$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa628970-b51f-4235-8866-b34eb9ef3808.roa File: fa628970-b51f-4235-8866-b34eb9ef3808.roa (raw, json) Hash identifier: rg9+q9pHstnEexbN8ZmjJPpqy136LAnCUBaMBLH8Blg= Subject key identifier: D6:12:AE:D8:4F:B8:B5:B2:EF:17:E2:A4:9B:74:CA:F8:CB:CC:5A:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E728C2F41F000C6C2DDF61D2BEC5893E733D5E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa628970-b51f-4235-8866-b34eb9ef3808.roa Signing time: Tue 08 Apr 2025 00:20:25 +0000 ROA not before: Tue 08 Apr 2025 00:20:25 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.54.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:72:8c:2f:41:f0:00:c6:c2:dd:f6:1d:2b:ec:58:93:e7:33:d5:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:20:25 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=a251fd7c0dabc0258232e0445d39fef43439bab86bd8a63c27d18d6f566a9150, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:56:ea:04:ac:42:52:de:4a:0e:6b:b1:a4: 02:ae:99:78:23:13:0f:5e:9e:45:54:67:c4:0d:78: 73:17:60:1f:0a:59:00:be:6f:9c:90:8a:ff:bb:2b: 17:5f:c6:60:4d:46:e2:21:55:d6:0e:54:7c:a8:73: 81:46:29:02:a1:f1:ad:51:fc:94:5a:f8:20:19:a2: 9e:79:ee:4c:ff:46:20:e0:31:38:a2:63:c7:8b:72: bb:f1:3f:85:b1:cd:ff:ec:46:c4:2f:1c:7b:09:67: cc:c0:7a:a0:83:ba:3c:33:0f:6c:61:07:80:d5:26: 9d:8c:9e:3d:54:bb:38:2e:c4:59:04:15:a2:0b:bd: 9f:55:4c:2b:de:7a:0a:52:47:de:f6:a3:b5:dd:ce: 3c:d1:61:b2:a8:62:c0:bb:b5:3a:63:f8:7a:3a:71: b4:1d:b9:3a:8a:78:56:9d:8b:3e:30:e9:7b:ec:4e: 01:99:87:a1:e0:ef:42:3e:12:c1:10:c2:e7:9a:cf: 59:f7:2b:ea:2f:e7:f2:ea:38:6b:4c:9c:f8:3e:c7: 38:ec:fa:48:7c:07:77:5e:e2:46:b3:2b:04:99:b8: c5:7a:b9:33:1f:80:90:33:ea:cd:f3:8e:e6:86:9a: fe:cd:fd:e6:3f:c7:af:a3:4f:1f:0b:cb:91:63:48: d0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:12:AE:D8:4F:B8:B5:B2:EF:17:E2:A4:9B:74:CA:F8:CB:CC:5A:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa628970-b51f-4235-8866-b34eb9ef3808.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.54.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:8d:f2:83:58:ef:16:54:cf:55:a2:38:f4:bb:c4:ca:46:1b: 7a:52:d4:57:09:dc:61:b1:ef:42:0b:b3:c1:1c:8b:3e:79:3e: d9:f2:a8:45:27:c5:28:32:b7:64:7c:94:25:6e:1d:79:83:7f: 8c:fe:d4:32:f1:56:70:82:41:ed:d1:58:59:10:0c:4a:fb:78: f6:78:0c:f9:2f:0a:58:92:62:90:5f:9c:fb:30:1c:20:7c:d8: 1c:2f:7d:f1:36:ef:16:25:a4:7b:88:6c:11:0b:a4:03:48:f8: 59:9f:48:d1:bb:fb:7a:bd:f5:8c:5a:ca:ad:4f:a9:76:8e:19: fd:6a:66:61:49:14:a1:ec:80:44:17:d8:32:13:e2:98:8e:d1: 59:47:70:70:f3:4b:c7:59:e7:3e:1f:ad:49:fe:70:48:0d:a2: d7:54:d1:29:87:7a:42:a0:3c:87:c7:20:0d:d5:2f:c7:e8:28: 80:da:a3:a7:f0:24:c4:2d:06:bb:fa:09:97:90:4c:cc:13:6e: c2:5c:0b:16:06:56:b9:b5:59:ab:6d:dc:0a:fa:64:b4:76:e6: 21:2c:dc:d6:89:81:f7:c0:41:20:b5:d9:3f:8c:c8:39:81:19: c1:ae:e5:9d:24:29:09:93:8d:56:4e:59:6b:51:ec:29:41:d1: 89:c5:44:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXnKML0HwAMbC3fYdK+xYk+cz1eMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAyMDI1WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjUxZmQ3YzBkYWJjMDI1ODIzMmUwNDQ1ZDM5ZmVmNDM0 MzliYWI4NmJkOGE2M2MyN2QxOGQ2ZjU2NmE5MTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9zlbqBKxCUt5KDmuxpAKumXgjEw9enkVUZ8QNeHMXYB8K WQC+b5yQiv+7KxdfxmBNRuIhVdYOVHyoc4FGKQKh8a1R/JRa+CAZop557kz/RiDg MTiiY8eLcrvxP4Wxzf/sRsQvHHsJZ8zAeqCDujwzD2xhB4DVJp2Mnj1UuzguxFkE FaILvZ9VTCveegpSR972o7XdzjzRYbKoYsC7tTpj+Ho6cbQduTqKeFadiz4w6Xvs TgGZh6Hg70I+EsEQwueaz1n3K+ov5/LqOGtMnPg+xzjs+kh8B3de4kazKwSZuMV6 uTMfgJAz6s3zjuaGmv7N/eY/x6+jTx8Ly5FjSNDdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1hKu2E+4tbLvF+Kkm3TK+MvMWj0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhNjI4OTcwLWI1MWYtNDIzNS04ODY2LWIzNGViOWVmMzgwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2NjANBgkqhkiG9w0BAQsFAAOCAQEAHI3yg1jvFlTPVaI49LvEykYbelLU VwncYbHvQguzwRyLPnk+2fKoRSfFKDK3ZHyUJW4deYN/jP7UMvFWcIJB7dFYWRAM Svt49ngM+S8KWJJikF+c+zAcIHzYHC998TbvFiWke4hsEQukA0j4WZ9I0bv7er31 jFrKrU+pdo4Z/WpmYUkUoeyARBfYMhPimI7RWUdwcPNLx1nnPh+tSf5wSA2i11TR KYd6QqA8h8cgDdUvx+gogNqjp/AkxC0Gu/oJl5BMzBNuwlwLFgZWubVZq23cCvpk tHbmISzc1omB98BBILXZP4zIOYEZwa7lnSQpCZONVk5Za1HsKUHRicVEgA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:47:34 2025 by rpki-client