$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa File: 356faa82-a0da-4902-ac5d-0346855caaf1.roa (raw, json) Hash identifier: 444ID+K1sDWPxlqoJcdFwA2I8i9T7eXNPDaIb8tPj/Q= Subject key identifier: E3:49:47:CF:61:6B:38:F3:E8:32:94:A9:49:08:D3:12:33:24:0F:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DBECEA8F6AB1CE275596E6B04884B7E97C20B23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa Signing time: Wed 23 Apr 2025 00:31:34 +0000 ROA not before: Wed 23 Apr 2025 00:31:34 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.60.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:be:ce:a8:f6:ab:1c:e2:75:59:6e:6b:04:88:4b:7e:97:c2:0b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:31:34 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=8f78b2a11a011e4aef343cb6e39577f6971af80c01e5985e03d853144870b362, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cf:55:90:d0:b6:be:b0:65:d8:cc:6b:d2:a6: 0e:3c:6b:27:2e:95:fa:33:c5:b2:77:bb:0f:93:d4: 1f:2a:17:99:81:e7:c8:87:9f:e3:64:4b:90:e9:1c: 70:06:32:82:ef:ff:9e:ae:82:5d:61:5e:ca:41:5c: e9:70:b2:91:b7:cf:2a:6f:e3:a7:aa:c4:b4:bb:6c: db:74:a7:b4:d4:6c:df:a8:b2:c9:f5:b8:ca:fc:ea: 68:60:dd:eb:3f:33:42:a3:38:18:44:1f:79:85:04: 9a:f6:68:cd:ab:6e:d3:d5:16:67:40:8e:56:10:56: d1:42:c8:4a:d8:26:c5:64:41:37:b2:68:ea:eb:d2: 5d:ed:cf:08:64:67:7d:d4:6c:74:ba:d9:94:25:9a: a5:4c:7e:52:9a:7a:d5:b9:36:58:31:e5:2f:1b:d5: c0:8f:e0:fe:ad:c7:f8:9d:f2:1f:1d:41:fe:66:93: ae:0b:96:15:e0:6e:43:4b:5a:73:34:58:aa:84:8c: be:1a:3a:82:1e:f1:5a:6c:65:f2:3a:6e:ca:43:68: 28:be:ed:a3:ab:0b:fb:ea:a1:4b:84:1c:dc:e9:25: df:f9:7f:30:b9:ff:06:cf:23:64:55:7b:1f:41:03: 74:16:e8:ee:2c:ea:b1:06:fa:a8:41:51:1f:7a:f5: b0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:47:CF:61:6B:38:F3:E8:32:94:A9:49:08:D3:12:33:24:0F:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.60.0.0/15 Signature Algorithm: sha256WithRSAEncryption 87:a2:bf:51:1d:fe:4f:9c:e6:f0:27:91:66:4e:1c:1f:5b:04: 9c:83:5f:1d:36:1e:f2:81:0e:23:eb:80:38:6c:b1:1e:fe:ff: a1:ea:cf:36:b4:bd:e9:5e:ee:5c:66:99:7a:61:c5:87:4d:8d: 7e:19:5c:41:83:27:24:0b:51:0b:dd:93:d6:cc:ad:b4:f6:2b: 10:40:17:5c:95:bc:71:ed:d5:04:f9:45:fc:63:77:70:d1:e1: 1b:73:94:fb:bd:fa:36:da:e8:d8:94:ca:be:26:e2:0c:3b:d9: f1:69:01:26:34:3f:02:9c:a1:fc:f8:40:a8:1c:5d:ed:fb:86: 23:fd:f1:41:26:a2:ef:04:59:ff:fa:ec:79:bd:31:29:cd:eb: 95:2c:54:42:f2:b0:ce:27:4b:81:a5:fd:62:5a:c0:06:d1:92: de:49:dc:24:28:eb:bf:f8:c1:74:ea:c0:83:57:ca:30:ce:f1: 45:50:d6:e9:91:40:8e:e0:3b:07:56:d6:7f:2a:8b:86:e5:1e: 5f:8f:67:0d:96:44:6f:a9:0d:04:d2:90:6f:f0:b5:d0:04:6b: d6:c7:a3:ee:d0:fe:f3:c3:a8:3e:33:a5:0a:e1:dc:28:8a:94: c7:17:5c:2c:af:e7:ab:81:e9:79:f3:38:19:85:3b:6a:24:8f: 23:a8:ec:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTb7OqParHOJ1WW5rBIhLfpfCCyMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMTM0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Zjc4YjJhMTFhMDExZTRhZWYzNDNjYjZlMzk1NzdmNjk3 MWFmODBjMDFlNTk4NWUwM2Q4NTMxNDQ4NzBiMzYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRz1WQ0La+sGXYzGvSpg48ayculfozxbJ3uw+T1B8qF5mB 58iHn+NkS5DpHHAGMoLv/56ugl1hXspBXOlwspG3zypv46eqxLS7bNt0p7TUbN+o ssn1uMr86mhg3es/M0KjOBhEH3mFBJr2aM2rbtPVFmdAjlYQVtFCyErYJsVkQTey aOrr0l3tzwhkZ33UbHS62ZQlmqVMflKaetW5Nlgx5S8b1cCP4P6tx/id8h8dQf5m k64LlhXgbkNLWnM0WKqEjL4aOoIe8VpsZfI6bspDaCi+7aOrC/vqoUuEHNzpJd/5 fzC5/wbPI2RVex9BA3QW6O4s6rEG+qhBUR969bAbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU40lHz2FrOPPoMpSpSQjTEjMkDxMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NmZhYTgyLWEwZGEtNDkwMi1hYzVkLTAzNDY4NTVjYWFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENPDANBgkqhkiG9w0BAQsFAAOCAQEAh6K/UR3+T5zm8CeRZk4cH1sEnINf HTYe8oEOI+uAOGyxHv7/oerPNrS96V7uXGaZemHFh02NfhlcQYMnJAtRC92T1syt tPYrEEAXXJW8ce3VBPlF/GN3cNHhG3OU+736Ntro2JTKvibiDDvZ8WkBJjQ/Apyh /PhAqBxd7fuGI/3xQSai7wRZ//rseb0xKc3rlSxUQvKwzidLgaX9YlrABtGS3knc JCjrv/jBdOrAg1fKMM7xRVDW6ZFAjuA7B1bWfyqLhuUeX49nDZZEb6kNBNKQb/C1 0ARr1sej7tD+88OoPjOlCuHcKIqUxxdcLK/nq4HpefM4GYU7aiSPI6jsvA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:33 2025 by rpki-client