8f:54:66:34: 53:d6:78:06:0b:c6:7a:be:1f:89:c0:27:18:b7:6b:0c:a7:cd: 94:45:98:e2:79:bc:76:85:24:19:63:e7:52:f7:95:aa:a0:0a: 92:41:2f:ae:1c:95:e0:cf:89:6b:e9:f0:ad:e9:28:ea:8f:c8: ae:cb:29:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSFLK1gRqFVpiIuOOw8p01MBADkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAyMDI3WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjU5MWQ1MDRlMGJmODMwMmRkOTJlODA4ZjY1NjAyYTU4 YjNkYmRjN2U2MmRmNzQxMWZmMDU2YWE2MDMzNjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtpFVmAz36dASkv22XCU4tq4whzBHkXsmQD8mzoyHV2qUD oS2MpfFolOqcXTVfsb8nIAkuMBmSv3JUt7EaKHo9WAZ2gGH/YVrgYBQY/MImtHYk mi8dkZ8yA4rUgli6zAzHYL33z4i68bbfHJ6FhFK4Tc8ME8tn+5ULrb1RRs56ut6e fPyP5xMke4eNoWpWKMDc8SML6y/zN0V+oxfXehwsbXKv0AHbMpa7zFtpSVCqPYWr /BQi/j42QECIL+RjA3WZk0tZVMaSFhQY+GMj4t36U2AYZx/1fthvBSD5Jui9aIV7 n2Yhx2VuYV7eKrzz6f0VAW7bpQmrxtuMzfv2MhqBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzaUTW/duvGt1GHpadmvi0XOXCiEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmOTI4ZmM4LTg2MTQtNDExMy1iODRkLTdhYTMyNDA2YTQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2BzANBgkqhkiG9w0BAQsFAAOCAQEAsotKywhZRT3lkxH3b8E0vFPuzZZo UnULKO4VISzDSFSZu4SuzBooRCOxhijRYBXASNFu0Focdh3sPQ7WIDvN4oJUP/ny c4KvYm+jnYWqkpB+TcEkhubK3fTlhN6o6aRcrCL/wwUGP3cD5oqakcZpoTVZmugl pnd0cXFjy/Ql265AbhtG2t/wGEIpmIX1EFg0qQ+hQzkeiC0bPjjXAMhkjMQu46dD v4KmmBajGL/H2U/zIiWOYXAP5AoS/EFhNLr+xBSPVGY0U9Z4BgvGer4ficAnGLdr DKfNlEWY4nm8doUkGWPnUveVqqAKkkEvrhyV4M+Ja+nwreko6o/Irssp2Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:14 2025 by rpki-client