$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa File: aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa (raw, json) Hash identifier: YY91QrfAkmlYVXMoFuSj72C2VtNyvPOj3zunv4mq4Ms= Subject key identifier: 66:BA:86:45:1B:D0:7C:31:88:F0:6B:97:94:69:E2:05:46:59:DA:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6242DA76F21FA361248030FFB33089782732F57B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa Signing time: Tue 15 Apr 2025 00:10:12 +0000 ROA not before: Tue 15 Apr 2025 00:10:12 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:42:da:76:f2:1f:a3:61:24:80:30:ff:b3:30:89:78:27:32:f5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:10:12 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=18f52b98e3bd9686152aec4c9ce15ff42f2f170c8266db9728c7e297a69a37be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:47:df:ea:8e:53:14:72:11:4e:9c:5d:32:99: cd:d3:13:ba:04:22:e3:a8:04:4a:27:ad:42:44:ca: 69:0e:25:ee:9a:cf:10:9c:4c:45:14:3b:5e:a1:21: c6:dd:17:44:8b:19:b0:ac:d0:78:e5:cc:c2:26:dc: 11:1c:51:71:9b:9b:b1:2b:fb:95:e2:aa:68:a9:84: ac:5b:8c:9f:fd:af:fb:f3:1e:e9:af:8c:c0:4e:14: ce:0f:45:7f:01:31:5e:e4:6c:a8:e9:10:1f:c2:1b: bb:5e:bf:8c:9a:23:d0:02:d5:cc:fa:dd:98:ff:7a: 51:fe:44:6e:92:bd:62:2c:83:3d:6f:0b:23:d9:66: 4c:2d:35:ef:1c:82:84:c8:84:28:7b:63:ac:11:b3: 72:f7:e7:bc:09:cf:ca:6b:4b:c0:fe:95:81:ba:80: 67:1d:95:23:7c:f0:97:92:2b:d4:04:1e:c6:65:0e: 68:db:c0:11:ef:36:7d:69:68:d4:83:47:7c:23:b9: 16:06:9d:de:4f:77:51:1d:a5:b4:3f:e6:bb:25:e8: 17:4d:e2:97:d4:24:f3:12:0c:59:64:97:ba:a4:f3: 65:95:3a:0c:c4:e7:70:05:be:9c:3b:2d:0e:bf:e6: a2:28:f5:20:27:12:6e:ca:a6:9d:5f:56:0d:2a:64: 84:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:BA:86:45:1B:D0:7C:31:88:F0:6B:97:94:69:E2:05:46:59:DA:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:50:1d:95:cc:61:cf:05:51:04:37:e7:ca:77:f7:05:98:5a: fa:3a:8f:6d:1c:ac:3e:3c:0b:ef:36:c7:27:2c:5c:b2:91:49: 22:ca:b9:24:0a:f0:fb:88:26:0f:81:6b:5c:7c:a6:59:58:87: 82:b9:2b:5d:c6:83:35:07:7f:17:de:d9:87:c9:4d:dd:a4:36: 69:52:d7:25:3c:03:dc:bd:78:9e:22:6d:54:56:a0:00:d3:78: 35:7a:7d:7b:b9:b3:f7:86:4e:4b:39:84:c7:18:af:40:e0:79: d6:1b:d3:20:4c:e9:99:65:8c:d1:ec:21:de:c7:80:af:0f:df: 1d:63:b3:f5:e5:75:dc:db:33:d7:3e:19:cd:b4:e9:cf:d3:c5: 8a:1a:24:10:c3:cd:61:7a:0a:b0:e6:a3:45:1e:0d:32:e3:5b: b1:0c:6e:20:b8:91:1c:c4:6b:b7:da:8b:0c:8e:28:f8:05:c4: dc:25:23:71:4a:76:84:53:f6:35:67:cd:48:90:b2:43:13:9b: d6:f9:ed:57:9b:c4:af:78:8b:87:a7:7d:81:8e:8c:04:4e:6d: 52:99:ab:37:3d:7d:00:87:f3:67:e2:18:cb:a2:9d:f3:8c:82: e8:d7:b9:32:ed:57:2f:c9:6e:0b:57:e4:68:2e:78:63:13:4c: fb:1e:21:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYkLadvIfo2EkgDD/szCJeCcy9XswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAxMDEyWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGY1MmI5OGUzYmQ5Njg2MTUyYWVjNGM5Y2UxNWZmNDJm MmYxNzBjODI2NmRiOTcyOGM3ZTI5N2E2OWEzN2JlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChR9/qjlMUchFOnF0ymc3TE7oEIuOoBEonrUJEymkOJe6a zxCcTEUUO16hIcbdF0SLGbCs0HjlzMIm3BEcUXGbm7Er+5XiqmiphKxbjJ/9r/vz HumvjMBOFM4PRX8BMV7kbKjpEB/CG7tev4yaI9AC1cz63Zj/elH+RG6SvWIsgz1v CyPZZkwtNe8cgoTIhCh7Y6wRs3L357wJz8prS8D+lYG6gGcdlSN88JeSK9QEHsZl DmjbwBHvNn1paNSDR3wjuRYGnd5Pd1EdpbQ/5rsl6BdN4pfUJPMSDFlkl7qk82WV OgzE53AFvpw7LQ6/5qIo9SAnEm7Kpp1fVg0qZIQlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZrqGRRvQfDGI8GuXlGniBUZZ2l4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYzU2MDZkLWI4YTQtNDZmMi1iN2NlLTFkNmY3NWJlZjM5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ZDANBgkqhkiG9w0BAQsFAAOCAQEAQFAdlcxhzwVRBDfnynf3BZha+jqP bRysPjwL7zbHJyxcspFJIsq5JArw+4gmD4FrXHymWViHgrkrXcaDNQd/F97Zh8lN 3aQ2aVLXJTwD3L14niJtVFagANN4NXp9e7mz94ZOSzmExxivQOB51hvTIEzpmWWM 0ewh3seArw/fHWOz9eV13Nsz1z4ZzbTpz9PFihokEMPNYXoKsOajRR4NMuNbsQxu ILiRHMRrt9qLDI4o+AXE3CUjcUp2hFP2NWfNSJCyQxOb1vntV5vEr3iLh6d9gY6M BE5tUpmrNz19AIfzZ+IYy6Kd84yC6Ne5Mu1XL8luC1fkaC54YxNM+x4h4Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:29 2025 by rpki-client