$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa File: bc607eda-1d8d-4479-b98f-bf82f4cda692.roa (raw, json) Hash identifier: FEefiNp6hfXkAg12u53ZHi3Dnkl+WrPSLW67OdJvclg= Subject key identifier: 66:B7:78:1B:2B:41:43:9A:74:2E:6A:24:C7:1E:DF:2D:82:B0:3A:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A0FAD0F1F8554283787F62A94DE6261741635DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa Signing time: Mon 21 Apr 2025 17:11:14 +0000 ROA not before: Mon 21 Apr 2025 17:11:14 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0f:ad:0f:1f:85:54:28:37:87:f6:2a:94:de:62:61:74:16:35:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:11:14 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=349568d9b5d451bff81217a2635240c8d2d1d3aaa139a72a6b7a01cb1679f063, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:99:c2:92:ce:94:05:0d:e7:75:73:09:a0:0b: c9:84:ab:36:4f:d0:6e:a9:72:1d:6e:eb:1c:0d:01: 6d:40:00:99:07:f6:2b:05:f5:ad:17:f0:f5:90:d7: d8:01:8a:24:1a:b8:3f:25:a4:ec:d0:de:7a:03:be: b3:cc:5f:b9:eb:b7:b8:f9:d1:a9:a6:8d:bb:71:77: 53:81:43:05:13:9c:44:38:2d:a6:00:42:a9:9d:ba: 20:d0:5e:c5:68:b6:2c:97:eb:e3:dc:2a:92:7b:36: 24:04:a4:4f:af:b8:2a:f3:ff:05:28:72:ac:64:7b: ce:08:95:80:df:5d:66:e8:dd:e9:07:5e:b1:86:3f: 8e:79:c8:cf:18:05:08:e3:db:8b:40:be:df:01:1a: a4:b2:4c:78:19:48:45:e4:ca:5c:a0:9f:fc:08:ba: bf:91:b9:f4:44:21:51:00:c9:16:6c:f3:29:e3:b7: f5:6a:1b:23:a6:95:64:da:90:e0:9a:15:c9:33:b4: 00:21:a5:de:31:58:24:82:78:2d:04:b5:5b:40:18: ad:2c:97:52:6b:f4:27:51:39:14:44:38:71:c3:13: d5:f8:4c:b8:9b:4b:fc:d0:f9:7b:bc:ff:e0:32:9f: 12:a6:d7:21:23:54:35:84:2f:ae:5e:fb:58:d9:51: eb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B7:78:1B:2B:41:43:9A:74:2E:6A:24:C7:1E:DF:2D:82:B0:3A:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:54:40:20:84:ff:c9:04:dd:37:71:50:70:16:1f:c9:ee:ea: 36:73:3e:ef:21:86:6f:06:59:82:14:1e:9a:80:0e:9f:0d:cb: 2e:e3:1a:8b:c0:fb:e2:dc:0f:c8:13:55:00:4a:3b:64:b2:76: a7:55:e5:f5:8f:74:00:cf:65:b0:05:99:ec:27:d5:fc:74:aa: f6:cf:63:95:50:ed:d7:a2:f2:25:0b:3c:af:c5:16:50:d3:32: 6f:37:60:8d:af:3a:45:6a:f5:f6:78:c5:59:c7:9b:22:8d:51: b4:5a:60:f4:10:3b:d0:1f:9a:ee:32:d1:04:19:5a:1a:f3:a2: 7b:3a:24:81:bb:4a:9c:1c:4c:2a:e1:2b:f5:01:db:58:2b:52: 67:31:37:4c:10:13:da:d7:ac:9e:9f:68:54:2b:85:51:5b:f6: bf:61:b6:b0:01:5b:96:b0:c2:d2:00:dc:72:aa:0b:c8:a4:41: 31:fe:63:bf:fa:27:00:96:00:14:39:1c:df:ff:66:fb:57:8b: 0e:07:f9:df:8f:ae:6a:bc:1b:bf:94:cd:24:fb:32:e8:75:3b: 3b:26:97:86:ac:2e:d9:75:ce:bf:73:43:57:0c:18:6f:c7:28: 07:4c:97:34:46:96:e0:f6:7a:33:0c:70:14:b8:e2:b3:98:bf: 2a:fd:18:e5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGg+tDx+FVCg3h/YqlN5iYXQWNd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcxMTE0WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDk1NjhkOWI1ZDQ1MWJmZjgxMjE3YTI2MzUyNDBjOGQy ZDFkM2FhYTEzOWE3MmE2YjdhMDFjYjE2NzlmMDYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsmcKSzpQFDed1cwmgC8mEqzZP0G6pch1u6xwNAW1AAJkH 9isF9a0X8PWQ19gBiiQauD8lpOzQ3noDvrPMX7nrt7j50ammjbtxd1OBQwUTnEQ4 LaYAQqmduiDQXsVotiyX6+PcKpJ7NiQEpE+vuCrz/wUocqxke84IlYDfXWbo3ekH XrGGP455yM8YBQjj24tAvt8BGqSyTHgZSEXkylygn/wIur+RufREIVEAyRZs8ynj t/VqGyOmlWTakOCaFckztAAhpd4xWCSCeC0EtVtAGK0sl1Jr9CdRORREOHHDE9X4 TLibS/zQ+Xu8/+AynxKm1yEjVDWEL65e+1jZUeuFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZrd4GytBQ5p0Lmokxx7fLYKwOtkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNjA3ZWRhLTFkOGQtNDQ3OS1iOThmLWJmODJmNGNkYTY5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcDzANBgkqhkiG9w0BAQsFAAOCAQEAUlRAIIT/yQTdN3FQcBYfye7qNnM+ 7yGGbwZZghQemoAOnw3LLuMai8D74twPyBNVAEo7ZLJ2p1Xl9Y90AM9lsAWZ7CfV /HSq9s9jlVDt16LyJQs8r8UWUNMybzdgja86RWr19njFWcebIo1RtFpg9BA70B+a 7jLRBBlaGvOiezokgbtKnBxMKuEr9QHbWCtSZzE3TBAT2tesnp9oVCuFUVv2v2G2 sAFblrDC0gDccqoLyKRBMf5jv/onAJYAFDkc3/9m+1eLDgf534+uarwbv5TNJPsy 6HU7OyaXhqwu2XXOv3NDVwwYb8coB0yXNEaW4PZ6MwxwFLjis5i/Kv0Y5Q== -----END CERTIFICATE-----Generated at Sat Apr 26 19:10:51 2025 by rpki-client