$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0d17be-256c-4d26-83ba-b3ae68aeef6b.roa File: 7c0d17be-256c-4d26-83ba-b3ae68aeef6b.roa (raw, json) Hash identifier: bh/Hhzs96B6PeHAUjMsnau2Fmvj6oZk/QKtG2Q9KKQ0= Subject key identifier: 4E:6C:3E:95:99:63:06:2A:3E:45:8B:06:1D:9E:82:89:E4:44:50:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BE6B02BB3271BB363A5B7D88A73FB4770E296DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0d17be-256c-4d26-83ba-b3ae68aeef6b.roa Signing time: Wed 09 Apr 2025 00:00:17 +0000 ROA not before: Wed 09 Apr 2025 00:00:17 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.255.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e6:b0:2b:b3:27:1b:b3:63:a5:b7:d8:8a:73:fb:47:70:e2:96:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:00:17 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=095ae537c79a7bc1b052193b8eebded17031554c61ebd6c8ee995ce13d7ba3f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:15:81:92:d2:1b:00:b3:61:9e:53:e3:5f:e9: 61:e3:b3:8f:e0:72:73:b3:f2:b3:8a:6a:94:36:ec: f6:78:01:e4:6b:ce:56:fa:d4:ac:a4:45:ea:6a:03: 6c:32:8c:f4:7f:6d:56:7f:e9:83:c4:ec:20:5d:2b: c0:c8:b0:9f:21:1b:00:c3:a8:95:81:bf:25:3b:e5: e5:30:b7:78:0b:31:12:cc:06:02:ba:d5:88:37:0a: b3:01:42:95:11:43:ce:0c:6d:fa:d4:8c:f6:62:46: 18:3e:7d:ac:31:9f:9a:f1:01:82:d0:b0:7a:38:71: f5:e0:34:51:f3:4e:dd:68:d4:5b:4e:fd:8e:82:ae: 31:15:b1:e4:b0:10:6e:1e:bb:3f:48:d5:fe:5c:e9: 55:c2:13:03:29:a1:db:dd:61:cf:8f:89:9d:a3:42: b4:9e:eb:4a:ec:c2:2b:06:08:76:52:b9:c6:c0:5e: 9f:5d:ef:36:c3:4b:65:b8:ec:04:9b:97:54:51:54: 26:f5:31:8d:0a:8b:59:54:87:86:11:82:b3:aa:5b: 54:4b:3c:68:f5:9a:49:0f:af:85:90:b4:34:e8:cd: be:86:d2:26:70:58:64:40:d4:6a:e6:44:13:e2:e6: bc:d7:3b:87:ef:4f:d9:9f:e3:f4:15:1f:13:88:5f: 50:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:6C:3E:95:99:63:06:2A:3E:45:8B:06:1D:9E:82:89:E4:44:50:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0d17be-256c-4d26-83ba-b3ae68aeef6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.255.56.0/24 Signature Algorithm: sha256WithRSAEncryption 27:d6:16:d2:0e:d1:d7:c6:18:25:11:60:ec:25:00:0f:66:1f: 45:ca:d1:ae:3a:88:f5:f8:f6:ce:ad:32:2e:43:15:ca:94:1d: 89:cd:bd:24:b1:32:24:d8:52:5e:6e:e9:44:f0:03:24:04:a6: 92:d5:60:05:49:74:6b:51:d0:fb:22:93:a4:59:95:a4:bf:2c: 9b:6b:9b:7b:61:1c:a3:00:96:bc:d8:90:d9:17:b3:3f:ff:54: c5:aa:80:37:bb:42:1d:57:ff:be:c9:4d:2e:c1:35:27:29:53: 48:ef:67:a3:5e:f7:a6:50:35:cd:cd:f1:75:9a:bd:a9:f0:df: e7:ea:64:a0:1f:5a:6f:88:eb:2c:4c:f6:59:a0:21:f9:06:bd: 81:af:87:51:e3:be:c0:5d:a7:94:9b:68:c8:38:7e:bf:44:47: 55:ea:54:e5:e0:db:2f:8e:f5:d2:d8:92:bc:58:88:2c:6e:cc: bd:c1:a3:17:c8:70:3c:4c:92:a7:cc:76:4d:e3:35:68:5b:34: d1:9b:f8:9a:d8:0b:e3:3c:b2:32:ce:c8:5e:5c:b3:bb:76:16: 3f:3b:f7:bd:df:2c:ec:fb:03:ff:ab:15:77:8a:77:26:3a:8d: ca:19:ec:70:61:9a:31:96:3c:59:b9:aa:13:f9:0e:1d:c8:a9: 3b:50:35:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK+awK7MnG7NjpbfYinP7R3DiltswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAwMDE3WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTVhZTUzN2M3OWE3YmMxYjA1MjE5M2I4ZWViZGVkMTcw MzE1NTRjNjFlYmQ2YzhlZTk5NWNlMTNkN2JhM2Y5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyFYGS0hsAs2GeU+Nf6WHjs4/gcnOz8rOKapQ27PZ4AeRr zlb61KykRepqA2wyjPR/bVZ/6YPE7CBdK8DIsJ8hGwDDqJWBvyU75eUwt3gLMRLM BgK61Yg3CrMBQpURQ84MbfrUjPZiRhg+fawxn5rxAYLQsHo4cfXgNFHzTt1o1FtO /Y6CrjEVseSwEG4euz9I1f5c6VXCEwMpodvdYc+PiZ2jQrSe60rswisGCHZSucbA Xp9d7zbDS2W47ASbl1RRVCb1MY0Ki1lUh4YRgrOqW1RLPGj1mkkPr4WQtDTozb6G 0iZwWGRA1GrmRBPi5rzXO4fvT9mf4/QVHxOIX1D1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTmw+lZljBio+RYsGHZ6CieREUAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMGQxN2JlLTI1NmMtNGQyNi04M2JhLWIzYWU2OGFlZWY2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABo/zgwDQYJKoZIhvcNAQELBQADggEBACfWFtIO0dfGGCURYOwlAA9mH0XK 0a46iPX49s6tMi5DFcqUHYnNvSSxMiTYUl5u6UTwAyQEppLVYAVJdGtR0Psik6RZ laS/LJtrm3thHKMAlrzYkNkXsz//VMWqgDe7Qh1X/77JTS7BNScpU0jvZ6Ne96ZQ Nc3N8XWavanw3+fqZKAfWm+I6yxM9lmgIfkGvYGvh1HjvsBdp5SbaMg4fr9ER1Xq VOXg2y+O9dLYkrxYiCxuzL3BoxfIcDxMkqfMdk3jNWhbNNGb+JrYC+M8sjLOyF5c s7t2Fj87973fLOz7A/+rFXeKdyY6jcoZ7HBhmjGWPFm5qhP5Dh3IqTtQNWw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:07:18 2025 by rpki-client