$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4753976-20df-4c30-8291-086bd631b618.roa File: f4753976-20df-4c30-8291-086bd631b618.roa (raw, json) Hash identifier: 7ufchIUtBXHsnfEdnMq8PfYyI8webStgvT8/3PTWSUg= Subject key identifier: 25:18:0B:A4:86:2A:87:E9:36:01:D1:3A:5C:EE:C6:A0:1F:35:F9:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 094A0674DFF8726DE18E75E79BA8AAF21B40F889 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4753976-20df-4c30-8291-086bd631b618.roa Signing time: Sat 12 Apr 2025 00:42:10 +0000 ROA not before: Sat 12 Apr 2025 00:42:10 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.132.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:4a:06:74:df:f8:72:6d:e1:8e:75:e7:9b:a8:aa:f2:1b:40:f8:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:42:10 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=b9d2be0016c8d16b0c6ecf6152adb6713451cad89187dfa947f8c5cb13ebe9ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0c:cf:f2:65:81:c5:e9:2e:fe:15:af:21:7f: 09:d0:cc:2b:04:9d:49:9f:d8:11:95:1e:60:ae:c3: 90:a2:ed:30:32:92:3a:98:8c:15:4e:d0:5b:5f:f5: eb:af:e9:50:45:c9:37:06:1f:96:48:db:35:ba:0a: 73:0e:6d:d7:3a:cd:40:7c:0b:4e:58:46:df:1c:61: fe:f5:ed:de:ff:b7:19:70:48:1b:c8:5f:96:76:af: 56:72:42:1d:d9:a0:d5:7c:87:9f:22:32:ee:db:ad: 21:da:12:49:dd:18:f7:30:e6:c6:0a:1a:24:2f:be: ee:ab:6d:10:fc:3a:7a:0a:87:56:1b:3c:c4:01:82: 75:41:a8:61:d3:56:cc:21:a3:4d:a2:57:86:4b:60: 8a:a4:f4:ed:10:87:b9:75:06:d4:69:28:91:4b:78: 0f:d7:ac:e5:a0:c6:62:f4:b4:7d:16:2e:ec:90:18: fa:99:9b:dc:e0:75:48:6a:75:67:1b:b9:5c:39:b6: 7b:1c:28:a7:d5:70:fd:4d:86:39:0d:c3:c0:c5:5e: f6:10:66:2d:46:f8:d0:4b:ee:68:da:43:01:3d:24: c8:17:f9:d8:e2:38:19:86:32:08:13:7d:1c:e9:35: e2:36:f9:75:d6:5b:84:83:7b:0b:fb:77:22:ee:3c: 5f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:18:0B:A4:86:2A:87:E9:36:01:D1:3A:5C:EE:C6:A0:1F:35:F9:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4753976-20df-4c30-8291-086bd631b618.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:46:9c:17:79:a1:ad:a0:fa:3f:6c:99:84:a1:7c:16:60:79: 52:84:e1:15:38:8d:44:23:4a:d2:6b:61:7d:3a:45:41:5e:32: 37:57:c8:d9:8f:53:42:86:e7:f5:a7:ae:16:0f:98:76:2c:74: 0b:72:43:eb:10:ba:72:fe:84:95:bb:b7:2d:f2:60:2e:9c:97: 36:98:a0:a8:9c:52:a2:46:e1:61:e6:80:c1:af:80:f8:ac:d9: 5f:ba:0d:d2:db:1d:88:16:b9:d2:c8:c3:dc:ea:39:1c:22:11: 7a:2b:0a:b9:a8:86:71:c4:fe:1d:41:8d:dd:90:bb:ea:57:63: 46:21:2c:0e:d9:35:8c:18:68:de:83:1a:40:62:69:23:06:76: 0b:3b:4d:b8:32:30:cc:6b:13:fc:df:d2:97:3c:70:01:06:e1: 93:72:2c:80:89:0a:b9:59:12:65:c5:2c:01:ea:5d:8a:35:4c: 6a:eb:05:44:f8:12:94:a0:6f:72:49:52:18:2d:a2:96:7a:00: 84:00:a3:af:54:1e:ef:6d:0e:b1:c2:af:e7:b4:e3:be:12:c3: 84:ab:34:83:be:0d:3d:0e:e4:39:ee:c3:8d:01:21:34:a1:f1: a2:b2:6d:b4:e4:fc:d0:2e:df:29:b0:77:83:75:c1:d0:ed:97: 49:8c:c1:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCUoGdN/4cm3hjnXnm6iq8htA+IkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDA0MjEwWhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWQyYmUwMDE2YzhkMTZiMGM2ZWNmNjE1MmFkYjY3MTM0 NTFjYWQ4OTE4N2RmYTk0N2Y4YzVjYjEzZWJlOWNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvDM/yZYHF6S7+Fa8hfwnQzCsEnUmf2BGVHmCuw5Ci7TAy kjqYjBVO0Ftf9euv6VBFyTcGH5ZI2zW6CnMObdc6zUB8C05YRt8cYf717d7/txlw SBvIX5Z2r1ZyQh3ZoNV8h58iMu7brSHaEkndGPcw5sYKGiQvvu6rbRD8OnoKh1Yb PMQBgnVBqGHTVswho02iV4ZLYIqk9O0Qh7l1BtRpKJFLeA/XrOWgxmL0tH0WLuyQ GPqZm9zgdUhqdWcbuVw5tnscKKfVcP1NhjkNw8DFXvYQZi1G+NBL7mjaQwE9JMgX +djiOBmGMggTfRzpNeI2+XXWW4SDewv7dyLuPF9TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJRgLpIYqh+k2AdE6XO7GoB81+cwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0NzUzOTc2LTIwZGYtNGMzMC04MjkxLTA4NmJkNjMxYjYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4hDANBgkqhkiG9w0BAQsFAAOCAQEADkacF3mhraD6P2yZhKF8FmB5UoTh FTiNRCNK0mthfTpFQV4yN1fI2Y9TQobn9aeuFg+Ydix0C3JD6xC6cv6Elbu3LfJg LpyXNpigqJxSokbhYeaAwa+A+KzZX7oN0tsdiBa50sjD3Oo5HCIReisKuaiGccT+ HUGN3ZC76ldjRiEsDtk1jBho3oMaQGJpIwZ2CztNuDIwzGsT/N/SlzxwAQbhk3Is gIkKuVkSZcUsAepdijVMausFRPgSlKBvcklSGC2ilnoAhACjr1Qe720OscKv57Tj vhLDhKs0g74NPQ7kOe7DjQEhNKHxorJttOT80C7fKbB3g3XB0O2XSYzBXw== -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:45 2025 by rpki-client