$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa File: cddc38a9-b919-4a54-aad6-1107e47d5499.roa (raw, json) Hash identifier: p1ApBcerlbV/Ae+TQjgLShX8U5dlyxNzqUFap5X9lpk= Subject key identifier: BB:D2:BF:08:2D:3E:9C:03:0A:FF:7C:FD:B3:BC:B8:98:06:F9:C4:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06793D656B7E661C650BCF3A508112B97244E0A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa Signing time: Fri 25 Apr 2025 16:52:56 +0000 ROA not before: Fri 25 Apr 2025 16:52:56 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:79:3d:65:6b:7e:66:1c:65:0b:cf:3a:50:81:12:b9:72:44:e0:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 16:52:56 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5f5da26ec5b21caf5494dcb3b8edd0f6280a6680aee3aba2a07ff3fd431238aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a8:0e:30:2d:46:eb:05:dc:dd:79:6a:44:49: 53:1d:1c:5c:94:1a:3b:4f:c3:80:08:d0:4d:48:1f: e3:64:86:50:cf:9c:94:06:ab:42:2b:a0:bb:28:e3: 23:c3:ee:1c:3d:fc:a5:cc:a8:ae:00:ed:4e:77:5e: dc:ff:14:dd:44:3c:ce:6d:35:26:9b:38:23:f5:8c: 88:44:6a:74:ed:3c:87:87:53:d7:78:94:e4:c5:fe: fa:fe:96:02:c7:19:3c:7f:26:63:81:83:c6:17:7f: 31:34:d7:ce:f7:e4:4a:16:fa:e9:ab:c9:75:c6:eb: 33:d3:44:0d:8e:bc:e8:85:a5:ca:d5:96:e6:53:ef: b8:51:20:a9:15:16:13:ad:fe:e8:2c:84:f5:2c:a3: 9a:fb:e7:6c:20:05:25:7d:2f:a0:2f:b4:c3:a3:0e: 76:3b:6e:0a:f2:70:a7:53:a9:3b:75:3d:9b:a8:19: f3:dc:94:99:9e:f2:0b:cc:57:ff:cc:6f:e3:72:aa: 84:91:d2:ff:d5:66:1c:f5:f3:78:94:ef:a1:0b:50: c9:f1:0d:19:47:2d:78:1c:3d:9e:0e:61:a2:79:1b: c8:7f:7e:4b:58:98:04:d2:d9:7a:2d:90:ca:ce:fe: e0:0f:4c:89:6d:f2:05:93:29:e7:d8:c3:82:ea:a4: 0b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D2:BF:08:2D:3E:9C:03:0A:FF:7C:FD:B3:BC:B8:98:06:F9:C4:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:1d:d7:00:d5:2e:4a:7a:5c:d2:c8:38:56:66:48:a7:29:b5: 6a:4d:59:62:65:f5:2a:d0:2d:0c:6f:b1:32:1b:b0:02:ac:b1: 36:bd:05:90:ff:4b:45:61:40:56:3a:9a:c8:09:5d:33:89:c8: 6a:8f:ce:7f:72:83:3b:43:52:d6:a7:c7:76:49:ef:22:09:8d: 29:e6:72:fc:84:f5:3c:d3:7a:28:dd:cf:2c:cf:3a:3f:b7:24: 84:b6:ce:87:56:39:74:25:db:44:52:e1:32:d5:47:e3:e3:a9: 13:2a:25:98:d0:25:a9:d4:b7:8d:3d:e9:54:ef:47:02:0a:1c: 0b:f1:da:a3:a6:e2:a8:4c:30:d9:94:43:19:1a:89:1d:84:66: f1:9f:4a:ba:e0:21:3b:90:f7:01:d7:ca:32:90:ca:2f:4a:9a: 58:44:41:e3:78:7f:d6:33:21:02:e8:64:d2:cc:6c:cd:22:8a: 02:db:9d:26:02:8a:99:f1:fd:56:5d:b5:34:8c:8d:92:e4:a0: 0b:0b:2d:05:07:54:46:2e:07:e7:be:e7:2f:19:02:90:50:78: bd:75:a2:8a:98:c3:9e:b6:da:f6:c6:f7:c1:35:17:4c:60:2a: fe:85:d4:7f:a2:3f:ad:99:7a:b7:e6:f4:85:dc:12:f3:33:e3: a5:74:a2:9c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBnk9ZWt+ZhxlC886UIESuXJE4KcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTY1MjU2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjVkYTI2ZWM1YjIxY2FmNTQ5NGRjYjNiOGVkZDBmNjI4 MGE2NjgwYWVlM2FiYTJhMDdmZjNmZDQzMTIzOGFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFqA4wLUbrBdzdeWpESVMdHFyUGjtPw4AI0E1IH+NkhlDP nJQGq0IroLso4yPD7hw9/KXMqK4A7U53Xtz/FN1EPM5tNSabOCP1jIhEanTtPIeH U9d4lOTF/vr+lgLHGTx/JmOBg8YXfzE018735EoW+umryXXG6zPTRA2OvOiFpcrV luZT77hRIKkVFhOt/ugshPUso5r752wgBSV9L6AvtMOjDnY7bgrycKdTqTt1PZuo GfPclJme8gvMV//Mb+NyqoSR0v/VZhz183iU76ELUMnxDRlHLXgcPZ4OYaJ5G8h/ fktYmATS2XotkMrO/uAPTIlt8gWTKefYw4LqpAvJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUu9K/CC0+nAMK/3z9s7y4mAb5xKwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZGMzOGE5LWI5MTktNGE1NC1hYWQ2LTExMDdlNDdkNTQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4FjANBgkqhkiG9w0BAQsFAAOCAQEATx3XANUuSnpc0sg4VmZIpym1ak1Z YmX1KtAtDG+xMhuwAqyxNr0FkP9LRWFAVjqayAldM4nIao/Of3KDO0NS1qfHdknv IgmNKeZy/IT1PNN6KN3PLM86P7ckhLbOh1Y5dCXbRFLhMtVH4+OpEyolmNAlqdS3 jT3pVO9HAgocC/Hao6biqEww2ZRDGRqJHYRm8Z9KuuAhO5D3AdfKMpDKL0qaWERB 43h/1jMhAuhk0sxszSKKAtudJgKKmfH9Vl21NIyNkuSgCwstBQdURi4H577nLxkC kFB4vXWiipjDnrba9sb3wTUXTGAq/oXUf6I/rZl6t+b0hdwS8zPjpXSinA== -----END CERTIFICATE-----Generated at Sat Apr 26 20:56:15 2025 by rpki-client