$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa File: 78dd989c-1826-4000-a1be-585b3b82efe8.roa (raw, json) Hash identifier: v6ocPYv0hiGzB1Lsn0CQW2g3mrU4mj+EUdUhETkrWlg= Subject key identifier: C6:A1:21:0F:2D:4E:23:F5:01:DB:90:90:80:35:6E:D7:48:86:EF:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DFEE522D7582745BAD36A0111F868C7FC5CD45D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa Signing time: Tue 08 Apr 2025 00:31:52 +0000 ROA not before: Tue 08 Apr 2025 00:31:52 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fe:e5:22:d7:58:27:45:ba:d3:6a:01:11:f8:68:c7:fc:5c:d4:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:31:52 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=7241c0a552ca07e982d3087b0f4d8bb77e778027f07ef3867be8611137dd7234, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1e:b1:ab:d4:86:98:f1:f2:58:d0:ab:66:7c: 91:1b:35:07:86:a1:40:45:ed:3f:f0:4e:16:10:5c: 56:2c:69:29:0e:90:d9:e6:01:a1:2e:39:36:92:ab: 53:be:aa:37:3b:a1:15:89:a7:d0:09:71:02:e3:80: 26:8a:a2:51:36:70:6d:f8:a1:08:b8:5b:b2:5d:7a: c8:69:e5:bd:94:88:02:f8:52:03:9d:dc:35:40:ff: 35:7b:da:f9:93:78:28:f2:d9:83:68:f8:8d:07:95: a5:7c:08:22:a2:89:64:d1:30:b9:eb:41:0b:dc:97: 6d:93:37:55:94:40:a2:76:62:86:30:68:d0:4c:0a: 73:57:1e:8d:23:c8:84:c8:a4:1e:64:e3:34:9f:7d: 4f:6e:78:50:43:5a:32:14:86:7b:ed:1c:b2:48:a0: cf:89:3f:96:ed:b7:37:6e:28:8a:c6:b8:e2:2b:ea: ff:8c:28:ee:50:71:e3:88:43:25:d0:6b:6e:85:51: fc:fc:b2:ec:7a:9b:39:d6:7f:99:ef:63:22:06:2c: fa:cf:a9:83:63:36:32:03:59:78:90:5f:f4:d0:69: d3:8b:9b:43:74:1e:88:29:76:2a:cc:ec:3d:34:54: eb:eb:34:c7:25:9f:b4:0d:45:d2:f0:5e:96:7b:fb: 83:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A1:21:0F:2D:4E:23:F5:01:DB:90:90:80:35:6E:D7:48:86:EF:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption 56:6d:54:b2:24:df:4b:db:34:4d:ee:46:a2:20:a3:c8:8d:98: 65:aa:91:57:51:2e:0b:c9:52:f1:c3:df:95:15:30:16:f3:1d: e6:ec:c1:d0:95:66:48:d3:1b:12:41:ef:17:25:a2:04:3b:7e: 69:c8:8f:5d:40:95:e6:3f:9b:6b:b5:95:31:97:a2:01:a4:07: 6c:71:5e:53:25:70:a2:18:39:a3:d9:e6:d5:d7:02:9d:e8:16: 82:2e:41:f3:51:1c:b3:72:58:3b:dc:67:ac:4c:cf:3b:68:f8: b8:1c:78:31:b9:f1:49:8a:7a:fd:51:fd:65:02:21:ae:51:63: 5b:1b:da:09:c3:04:b6:a9:64:8e:5d:ff:f4:f6:44:f2:c0:1c: 44:0b:b8:be:f2:d2:d8:ba:49:fb:0d:6c:51:6f:83:52:56:a4: 64:4e:4b:5b:72:25:6e:68:5b:36:1a:cb:13:6f:ad:70:dc:c4: 57:48:47:db:1f:ff:f2:ec:83:9d:23:00:36:48:43:d7:14:7d: f4:9b:dd:47:6a:59:43:bc:06:87:e9:8e:e8:67:a0:d5:fa:2c: ed:1c:53:b8:ec:1b:a5:ad:7d:b4:ea:a4:a8:06:e8:a6:7b:fd: 9c:20:a1:13:5d:dd:81:17:3f:e9:1a:15:b0:6f:d8:18:a5:b1: 21:16:04:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbf7lItdYJ0W602oBEfhox/xc1F0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMTUyWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjQxYzBhNTUyY2EwN2U5ODJkMzA4N2IwZjRkOGJiNzdl Nzc4MDI3ZjA3ZWYzODY3YmU4NjExMTM3ZGQ3MjM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVHrGr1IaY8fJY0KtmfJEbNQeGoUBF7T/wThYQXFYsaSkO kNnmAaEuOTaSq1O+qjc7oRWJp9AJcQLjgCaKolE2cG34oQi4W7Jdeshp5b2UiAL4 UgOd3DVA/zV72vmTeCjy2YNo+I0HlaV8CCKiiWTRMLnrQQvcl22TN1WUQKJ2YoYw aNBMCnNXHo0jyITIpB5k4zSffU9ueFBDWjIUhnvtHLJIoM+JP5bttzduKIrGuOIr 6v+MKO5QceOIQyXQa26FUfz8sux6mznWf5nvYyIGLPrPqYNjNjIDWXiQX/TQadOL m0N0HogpdirM7D00VOvrNMcln7QNRdLwXpZ7+4MFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxqEhDy1OI/UB25CQgDVu10iG70owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZGQ5ODljLTE4MjYtNDAwMC1hMWJlLTU4NWIzYjgyZWZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4MDANBgkqhkiG9w0BAQsFAAOCAQEAVm1UsiTfS9s0Te5GoiCjyI2YZaqR V1EuC8lS8cPflRUwFvMd5uzB0JVmSNMbEkHvFyWiBDt+aciPXUCV5j+ba7WVMZei AaQHbHFeUyVwohg5o9nm1dcCnegWgi5B81Ecs3JYO9xnrEzPO2j4uBx4MbnxSYp6 /VH9ZQIhrlFjWxvaCcMEtqlkjl3/9PZE8sAcRAu4vvLS2LpJ+w1sUW+DUlakZE5L W3IlbmhbNhrLE2+tcNzEV0hH2x//8uyDnSMANkhD1xR99JvdR2pZQ7wGh+mO6Geg 1fos7RxTuOwbpa19tOqkqAbopnv9nCChE13dgRc/6RoVsG/YGKWxIRYElg== -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:56 2025 by rpki-client