$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25948a2b-e584-4f1c-b0bf-a7f467c73fa5.roa File: 25948a2b-e584-4f1c-b0bf-a7f467c73fa5.roa (raw, json) Hash identifier: Y4w9B/Ar7/RPburYmSrQFytnlgsfjp25o+me9P6zbnA= Subject key identifier: 8F:83:E9:5B:5D:8B:7A:0E:5E:CF:5A:B0:FF:B7:67:FB:F6:33:47:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72511EE95DA6AC14A7CD43436E9D8FDFB512C144 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25948a2b-e584-4f1c-b0bf-a7f467c73fa5.roa Signing time: Fri 25 Apr 2025 16:23:00 +0000 ROA not before: Fri 25 Apr 2025 16:23:00 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:51:1e:e9:5d:a6:ac:14:a7:cd:43:43:6e:9d:8f:df:b5:12:c1:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 16:23:00 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2e56f56c88929d709a781a4fba21ffc1c500ca80b7c724d259511292a4cc5ad0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:20:29:45:93:50:5d:39:b0:ea:8a:20:a8:36: 79:2c:27:86:37:19:a2:e3:07:10:1c:31:31:11:f7: 02:fd:5d:dc:9c:61:14:b1:c5:44:6c:75:81:85:12: 5a:18:56:a8:c5:31:68:72:2a:17:4c:93:14:82:dc: 33:2b:c9:1d:6f:6d:7e:24:28:de:b4:4c:04:71:8a: ad:f8:f3:ae:87:10:9c:88:8f:a1:1d:6d:7a:67:76: e2:58:b4:87:fe:c3:cc:06:b4:95:22:ce:c9:12:ca: 90:fc:2a:c3:e1:e3:90:a5:46:d7:c1:de:be:6e:bb: 1a:69:a2:c8:5e:c7:8d:4b:f3:f5:9b:1d:86:13:70: 27:2a:2c:d5:a2:1a:98:28:95:be:f3:1a:37:db:8b: 21:7c:05:39:7b:6d:f6:f9:e4:40:f8:64:33:1c:3a: 96:a6:15:c5:65:37:df:d7:2d:74:44:6a:f3:5a:cd: 9b:40:30:0e:0b:d1:d4:6c:4b:a7:4b:40:3c:ff:0b: 9f:b8:e3:94:02:1a:1c:53:26:dd:06:cd:ec:01:92: 35:3f:29:87:cb:1b:4f:da:bc:c8:6f:c8:4d:cd:98: 2f:8f:60:f1:a3:0d:8e:f9:74:73:83:13:89:63:89: 8f:84:6e:fa:8e:bb:4d:5a:4b:32:16:23:c2:91:28: 96:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:83:E9:5B:5D:8B:7A:0E:5E:CF:5A:B0:FF:B7:67:FB:F6:33:47:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25948a2b-e584-4f1c-b0bf-a7f467c73fa5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:84:36:ea:5f:ec:9f:3b:db:16:e6:1b:f6:86:3c:e7:fb:38: 00:6c:f9:04:2e:3e:d2:7c:02:60:de:f5:2e:ae:70:ff:1f:bf: a1:75:7b:8a:02:ae:bd:6d:68:68:07:0b:01:2d:92:27:e7:5a: 18:d1:3f:63:67:9b:ec:9f:de:e0:31:fd:85:b6:ca:1e:cf:00: d4:1f:3f:a3:0d:25:e8:95:79:09:42:9b:0c:f9:76:f9:19:65: 13:b3:dd:ca:fc:02:a1:f1:b4:f4:e6:a1:ac:7c:79:45:b6:e7: bc:04:29:78:15:ef:1a:fd:8b:86:8d:b5:a7:16:18:00:0f:a4: 90:d2:b8:b3:56:ad:bf:5e:ea:8d:2a:8a:2f:73:c4:b3:9d:05: ca:aa:78:6b:03:dd:66:4c:e8:57:e2:a3:c8:f8:68:14:4c:64: 88:72:40:c4:90:7c:2a:b6:7f:34:2e:bb:ee:8f:d5:c5:8d:a5: fd:a6:52:4c:19:1d:22:cc:f2:57:70:e5:5c:1b:db:56:c8:01: d9:78:0c:5b:9a:5b:fb:8d:e5:34:a4:13:3b:e2:b1:a0:d4:05: 23:2e:74:b8:2d:3b:a6:cd:77:0e:ab:8f:db:cf:b7:a6:8c:75: ec:7c:84:1e:44:33:a9:a5:4a:ef:06:d8:5b:7d:9c:c6:c5:ef: 40:28:d1:43 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUclEe6V2mrBSnzUNDbp2P37USwUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTYyMzAwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTU2ZjU2Yzg4OTI5ZDcwOWE3ODFhNGZiYTIxZmZjMWM1 MDBjYTgwYjdjNzI0ZDI1OTUxMTI5MmE0Y2M1YWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+IClFk1BdObDqiiCoNnksJ4Y3GaLjBxAcMTER9wL9Xdyc YRSxxURsdYGFEloYVqjFMWhyKhdMkxSC3DMryR1vbX4kKN60TARxiq34866HEJyI j6EdbXpnduJYtIf+w8wGtJUizskSypD8KsPh45ClRtfB3r5uuxpposhex41L8/Wb HYYTcCcqLNWiGpgolb7zGjfbiyF8BTl7bfb55ED4ZDMcOpamFcVlN9/XLXREavNa zZtAMA4L0dRsS6dLQDz/C5+445QCGhxTJt0GzewBkjU/KYfLG0/avMhvyE3NmC+P YPGjDY75dHODE4ljiY+EbvqOu01aSzIWI8KRKJY5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUj4PpW12Leg5ez1qw/7dn+/YzR8wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1OTQ4YTJiLWU1ODQtNGYxYy1iMGJmLWE3ZjQ2N2M3M2ZhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4DzANBgkqhkiG9w0BAQsFAAOCAQEAo4Q26l/snzvbFuYb9oY85/s4AGz5 BC4+0nwCYN71Lq5w/x+/oXV7igKuvW1oaAcLAS2SJ+daGNE/Y2eb7J/e4DH9hbbK Hs8A1B8/ow0l6JV5CUKbDPl2+RllE7PdyvwCofG09OahrHx5RbbnvAQpeBXvGv2L ho21pxYYAA+kkNK4s1atv17qjSqKL3PEs50Fyqp4awPdZkzoV+KjyPhoFExkiHJA xJB8KrZ/NC677o/VxY2l/aZSTBkdIszyV3DlXBvbVsgB2XgMW5pb+43lNKQTO+Kx oNQFIy50uC07ps13DquP28+3pox17HyEHkQzqaVK7wbYW32cxsXvQCjRQw== -----END CERTIFICATE-----Generated at Sat Apr 26 19:27:03 2025 by rpki-client