$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: X8qm6jfYQnXtaSCmEItIyG4jb4mQkFSCSUB2rC1OsEo= Subject key identifier: C0:E5:CE:24:ED:6F:3C:A5:38:A9:F1:A2:CB:D8:48:76:97:96:1B:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BC5F2D27A96E7730BDB1C25E32007B27388BBE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Tue 08 Apr 2025 00:31:57 +0000 ROA not before: Tue 08 Apr 2025 00:31:57 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c5:f2:d2:7a:96:e7:73:0b:db:1c:25:e3:20:07:b2:73:88:bb:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:31:57 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=387c9e31098f4224facdc643d91cc1da662299ee66c128b6d36f14825cf9b3cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:3c:c3:bd:00:c5:09:60:7f:61:cf:1c:0d:f6: b6:3f:ea:81:33:3c:b9:92:b4:b0:44:68:b3:db:69: 23:c6:f5:39:33:87:a7:20:2a:60:f1:67:83:d8:75: b6:64:3b:0b:14:2c:72:ee:8b:9b:54:81:5f:64:c8: bc:3b:8e:50:4a:44:39:f9:2d:f7:c5:39:22:bb:6c: 2c:b4:34:6e:7e:c0:6d:9b:fe:58:fb:77:bc:8d:c3: f6:09:bf:c0:66:81:6f:96:8c:30:6c:f4:09:c2:d5: a3:67:ce:c4:47:ff:bd:9a:7e:6a:e3:f7:2a:41:92: 27:96:cf:34:40:12:4f:87:7a:57:6b:26:7b:2f:cb: 78:0e:27:52:0b:2b:20:1d:11:44:37:80:fe:13:fd: d3:e2:6a:57:5d:02:81:a6:ba:fa:94:91:48:24:6e: 2e:c7:d2:89:0f:6f:fe:13:5e:91:f4:a1:79:45:1b: bc:f5:ad:ed:31:26:74:7e:4b:11:8c:24:50:6f:0d: f1:9d:b0:79:94:26:fd:83:54:a9:57:3b:79:2e:30: be:86:ce:a8:e2:58:11:73:21:b3:52:31:6e:f3:34: 13:95:d9:7a:42:1f:fe:3b:7c:a1:07:22:15:b3:f3: 61:df:76:9d:49:59:7f:6f:d0:49:59:f7:4c:82:59: ca:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E5:CE:24:ED:6F:3C:A5:38:A9:F1:A2:CB:D8:48:76:97:96:1B:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 63:26:76:8d:4b:0d:e7:74:7b:f2:67:00:63:05:d0:e1:2e:ce: 93:b7:ce:9d:22:a9:19:d7:16:68:c9:f5:24:5c:16:94:5e:82: 75:6b:e0:3f:7e:0e:c8:7e:d6:a1:dd:7e:bf:3d:9e:b6:b7:a7: d9:1a:1b:7a:4f:91:30:44:71:21:5e:92:51:97:77:b0:33:f2: 0b:9e:12:b9:65:74:58:21:d4:84:16:7c:7c:03:fe:fd:b7:02: 82:9d:03:65:c0:86:73:69:1d:79:9b:3a:6e:86:1c:68:b6:c7: 57:80:8c:a6:49:28:06:b1:14:b3:46:eb:f0:d6:2f:50:08:06: ee:93:b5:2e:ad:f3:c5:b6:8a:7f:82:ca:16:d8:0f:73:85:82: 14:22:93:81:10:9a:6a:27:b5:85:50:74:f5:4e:c9:4e:25:4a: e0:64:c1:5c:ae:0f:8f:d2:e6:26:1b:17:1c:a6:98:22:87:68: cb:33:a7:b2:24:55:26:96:0c:af:92:76:40:8f:36:38:99:4e: 77:4d:eb:ee:a8:86:d0:79:49:7e:e5:bc:84:6a:3d:61:f8:47: 60:60:f0:0a:54:4f:9e:09:3d:05:49:37:f1:98:75:d4:25:63: d4:dd:7f:38:11:e5:61:eb:5c:32:0d:54:a1:83:e0:0d:29:32: 8a:61:b3:1c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa8Xy0nqW53ML2xwl4yAHsnOIu+gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMTU3WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODdjOWUzMTA5OGY0MjI0ZmFjZGM2NDNkOTFjYzFkYTY2 MjI5OWVlNjZjMTI4YjZkMzZmMTQ4MjVjZjliM2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQPMO9AMUJYH9hzxwN9rY/6oEzPLmStLBEaLPbaSPG9Tkz h6cgKmDxZ4PYdbZkOwsULHLui5tUgV9kyLw7jlBKRDn5LffFOSK7bCy0NG5+wG2b /lj7d7yNw/YJv8BmgW+WjDBs9AnC1aNnzsRH/72afmrj9ypBkieWzzRAEk+Heldr Jnsvy3gOJ1ILKyAdEUQ3gP4T/dPialddAoGmuvqUkUgkbi7H0okPb/4TXpH0oXlF G7z1re0xJnR+SxGMJFBvDfGdsHmUJv2DVKlXO3kuML6GzqjiWBFzIbNSMW7zNBOV 2XpCH/47fKEHIhWz82Hfdp1JWX9v0ElZ90yCWcpLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwOXOJO1vPKU4qfGiy9hIdpeWG2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAYyZ2jUsN53R78mcAYwXQ4S7Ok7fO nSKpGdcWaMn1JFwWlF6CdWvgP34OyH7Wod1+vz2etren2Robek+RMERxIV6SUZd3 sDPyC54SuWV0WCHUhBZ8fAP+/bcCgp0DZcCGc2kdeZs6boYcaLbHV4CMpkkoBrEU s0br8NYvUAgG7pO1Lq3zxbaKf4LKFtgPc4WCFCKTgRCaaie1hVB09U7JTiVK4GTB XK4Pj9LmJhsXHKaYIodoyzOnsiRVJpYMr5J2QI82OJlOd03r7qiG0HlJfuW8hGo9 YfhHYGDwClRPngk9BUk38Zh11CVj1N1/OBHlYetcMg1UoYPgDSkyimGzHA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:16 2025 by rpki-client