$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa File: 36717466-2259-4e4e-aeb2-b21e139325b8.roa (raw, json) Hash identifier: AFzDqYB3ASPeCtuueEh0ExxckVt83VWFHHiO4p61T5g= Subject key identifier: 00:4D:82:DB:DF:FA:EC:E1:55:43:F3:15:11:0E:F6:43:B6:F7:C8:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: EB97E01C4CFD0790613DDA807A623EC01AE345 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa Signing time: Wed 23 Apr 2025 00:41:22 +0000 ROA not before: Wed 23 Apr 2025 00:41:22 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.56.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: eb:97:e0:1c:4c:fd:07:90:61:3d:da:80:7a:62:3e:c0:1a:e3:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:41:22 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=4a4591dc85f90b11070dbacf98214c06b957dc5405009a85b10bb031c8165fc5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:79:97:4c:2f:a3:14:78:be:6c:c7:57:0b:e2: ca:5d:f3:c5:32:22:b4:2e:91:71:30:80:1f:a4:0f: c9:09:8b:5a:a7:14:c9:c8:04:37:58:1f:86:19:ad: c9:e3:ba:3b:73:df:e6:a2:80:29:9d:1e:c5:5c:27: 36:79:72:04:6c:ca:23:3c:1d:0b:2b:f0:f9:c8:fc: c6:71:77:c9:c5:07:45:ce:12:59:1f:89:13:8b:d3: 27:18:37:cd:9b:34:d7:5e:a9:8a:9d:4f:b0:b8:93: 7b:98:42:f4:f6:16:00:28:bc:85:29:f1:43:b3:64: 4d:0b:15:d5:02:c1:4f:6b:c3:2b:33:e4:1a:3e:5c: 6d:e3:d4:d9:f7:2b:b2:aa:5a:a5:a3:3f:71:a2:e4: b9:e5:53:47:93:a3:d3:07:0a:28:9f:f0:28:19:76: 87:7c:5b:eb:27:01:c7:81:67:d7:35:bb:6e:7c:7a: 6f:c7:54:d3:ef:6a:f3:37:15:8d:2e:80:51:59:6e: 36:11:3b:11:ff:ac:ab:d1:b5:a2:01:0f:0e:52:1e: bd:60:78:00:9f:b0:ca:2f:6b:ca:ed:df:28:fb:51: ed:6b:95:ff:b8:ce:3a:3d:b0:a8:06:af:f8:5d:cd: 24:90:49:fa:ac:a5:b8:e6:53:e1:4f:9a:e4:c8:b9: 37:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4D:82:DB:DF:FA:EC:E1:55:43:F3:15:11:0E:F6:43:B6:F7:C8:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36717466-2259-4e4e-aeb2-b21e139325b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.0.0/19 Signature Algorithm: sha256WithRSAEncryption 91:ba:38:cb:a0:b4:6c:b9:46:67:04:91:4a:40:86:8e:08:de: f9:02:e8:60:3a:06:8f:bf:57:5f:a0:03:19:59:b4:66:32:5b: 25:9f:68:10:eb:f0:ea:b4:d8:86:7e:76:e2:e7:2e:43:02:40: 2e:21:88:a1:82:b9:94:8e:70:87:f4:45:06:ac:d4:5c:d7:22: 2c:d7:85:41:10:b3:57:74:a6:14:36:bc:c9:cd:6b:66:6f:27: 29:8d:55:f9:d0:b5:c0:31:11:11:d0:b0:14:05:d2:c3:01:70: ba:a0:c6:86:cb:2d:02:8c:8c:d1:4a:0e:08:6a:7f:cf:3b:9c: 88:46:0f:ce:86:d7:13:ba:a2:89:cb:39:06:9b:69:a0:31:1e: 33:86:32:4d:85:7b:08:42:ac:10:c8:01:dc:1b:f0:d6:eb:15: 62:f9:08:9d:0d:bf:72:5c:b6:a2:b3:d3:40:7b:d9:9f:33:d5: 31:84:93:5d:ca:ea:ff:db:8f:18:89:03:e3:f7:61:3a:80:15: 00:de:9a:94:e6:f0:d7:57:60:87:10:a2:a6:a8:d1:f7:88:6c: 7f:0c:5f:54:76:e9:45:eb:df:fb:4c:e3:09:e2:a2:3d:44:c1: bf:1d:5c:e4:2a:51:d6:1f:ca:78:1f:cc:f2:e9:79:53:76:88: bd:df:08:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAOuX4BxM/QeQYT3agHpiPsAa40UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA0MTIyWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTQ1OTFkYzg1ZjkwYjExMDcwZGJhY2Y5ODIxNGMwNmI5 NTdkYzU0MDUwMDlhODViMTBiYjAzMWM4MTY1ZmM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVeZdML6MUeL5sx1cL4spd88UyIrQukXEwgB+kD8kJi1qn FMnIBDdYH4YZrcnjujtz3+aigCmdHsVcJzZ5cgRsyiM8HQsr8PnI/MZxd8nFB0XO ElkfiROL0ycYN82bNNdeqYqdT7C4k3uYQvT2FgAovIUp8UOzZE0LFdUCwU9rwysz 5Bo+XG3j1Nn3K7KqWqWjP3Gi5LnlU0eTo9MHCiif8CgZdod8W+snAceBZ9c1u258 em/HVNPvavM3FY0ugFFZbjYROxH/rKvRtaIBDw5SHr1geACfsMova8rt3yj7Ue1r lf+4zjo9sKgGr/hdzSSQSfqspbjmU+FPmuTIuTetAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAE2C29/67OFVQ/MVEQ72Q7b3yC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2NzE3NDY2LTIyNTktNGU0ZS1hZWIyLWIyMWUxMzkzMjViOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOAAwDQYJKoZIhvcNAQELBQADggEBAJG6OMugtGy5RmcEkUpAho4I3vkC 6GA6Bo+/V1+gAxlZtGYyWyWfaBDr8Oq02IZ+duLnLkMCQC4hiKGCuZSOcIf0RQas 1FzXIizXhUEQs1d0phQ2vMnNa2ZvJymNVfnQtcAxERHQsBQF0sMBcLqgxobLLQKM jNFKDghqf887nIhGD86G1xO6oonLOQabaaAxHjOGMk2FewhCrBDIAdwb8NbrFWL5 CJ0Nv3JctqKz00B72Z8z1TGEk13K6v/bjxiJA+P3YTqAFQDempTm8NdXYIcQoqao 0feIbH8MX1R26UXr3/tM4wnioj1Ewb8dXOQqUdYfyngfzPLpeVN2iL3fCNo= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:03 2025 by rpki-client