$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa File: 6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa (raw, json) Hash identifier: wxRydh4g4loswWj3SkiQSSYRldu5M+q7C5owNNP4+0I= Subject key identifier: 99:15:2F:03:14:44:55:11:5A:4F:18:F4:A2:10:CC:66:06:28:A4:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B9CD076A6BDD99B5F174584CEFB6D0E84862A41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa Signing time: Tue 15 Apr 2025 00:10:15 +0000 ROA not before: Tue 15 Apr 2025 00:10:15 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.126.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9c:d0:76:a6:bd:d9:9b:5f:17:45:84:ce:fb:6d:0e:84:86:2a:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:10:15 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=0a1a7f435f8178bf3edec937627a68edf19c4c383ef19bdcf64c96f76ca911fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:20:5a:e1:f4:10:97:f3:88:1d:05:2f:d9: f5:6c:ba:d7:9a:e0:f6:bb:27:f2:21:d8:bc:eb:d8: 40:24:69:63:7b:55:0c:3c:83:98:e9:00:48:19:4b: 2a:ce:d6:19:16:45:de:49:31:b7:f6:d4:a6:00:ea: 80:81:d6:66:96:4d:1e:fe:39:4a:f1:f5:a0:f6:95: 90:17:24:21:4c:0a:a9:f5:77:84:94:0d:8c:bc:9d: 89:32:7e:23:c4:d6:5b:95:90:2b:67:5c:7a:15:d9: 07:9e:0a:3f:af:3f:10:98:ce:3b:76:19:e5:82:2b: 41:e5:60:59:36:63:61:82:08:ad:97:41:32:84:75: 8b:7a:eb:21:a1:3d:87:90:a8:70:24:6b:38:f5:9b: fe:47:cd:90:1b:28:68:6d:e9:47:a2:95:dc:bf:43: d3:f6:de:fe:6a:97:4b:2f:6e:5e:ab:07:cb:fb:c5: d4:c2:6d:56:c8:65:98:c3:04:ac:9b:1f:82:71:1f: b8:84:15:67:2b:f5:bf:ff:f8:4f:9d:7c:af:cc:55: fb:e1:2c:61:8b:b0:73:a2:ec:e9:a2:39:1e:69:57: 0d:8e:b8:80:29:05:bd:fc:98:89:c1:fb:20:76:6a: 7f:86:31:ca:4f:0f:69:a0:ae:bf:ed:07:a6:ce:97: cc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:15:2F:03:14:44:55:11:5A:4F:18:F4:A2:10:CC:66:06:28:A4:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:1e:cf:1e:5b:9e:fe:a0:82:dd:7a:9d:44:57:0b:bf:f3:c2: 45:5b:fc:d3:c8:9b:5f:f9:6c:90:82:94:f1:49:0b:c4:7f:56: f9:53:52:1e:fe:3d:ca:a0:0e:34:ba:43:43:13:a5:fd:e6:94: 2a:d3:7c:b7:77:6b:07:75:73:98:a7:21:b4:37:54:e0:30:0c: 0f:63:4c:5b:9f:e3:af:bc:55:c0:30:f7:a0:99:69:00:56:63: 2e:31:89:ae:d1:a8:72:da:85:76:83:4e:67:f7:3d:32:ae:f1: c0:b2:68:ae:f7:70:57:48:3a:e9:58:78:70:0d:84:5e:c8:bf: 70:2e:9d:5b:23:da:0c:ff:0a:e9:de:32:90:c4:dd:ba:8d:1e: 4e:4a:67:61:83:37:9e:15:8f:5e:2a:7d:3a:65:94:70:ee:ed: 0c:1e:d5:54:21:42:f4:2f:1f:93:1c:a4:10:ed:ba:e6:14:44: b9:53:8a:fc:31:16:51:ee:da:0e:77:5c:d5:61:fc:b1:dd:ab: f0:cf:72:fe:45:14:62:88:a7:4f:71:02:0d:ad:ce:e8:1c:cd: a0:f1:8f:b8:72:30:75:31:1e:c8:4d:44:83:42:b1:09:23:15: b5:ec:b4:f2:e7:26:34:bd:ce:b6:de:8b:95:b1:38:51:8e:ea: 8d:f3:3a:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe5zQdqa92ZtfF0WEzvttDoSGKkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAxMDE1WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTFhN2Y0MzVmODE3OGJmM2VkZWM5Mzc2MjdhNjhlZGYx OWM0YzM4M2VmMTliZGNmNjRjOTZmNzZjYTkxMWZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDATSBa4fQQl/OIHQUv2fVsutea4Pa7J/Ih2Lzr2EAkaWN7 VQw8g5jpAEgZSyrO1hkWRd5JMbf21KYA6oCB1maWTR7+OUrx9aD2lZAXJCFMCqn1 d4SUDYy8nYkyfiPE1luVkCtnXHoV2QeeCj+vPxCYzjt2GeWCK0HlYFk2Y2GCCK2X QTKEdYt66yGhPYeQqHAkazj1m/5HzZAbKGht6Ueildy/Q9P23v5ql0svbl6rB8v7 xdTCbVbIZZjDBKybH4JxH7iEFWcr9b//+E+dfK/MVfvhLGGLsHOi7OmiOR5pVw2O uIApBb38mInB+yB2an+GMcpPD2mgrr/tB6bOl8xZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmRUvAxREVRFaTxj0ohDMZgYopM8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmYWFmNGNhLTVlMzMtNGRkMy1iMTI5LTUxNGI0MGM4NTU1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fjANBgkqhkiG9w0BAQsFAAOCAQEAKR7PHlue/qCC3XqdRFcLv/PCRVv8 08ibX/lskIKU8UkLxH9W+VNSHv49yqAONLpDQxOl/eaUKtN8t3drB3VzmKchtDdU 4DAMD2NMW5/jr7xVwDD3oJlpAFZjLjGJrtGoctqFdoNOZ/c9Mq7xwLJorvdwV0g6 6Vh4cA2EXsi/cC6dWyPaDP8K6d4ykMTduo0eTkpnYYM3nhWPXip9OmWUcO7tDB7V VCFC9C8fkxykEO265hREuVOK/DEWUe7aDndc1WH8sd2r8M9y/kUUYoinT3ECDa3O 6BzNoPGPuHIwdTEeyE1Eg0KxCSMVtey08ucmNL3Ott6LlbE4UY7qjfM6/Q== -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:38 2025 by rpki-client