$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa File: 78dd989c-1826-4000-a1be-585b3b82efe8.roa (raw, json) Hash identifier: DwDJpXdjXHFeBNJLFfkJihVsn/WAkUEwnED8xENuv8o= Subject key identifier: C8:DA:FB:E7:F0:B7:F0:E1:00:7A:9A:40:65:B5:D6:44:62:7E:DC:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E2B47218FFBFFD70412A59748099B09949EF5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa Signing time: Fri 14 Mar 2025 00:32:05 +0000 ROA not before: Fri 14 Mar 2025 00:32:05 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2b:47:21:8f:fb:ff:d7:04:12:a5:97:48:09:9b:09:94:9e:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:32:05 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d5:ac:22:5d:e3:05:1b:fd:9f:c8:e7:2c:1d: cd:b8:ef:ac:76:28:68:df:13:a2:31:20:40:3d:7c: 44:13:37:d4:3e:d2:f0:23:75:b4:31:51:fb:29:97: 4c:fc:22:35:3d:44:ce:52:44:45:b7:35:a1:67:f7: e3:d8:80:69:23:7b:a7:07:07:da:eb:03:ae:7f:6b: ad:c8:da:50:8b:ee:f4:5a:65:77:e7:2c:d3:66:38: dd:0a:22:18:cb:44:f3:f5:82:9b:1c:e1:98:9a:a1: fb:58:91:7b:09:df:52:15:2b:07:dd:a2:30:c3:2a: c1:8c:d6:54:17:ea:14:3a:be:37:69:3b:13:cf:6b: 70:66:d8:cd:03:cc:9a:95:86:14:af:ea:a9:c5:2a: 36:f0:8d:d5:16:79:d3:fc:5d:3d:a9:34:6a:a7:70: 3a:d0:49:5c:e8:b9:eb:dc:98:04:5a:89:44:aa:eb: 97:40:53:00:5b:bc:48:23:45:22:7e:a9:4c:d2:8d: dd:63:b3:6a:51:bd:9c:8c:61:8e:a3:11:c9:b3:e3: 27:6d:61:ec:a0:aa:ba:5f:fe:4b:d9:ff:f3:08:d8: bf:df:4d:41:23:d0:ce:8f:b9:06:8c:56:d2:4e:56: 7b:2e:40:e4:f4:12:be:e1:a4:6c:11:38:21:21:e5: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:DA:FB:E7:F0:B7:F0:E1:00:7A:9A:40:65:B5:D6:44:62:7E:DC:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:08:de:de:ad:54:06:27:33:ae:33:03:da:f8:08:15:60:04: 46:dd:a0:37:a9:8c:f6:7b:6e:ab:14:3f:da:45:cd:f7:09:95: 61:c3:a0:55:82:56:4a:6d:12:d1:58:21:c7:1c:dc:d5:ef:84: 7a:ec:6a:fb:57:b9:0b:d3:d6:c5:de:3d:94:fb:cf:19:ea:41: cf:24:26:14:a1:d4:c9:f8:95:78:19:2c:2f:88:22:c5:96:b6: fd:82:1f:90:72:be:d3:aa:6a:3f:7f:bd:5f:68:e8:b7:ea:ec: 47:ec:a0:43:a7:1f:92:5a:6b:a4:c1:c8:8f:4a:82:1e:f2:16: 56:4d:f3:90:7d:f8:64:a4:ac:c5:6e:47:88:6b:38:50:ca:74: 64:4b:56:da:65:10:3c:b2:f1:73:32:66:be:8d:52:b9:47:44: 4f:ac:28:14:c9:fa:a4:21:cb:78:c1:50:c7:fa:9b:0a:96:aa: 48:59:2e:2c:4b:5e:52:c1:8a:65:4d:6e:85:67:af:78:fd:cc: c9:bc:1a:1b:1b:95:4a:42:bc:73:58:91:f9:6e:37:45:2d:d8: bc:d2:f2:60:5c:20:68:6a:5a:34:3b:68:6f:1f:ea:5e:06:70: 2b:52:e5:7c:f4:e5:98:19:12:f5:56:b3:93:cd:38:f3:28:23: 70:78:6c:af -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITXitHIY/7/9cEEqWXSAmbCZSe9TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTAzMTQwMDMyMDVaFw0yNTA0MTgyMzU5NTla MHoxSTBHBgNVBAUTQDc3MDkyNTY4Y2E4ODI2ODRmYTJkNGRlNzEwYWM3MDQ1MzY4 OTU1MjA3YTkyYmY3YmYzYjgyZDIzYWQ5NjdlZTgxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKPVrCJd4wUb/Z/I5ywdzbjvrHYoaN8TojEgQD18RBM31D7S 8CN1tDFR+ymXTPwiNT1EzlJERbc1oWf349iAaSN7pwcH2usDrn9rrcjaUIvu9Fpl d+cs02Y43QoiGMtE8/WCmxzhmJqh+1iRewnfUhUrB92iMMMqwYzWVBfqFDq+N2k7 E89rcGbYzQPMmpWGFK/qqcUqNvCN1RZ50/xdPak0aqdwOtBJXOi569yYBFqJRKrr l0BTAFu8SCNFIn6pTNKN3WOzalG9nIxhjqMRybPjJ21h7KCqul/+S9n/8wjYv99N QSPQzo+5BoxW0k5Wey5A5PQSvuGkbBE4ISHlTosCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTI2vvn8Lfw4QB6mkBltdZEYn7c+jAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNzhkZDk4OWMtMTgyNi00MDAwLWExYmUtNTg1YjNiODJlZmU4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDADgwMA0GCSqGSIb3DQEBCwUAA4IBAQDFCN7erVQGJzOuMwPa+AgVYARG3aA3 qYz2e26rFD/aRc33CZVhw6BVglZKbRLRWCHHHNzV74R67Gr7V7kL09bF3j2U+88Z 6kHPJCYUodTJ+JV4GSwviCLFlrb9gh+Qcr7Tqmo/f71faOi36uxH7KBDpx+SWmuk wciPSoIe8hZWTfOQffhkpKzFbkeIazhQynRkS1baZRA8svFzMma+jVK5R0RPrCgU yfqkIct4wVDH+psKlqpIWS4sS15SwYplTW6FZ694/czJvBobG5VKQrxzWJH5bjdF Ldi80vJgXCBoalo0O2hvH+peBnArUuV89OWYGRL1VrOTzTjzKCNweGyv -----END CERTIFICATE-----Generated at Sat Apr 5 16:50:57 2025 by rpki-client