$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa File: 48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa (raw, json) Hash identifier: pBxfEkAZkOsNtUnEhm3deY9dZNDN5GNTia5j73uo3dA= Subject key identifier: 61:5A:B2:EF:12:0D:2C:2F:1F:25:79:BF:1D:15:A7:7D:1E:C8:D5:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 411E4743CB097074CEC253B1BF188C067D090745 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa Signing time: Fri 25 Apr 2025 00:52:16 +0000 ROA not before: Fri 25 Apr 2025 00:52:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1e:47:43:cb:09:70:74:ce:c2:53:b1:bf:18:8c:06:7d:09:07:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:52:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b1eabc70b201de713eb7092ee6008536da17bf3ab3f827fe82877ef702159b93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:64:94:74:45:32:ee:30:46:15:23:5c:2f:69: 64:90:24:6b:44:e8:95:11:91:76:34:8d:21:92:3a: 3e:0b:61:0d:28:33:8a:08:db:c1:e2:76:71:d2:54: af:95:8f:5e:f2:2b:b3:79:11:99:16:98:92:2d:48: ce:8f:d8:1f:b0:7e:47:d7:96:d8:01:aa:59:07:06: e7:d7:e4:02:3c:09:bd:2f:8b:e6:dd:4e:f0:87:55: 17:19:a9:f1:35:b5:fa:04:c8:34:cc:e0:6c:18:9c: 5b:84:a7:1a:0a:55:c1:6d:3e:0d:aa:b5:07:95:a5: 67:fb:6f:58:c7:47:c0:ab:a5:ee:f3:bf:26:ae:e5: 69:b5:d9:34:93:de:8c:6f:ca:c1:88:71:be:41:f9: d1:cc:b8:2a:74:11:9a:57:13:99:b8:8c:ee:01:94: 63:41:fc:71:f0:70:fb:1d:77:b0:d4:37:b9:8b:e5: e8:4e:08:d0:ab:79:6e:c6:48:5c:e6:72:48:bd:dd: 3c:b4:0b:58:15:f8:a4:95:9a:0b:da:aa:5f:0b:8c: 8e:79:bc:05:45:20:20:19:af:53:73:df:5f:82:c0: aa:bb:74:8c:6c:d9:2d:d0:92:4e:c9:e1:6b:a0:5a: 8c:95:5f:3c:67:76:9c:43:e2:c6:01:24:f4:57:df: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5A:B2:EF:12:0D:2C:2F:1F:25:79:BF:1D:15:A7:7D:1E:C8:D5:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:2d:e7:3f:0d:83:d9:c0:78:bb:ba:3c:03:69:13:f4:07:db: 47:63:87:e2:a3:94:53:7c:f8:86:ff:4d:19:bb:ce:4d:77:f3: 46:cd:9a:15:54:f3:6e:8e:e1:88:59:c2:ab:70:10:9c:9c:6b: 94:46:db:01:f4:06:6b:a5:74:a7:6c:7d:70:4d:04:78:cf:90: ce:87:6a:cd:94:03:be:fe:2c:32:8a:89:a3:77:2e:5e:bb:b5: 91:3b:1b:bc:ae:82:8b:3e:13:c1:88:4a:fc:2d:03:64:4a:3d: 99:aa:cc:7b:50:3e:73:48:72:9e:2d:8f:66:77:e6:61:e6:e2: 29:f0:de:d4:d9:63:b6:6a:0e:ac:35:69:5c:ba:e4:31:6c:89: ac:2c:01:b4:06:2a:5a:6a:6a:65:06:e7:5e:16:3f:54:ac:95: c8:ef:64:44:d5:2f:a2:ce:08:01:d3:c2:d0:01:6f:56:b1:a4: 92:32:ed:9f:44:46:7a:14:c4:36:33:79:e0:f6:12:c0:23:7d: df:92:2d:6e:bc:10:d8:2f:67:fa:84:38:7e:e4:af:34:6a:d4: b0:c6:72:d6:2e:0a:b1:2e:44:70:93:6e:78:b2:5f:93:5b:ff: 0d:b3:27:4b:94:30:f1:4e:e1:4f:3e:55:20:ca:33:4c:11:48: 28:2d:98:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQR5HQ8sJcHTOwlOxvxiMBn0JB0UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA1MjE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWVhYmM3MGIyMDFkZTcxM2ViNzA5MmVlNjAwODUzNmRh MTdiZjNhYjNmODI3ZmU4Mjg3N2VmNzAyMTU5YjkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoZJR0RTLuMEYVI1wvaWSQJGtE6JURkXY0jSGSOj4LYQ0o M4oI28HidnHSVK+Vj17yK7N5EZkWmJItSM6P2B+wfkfXltgBqlkHBufX5AI8Cb0v i+bdTvCHVRcZqfE1tfoEyDTM4GwYnFuEpxoKVcFtPg2qtQeVpWf7b1jHR8Crpe7z vyau5Wm12TST3oxvysGIcb5B+dHMuCp0EZpXE5m4jO4BlGNB/HHwcPsdd7DUN7mL 5ehOCNCreW7GSFzmcki93Ty0C1gV+KSVmgvaql8LjI55vAVFICAZr1Nz31+CwKq7 dIxs2S3Qkk7J4WugWoyVXzxndpxD4sYBJPRX3xITAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYVqy7xINLC8fJXm/HRWnfR7I1cUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4YmMwMmUxLTRkMmItNDg1NC05MTU1LWQyMThlMmZlMGUyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nzANBgkqhkiG9w0BAQsFAAOCAQEAQy3nPw2D2cB4u7o8A2kT9AfbR2OH 4qOUU3z4hv9NGbvOTXfzRs2aFVTzbo7hiFnCq3AQnJxrlEbbAfQGa6V0p2x9cE0E eM+QzodqzZQDvv4sMoqJo3cuXru1kTsbvK6Ciz4TwYhK/C0DZEo9marMe1A+c0hy ni2PZnfmYebiKfDe1NljtmoOrDVpXLrkMWyJrCwBtAYqWmpqZQbnXhY/VKyVyO9k RNUvos4IAdPC0AFvVrGkkjLtn0RGehTENjN54PYSwCN935ItbrwQ2C9n+oQ4fuSv NGrUsMZy1i4KsS5EcJNueLJfk1v/DbMnS5Qw8U7hTz5VIMozTBFIKC2YSA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:59 2025 by rpki-client