$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa File: 65258b34-5141-4495-8461-b0210b9b4965.roa (raw, json) Hash identifier: AE8z2i2BYvPfV9LsIQiDMFYkMwv1iDkzSU2/Sa/EGyU= Subject key identifier: D3:86:9A:A4:32:A9:3D:85:62:A1:BF:E2:44:2D:6E:9A:8F:85:4F:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D7F9D9FFE5FF811C8ED7A323DF7F99D78E0E9AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa Signing time: Fri 04 Apr 2025 00:10:33 +0000 ROA not before: Fri 04 Apr 2025 00:10:33 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7f:9d:9f:fe:5f:f8:11:c8:ed:7a:32:3d:f7:f9:9d:78:e0:e9:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:10:33 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=e506fbbdb47377b153493de6067fae21013b58a126d78792a4804fb146903574, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:70:47:aa:b3:ed:13:ee:24:24:72:af:03:1e: 0a:cd:f4:b7:fc:d4:a8:3b:6a:41:a1:5c:fe:b0:7d: 56:1f:7a:31:ad:81:18:27:de:d8:b9:01:34:83:1b: 39:3f:7c:d0:3e:ef:88:96:aa:ea:76:9c:85:59:f6: 2e:98:8f:7e:e9:78:5c:fc:63:cd:cd:49:71:11:5a: 8f:dc:07:72:82:13:a1:7f:6e:71:7d:36:3e:d3:87: 2e:82:32:51:3b:4f:51:0d:43:2d:d3:c3:72:f4:e9: 9e:63:5a:63:b0:f2:ab:5f:c7:3d:c6:45:a7:77:43: bb:95:51:37:7d:03:aa:57:a1:a5:59:72:cd:82:6e: d9:51:c8:c5:53:84:5d:e0:87:ca:04:3c:af:13:e9: f7:3a:82:51:38:fa:1b:10:fc:27:ab:93:ae:af:d4: 20:cd:35:7d:75:a4:14:89:c3:8c:bd:6e:d1:e0:01: 20:d8:44:a7:c5:7b:50:39:ae:98:6b:90:d3:2f:f0: 78:60:83:4a:d1:56:96:7f:84:c6:cb:7b:e6:ff:fd: 52:02:e5:06:bf:87:ce:0d:16:b7:81:08:ca:a7:b3: 8a:16:e7:bf:38:7b:6d:24:b2:78:b5:a1:59:09:82: 74:28:b5:34:26:e7:19:07:ff:c7:70:19:39:c5:63: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:86:9A:A4:32:A9:3D:85:62:A1:BF:E2:44:2D:6E:9A:8F:85:4F:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption b5:3b:b1:f3:b0:2a:24:9a:54:26:4b:ca:eb:58:6e:76:f5:d2: 8a:fe:0d:5f:d2:66:b0:12:93:8e:9c:a5:f0:ff:ea:34:85:c2: b2:3f:d8:99:97:8f:f3:2e:33:2c:ce:d9:cf:8e:14:75:32:bc: bd:03:a8:c2:56:f5:20:94:79:27:4e:02:fa:e7:fb:73:65:37: fc:b9:7e:5f:66:18:13:be:0e:50:63:b6:52:14:a0:c2:63:0b: e6:7e:c8:6b:01:f7:c9:0f:5c:b5:fc:a3:bb:d4:5e:70:6b:0f: 9d:6c:5f:3d:23:6c:7c:48:98:a0:3a:37:94:19:54:d1:3a:15: 2a:51:6a:34:00:43:67:d0:b4:4b:67:c1:d9:8c:70:5a:39:ad: 47:1f:0d:6a:39:ed:8e:0c:f6:42:bb:ef:ee:a1:4f:1a:e7:37: 6c:ee:45:6a:30:5a:49:ab:b8:76:c1:2c:9a:8b:cd:63:70:56: 8b:df:f9:e8:68:3a:ca:25:a6:ac:5e:45:de:eb:d7:0e:cc:d0: dc:f6:ea:a3:94:c8:bf:fa:d8:27:9d:2d:97:d8:ee:f7:be:8e: 95:47:24:ed:69:b3:a4:40:2c:65:c7:4e:ec:4c:3f:36:ef:5f: 62:72:e8:d1:be:47:08:e6:14:d2:1d:19:ec:99:64:90:3a:65: d8:53:02:d1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHX+dn/5f+BHI7XoyPff5nXjg6a8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMDMzWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTA2ZmJiZGI0NzM3N2IxNTM0OTNkZTYwNjdmYWUyMTAx M2I1OGExMjZkNzg3OTJhNDgwNGZiMTQ2OTAzNTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrcEeqs+0T7iQkcq8DHgrN9Lf81Kg7akGhXP6wfVYfejGt gRgn3ti5ATSDGzk/fNA+74iWqup2nIVZ9i6Yj37peFz8Y83NSXERWo/cB3KCE6F/ bnF9Nj7Thy6CMlE7T1ENQy3Tw3L06Z5jWmOw8qtfxz3GRad3Q7uVUTd9A6pXoaVZ cs2CbtlRyMVThF3gh8oEPK8T6fc6glE4+hsQ/Cerk66v1CDNNX11pBSJw4y9btHg ASDYRKfFe1A5rphrkNMv8Hhgg0rRVpZ/hMbLe+b//VIC5Qa/h84NFreBCMqns4oW 5784e20ksni1oVkJgnQotTQm5xkH/8dwGTnFY5qTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU04aapDKpPYViob/iRC1umo+FT34wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1MjU4YjM0LTUxNDEtNDQ5NS04NDYxLWIwMjEwYjliNDk2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pDANBgkqhkiG9w0BAQsFAAOCAQEAtTux87AqJJpUJkvK61hudvXSiv4N X9JmsBKTjpyl8P/qNIXCsj/YmZeP8y4zLM7Zz44UdTK8vQOowlb1IJR5J04C+uf7 c2U3/Ll+X2YYE74OUGO2UhSgwmML5n7IawH3yQ9ctfyju9RecGsPnWxfPSNsfEiY oDo3lBlU0ToVKlFqNABDZ9C0S2fB2YxwWjmtRx8Najntjgz2Qrvv7qFPGuc3bO5F ajBaSau4dsEsmovNY3BWi9/56Gg6yiWmrF5F3uvXDszQ3Pbqo5TIv/rYJ50tl9ju 976OlUck7WmzpEAsZcdO7Ew/Nu9fYnLo0b5HCOYU0h0Z7JlkkDpl2FMC0Q== -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:25 2025 by rpki-client