$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa File: 48843fd0-701f-458d-8038-49a4eae8ba8e.roa (raw, json) Hash identifier: kdIndqVrCgrT7on277AQFV65Ph0TkhaCyqJPUKFJ+dY= Subject key identifier: 40:C0:B7:3B:8A:FC:36:0F:7D:56:BD:82:35:51:A9:AE:56:DA:CC:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3054F2AE374B4C67C02ACAAE1F9327D039450B64 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa Signing time: Fri 25 Apr 2025 18:53:21 +0000 ROA not before: Fri 25 Apr 2025 18:53:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:54:f2:ae:37:4b:4c:67:c0:2a:ca:ae:1f:93:27:d0:39:45:0b:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 18:53:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=14fb5e34fa0d7c994c9df409a359c9d8b8a5f782f1e1862df6dbf256a9ab4805, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:34:c7:03:e6:b8:f7:c2:24:46:0c:b4:f4:d1: 70:ee:e3:3b:85:1f:87:49:eb:e7:cf:ef:fb:04:b7: 19:e7:00:6c:0b:a9:70:8e:33:f9:17:f9:4c:45:b7: d2:95:4a:03:d3:e6:8e:b3:39:f6:e9:0d:d2:6d:4c: 86:51:87:19:a8:bf:97:98:2f:94:20:07:9f:04:20: 52:28:75:6a:50:46:6d:29:15:81:5f:1f:8b:6d:9a: 10:8a:ed:d9:16:76:49:45:de:0b:89:bf:d7:f0:3b: 28:f7:26:91:21:09:4c:e3:52:29:80:13:83:59:e5: 44:29:25:fc:05:13:65:05:6e:a7:f1:b9:99:6e:f9: 2a:4e:ec:df:ae:26:f4:94:8c:bd:cb:1e:82:95:84: bc:1f:a0:9d:7e:71:10:49:95:49:74:a7:0a:3c:21: e0:f5:4e:a6:83:19:18:8e:8f:98:f3:b9:95:d4:54: 21:4f:36:ee:bb:4c:94:9f:f8:89:a9:e0:94:45:99: 6a:70:81:d3:2b:8d:03:07:1d:1d:44:e5:f8:83:d9: c2:0a:60:6c:9e:05:00:41:0a:49:f5:4b:7a:00:cc: 33:b0:ec:99:65:99:70:02:16:08:da:5a:f0:87:fa: 91:25:d8:f2:c9:84:40:57:dd:93:28:c6:2f:6d:95: 22:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C0:B7:3B:8A:FC:36:0F:7D:56:BD:82:35:51:A9:AE:56:DA:CC:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:12:c8:c6:34:1e:55:08:9f:68:74:92:fc:d1:f9:61:44:43: 1e:6c:0a:af:57:44:af:19:e1:ce:f0:35:8d:ee:10:c1:9f:6c: cb:2b:ab:09:5b:cc:2c:0b:0f:41:93:c0:10:56:f2:72:4d:38: 11:60:3b:74:9f:7a:95:b1:93:b6:c3:20:11:9c:17:8d:a3:0f: 04:ae:c8:4d:23:d0:8e:47:13:84:66:dd:93:d0:b6:d3:23:40: 92:60:2f:4a:a2:75:a4:c5:3a:b2:ef:cb:f9:23:53:ce:7b:d9: 98:3a:ab:1e:ff:60:35:b6:33:94:a4:de:7f:f8:bc:7c:00:c8: 9a:c2:26:3a:f5:d1:10:58:d8:df:3f:f4:9d:c6:d4:c4:24:90: 53:31:3c:93:fe:54:75:42:a3:bf:43:fe:99:4e:dc:95:9e:d3: fc:15:e4:5f:57:ca:89:1a:b2:3c:69:fd:05:fc:af:fa:6e:f6: b5:f1:a8:a7:e1:7f:0e:bd:d0:68:0c:53:b5:a0:1d:d5:3a:29: 9c:7d:58:1d:b4:01:f1:7b:0e:b5:00:ef:1d:5f:5d:73:fa:e4: 86:df:72:85:dd:32:39:f6:4c:12:3a:e4:64:7a:fe:36:76:b3: 23:60:69:e4:76:d6:a4:d9:76:5b:44:0d:d0:ca:d4:2e:74:5e: 2e:27:53:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMFTyrjdLTGfAKsquH5Mn0DlFC2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTg1MzIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGZiNWUzNGZhMGQ3Yzk5NGM5ZGY0MDlhMzU5YzlkOGI4 YTVmNzgyZjFlMTg2MmRmNmRiZjI1NmE5YWI0ODA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBNMcD5rj3wiRGDLT00XDu4zuFH4dJ6+fP7/sEtxnnAGwL qXCOM/kX+UxFt9KVSgPT5o6zOfbpDdJtTIZRhxmov5eYL5QgB58EIFIodWpQRm0p FYFfH4ttmhCK7dkWdklF3guJv9fwOyj3JpEhCUzjUimAE4NZ5UQpJfwFE2UFbqfx uZlu+SpO7N+uJvSUjL3LHoKVhLwfoJ1+cRBJlUl0pwo8IeD1TqaDGRiOj5jzuZXU VCFPNu67TJSf+Imp4JRFmWpwgdMrjQMHHR1E5fiD2cIKYGyeBQBBCkn1S3oAzDOw 7JllmXACFgjaWvCH+pEl2PLJhEBX3ZMoxi9tlSI1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQMC3O4r8Ng99Vr2CNVGprlbazJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4ODQzZmQwLTcwMWYtNDU4ZC04MDM4LTQ5YTRlYWU4YmE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4SjANBgkqhkiG9w0BAQsFAAOCAQEAsBLIxjQeVQifaHSS/NH5YURDHmwK r1dErxnhzvA1je4QwZ9syyurCVvMLAsPQZPAEFbyck04EWA7dJ96lbGTtsMgEZwX jaMPBK7ITSPQjkcThGbdk9C20yNAkmAvSqJ1pMU6su/L+SNTznvZmDqrHv9gNbYz lKTef/i8fADImsImOvXREFjY3z/0ncbUxCSQUzE8k/5UdUKjv0P+mU7clZ7T/BXk X1fKiRqyPGn9Bfyv+m72tfGop+F/Dr3QaAxTtaAd1TopnH1YHbQB8XsOtQDvHV9d c/rkht9yhd0yOfZMEjrkZHr+NnazI2Bp5HbWpNl2W0QN0MrULnReLidT2Q== -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:13 2025 by rpki-client