$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa File: 6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa (raw, json) Hash identifier: sWkhguBrJBobjcU1CtC/EeNNAvtE6FK5I1v8oh0TGQw= Subject key identifier: E3:FD:45:95:F9:8B:6C:98:84:AC:AB:92:41:2D:22:9D:99:5A:FA:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 617A82D7BD0B0BC4C15589EE57DA000412CE73A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa Signing time: Fri 25 Apr 2025 23:07:01 +0000 ROA not before: Fri 25 Apr 2025 23:07:01 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.197.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7a:82:d7:bd:0b:0b:c4:c1:55:89:ee:57:da:00:04:12:ce:73:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 23:07:01 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f1027a159c64b76619226f514c8345f2673bd25deb6dd0300bf38a48da3c4082, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5f:f9:e8:52:c9:96:dc:30:2a:ea:b9:68:d8: ff:46:f9:f2:29:68:e1:93:fe:fc:48:f9:54:66:d6: a0:b0:28:7d:8e:20:59:4d:62:c5:e7:e3:33:21:44: fd:83:fa:80:a0:ba:e8:7b:4d:2c:ef:4d:c3:b7:19: bf:f3:71:cb:6c:ec:e4:71:cb:1a:8e:68:97:29:49: c5:18:88:b9:05:44:e7:33:8b:ab:97:4d:a0:77:a0: 8a:27:a5:7e:88:30:58:b7:23:1e:af:87:1f:3b:60: 38:36:a1:fb:64:35:cf:87:ea:14:25:f7:d5:55:15: 2a:3a:f5:94:b6:09:10:bc:dc:db:80:3f:59:a8:28: 91:5f:69:18:4a:69:52:e4:39:b6:d8:d9:db:10:ff: 36:64:fa:2f:2f:61:66:0f:9d:30:75:f6:85:3a:13: ea:53:d0:8e:04:5d:53:c2:e0:63:f7:c9:fe:11:ee: 87:e8:5d:24:cb:9c:3f:50:22:9e:f1:37:38:9c:c4: 11:23:95:76:dc:8b:33:96:c4:1f:a4:ba:5b:a6:10: bc:e0:79:1a:69:38:14:8d:4e:25:42:0f:c5:2d:40: e8:0d:4b:65:9a:11:3f:7b:86:5e:8f:fe:08:b1:57: 94:a5:bd:db:7a:6c:97:e2:8e:ab:18:86:ed:2d:86: 95:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FD:45:95:F9:8B:6C:98:84:AC:AB:92:41:2D:22:9D:99:5A:FA:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.197.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:f0:d9:84:5d:7d:8e:c2:46:1a:2c:01:83:b2:c1:c0:65:38: 8c:4e:66:ba:2c:6a:7e:6f:75:85:40:04:b4:14:10:08:f3:64: 85:bd:ae:f0:99:0f:76:08:ea:72:21:b1:20:db:bc:cf:b9:37: 97:ee:74:0b:3a:75:cb:ee:f2:c7:ca:64:cf:cb:19:19:de:56: 72:9c:5f:76:53:c5:d3:7c:88:b4:bb:4a:a8:77:ac:6f:4e:27: 5b:61:2a:21:f9:49:dd:a4:0c:9f:82:68:8d:1b:01:33:c0:cb: 97:de:3c:57:05:ab:82:54:ce:cb:06:9a:67:86:bf:c3:44:d5: 46:97:91:62:71:22:96:6d:02:99:c0:71:02:3c:a5:e0:66:7b: 3f:c9:27:ad:d2:f2:57:91:86:81:f0:d1:a7:91:42:c9:9d:82: 48:5b:fa:ee:25:cb:cf:3b:62:23:2a:e8:a3:9f:78:64:4c:57: fd:37:64:ea:e6:02:2d:13:f5:1a:01:ab:0a:67:e9:fe:f6:b8: 63:e6:2c:d8:3c:cc:45:21:c3:8f:cd:8e:62:61:64:9a:18:4c: c8:1a:e2:91:41:6b:ac:02:09:72:37:93:17:f6:ca:7a:99:1a: 2b:d9:e2:50:5d:e0:e0:12:83:4e:09:e0:19:ac:5a:8e:7f:ea: f1:f0:2d:12 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYXqC170LC8TBVYnuV9oABBLOc6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MjMwNzAxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTAyN2ExNTljNjRiNzY2MTkyMjZmNTE0YzgzNDVmMjY3 M2JkMjVkZWI2ZGQwMzAwYmYzOGE0OGRhM2M0MDgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTX/noUsmW3DAq6rlo2P9G+fIpaOGT/vxI+VRm1qCwKH2O IFlNYsXn4zMhRP2D+oCguuh7TSzvTcO3Gb/zccts7ORxyxqOaJcpScUYiLkFROcz i6uXTaB3oIonpX6IMFi3Ix6vhx87YDg2oftkNc+H6hQl99VVFSo69ZS2CRC83NuA P1moKJFfaRhKaVLkObbY2dsQ/zZk+i8vYWYPnTB19oU6E+pT0I4EXVPC4GP3yf4R 7ofoXSTLnD9QIp7xNzicxBEjlXbcizOWxB+kulumELzgeRppOBSNTiVCD8UtQOgN S2WaET97hl6P/gixV5Slvdt6bJfijqsYhu0thpVNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4/1FlfmLbJiErKuSQS0inZla+lIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1ODJkN2Y4LTVlNTktNDkzMS1iYmNkLWM2N2IyOThhZjNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xTANBgkqhkiG9w0BAQsFAAOCAQEAi/DZhF19jsJGGiwBg7LBwGU4jE5m uixqfm91hUAEtBQQCPNkhb2u8JkPdgjqciGxINu8z7k3l+50Czp1y+7yx8pkz8sZ Gd5WcpxfdlPF03yItLtKqHesb04nW2EqIflJ3aQMn4JojRsBM8DLl948VwWrglTO ywaaZ4a/w0TVRpeRYnEilm0CmcBxAjyl4GZ7P8knrdLyV5GGgfDRp5FCyZ2CSFv6 7iXLzztiIyroo594ZExX/Tdk6uYCLRP1GgGrCmfp/va4Y+Ys2DzMRSHDj82OYmFk mhhMyBrikUFrrAIJcjeTF/bKepkaK9niUF3g4BKDTgngGaxajn/q8fAtEg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:36 2025 by rpki-client