$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa File: 38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa (raw, json) Hash identifier: sHgY0HdTz2cYHowujuIzT5f46lw8GR5Hc9G+U3bmzTg= Subject key identifier: 1D:AC:A9:5A:BE:54:54:16:17:44:A9:18:B1:E5:78:27:B9:DD:CE:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 128A8270221B078F89FE0C03491B584E1F2AAE53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa Signing time: Wed 09 Apr 2025 00:21:10 +0000 ROA not before: Wed 09 Apr 2025 00:21:10 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:8a:82:70:22:1b:07:8f:89:fe:0c:03:49:1b:58:4e:1f:2a:ae:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:21:10 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=5e13419a37bbf4c4fd242207e34a47041aef6962f9260d1d4fcd3bad82030c61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:52:da:de:ba:95:97:4d:01:3e:21:2e:82:3a: f7:43:86:fd:5d:6e:68:84:1e:bd:4e:4c:76:62:48: c1:47:22:6d:75:14:4f:bc:40:e8:f7:53:f4:e7:3f: 11:12:7b:29:db:66:f8:ec:b1:09:3d:f5:90:1d:ff: cc:9d:a2:17:57:b6:f5:82:1f:bc:81:78:6a:9a:67: 98:63:bd:82:65:b6:41:7e:59:08:b1:e7:45:0b:e3: 66:87:84:8d:f0:0e:01:9c:58:41:f5:1b:fa:2f:46: e5:c3:e1:74:80:96:ae:f0:76:08:00:65:be:d5:a5: ec:22:0d:de:1c:87:c8:aa:9a:1f:d2:dd:33:ab:3e: e8:98:2d:e3:40:08:e2:d1:bd:4c:18:89:75:b1:5d: 13:11:ab:86:ee:d1:bf:74:04:68:63:ff:61:1e:da: 33:d2:0f:b4:be:24:47:f7:fa:90:01:76:80:84:12: dc:aa:a9:14:a9:a6:7e:e5:16:e5:de:00:59:1f:75: d2:04:88:e6:e5:53:88:9e:49:38:ea:ea:db:88:d4: 51:f9:4e:47:20:43:4a:d0:4e:a1:df:d5:99:97:d0: 50:11:f7:ba:a5:b0:71:15:f7:6b:f3:88:91:0e:6d: 30:4d:42:40:8b:00:75:b2:54:d7:7d:51:c0:4f:ef: 2d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AC:A9:5A:BE:54:54:16:17:44:A9:18:B1:E5:78:27:B9:DD:CE:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:20:34:73:c3:da:7b:5c:56:b5:85:8c:29:9d:2a:8b:ea:b3: 5f:ca:f5:49:08:4b:82:f7:86:f0:53:5f:f9:f2:f9:f3:06:3f: a6:73:2a:88:41:aa:7b:33:c4:d4:cc:40:e2:91:e9:0d:ea:fe: 83:0c:04:a3:2c:85:55:93:71:d9:b1:4f:cb:e2:68:4a:c4:7e: 8d:53:ef:f6:fd:5e:43:5a:6b:22:8c:f2:3f:09:7d:6e:75:ff: 53:49:22:c8:e7:29:cd:6d:65:ea:7e:25:2f:69:1d:9d:6f:74: 49:cb:3c:29:23:87:b6:04:db:28:24:11:5a:de:2b:c4:7d:d3: 34:30:c6:2e:32:da:af:45:1e:c9:9e:a7:ee:db:53:36:dd:b3: 24:65:da:6a:f5:1e:b5:70:65:d1:b5:72:de:c8:12:a8:8f:2c: 15:36:18:f2:bd:56:e9:e5:73:9f:9e:3b:26:fa:59:bf:88:23: 13:57:3b:51:38:ea:20:58:d5:2c:59:18:84:eb:b2:a8:c6:21: cd:5e:5a:40:7b:f4:c6:25:6d:c7:54:ec:fa:fb:c0:31:6c:11: e0:fa:82:7c:fc:2c:d9:88:33:2e:31:04:2d:a4:52:b0:a6:17: 3d:0e:25:51:12:0d:79:e6:88:ee:bc:79:c9:02:9a:a2:28:3c: 20:60:8f:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEoqCcCIbB4+J/gwDSRtYTh8qrlMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAyMTEwWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTEzNDE5YTM3YmJmNGM0ZmQyNDIyMDdlMzRhNDcwNDFh ZWY2OTYyZjkyNjBkMWQ0ZmNkM2JhZDgyMDMwYzYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/UtreupWXTQE+IS6COvdDhv1dbmiEHr1OTHZiSMFHIm11 FE+8QOj3U/TnPxESeynbZvjssQk99ZAd/8ydohdXtvWCH7yBeGqaZ5hjvYJltkF+ WQix50UL42aHhI3wDgGcWEH1G/ovRuXD4XSAlq7wdggAZb7VpewiDd4ch8iqmh/S 3TOrPuiYLeNACOLRvUwYiXWxXRMRq4bu0b90BGhj/2Ee2jPSD7S+JEf3+pABdoCE EtyqqRSppn7lFuXeAFkfddIEiOblU4ieSTjq6tuI1FH5TkcgQ0rQTqHf1ZmX0FAR 97qlsHEV92vziJEObTBNQkCLAHWyVNd9UcBP7y1TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHaypWr5UVBYXRKkYseV4J7ndzlwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4ZTBhMWViLTMwMzQtNDEwYi05MGUzLWUxOWZmYjQ4ZmMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4IzANBgkqhkiG9w0BAQsFAAOCAQEAxSA0c8Pae1xWtYWMKZ0qi+qzX8r1 SQhLgveG8FNf+fL58wY/pnMqiEGqezPE1MxA4pHpDer+gwwEoyyFVZNx2bFPy+Jo SsR+jVPv9v1eQ1prIozyPwl9bnX/U0kiyOcpzW1l6n4lL2kdnW90Scs8KSOHtgTb KCQRWt4rxH3TNDDGLjLar0UeyZ6n7ttTNt2zJGXaavUetXBl0bVy3sgSqI8sFTYY 8r1W6eVzn547JvpZv4gjE1c7UTjqIFjVLFkYhOuyqMYhzV5aQHv0xiVtx1Ts+vvA MWwR4PqCfPws2YgzLjEELaRSsKYXPQ4lURINeeaI7rx5yQKaoig8IGCP/Q== -----END CERTIFICATE-----Generated at Sat Apr 26 16:30:15 2025 by rpki-client