$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a62a997-9b7b-441a-b9b2-dc02180d8cf6.roa File: 9a62a997-9b7b-441a-b9b2-dc02180d8cf6.roa (raw, json) Hash identifier: 6EWF8FO3Y3Os4hO/hBqU8zVJ0/IstwOwovCW3ucDNyg= Subject key identifier: 4E:C6:40:9B:0F:87:69:51:F8:83:55:0E:50:58:D0:62:98:79:1E:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 383E12FACCFF4BD1C78607A161769A03158F3851 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a62a997-9b7b-441a-b9b2-dc02180d8cf6.roa Signing time: Fri 21 Mar 2025 00:10:20 +0000 ROA not before: Fri 21 Mar 2025 00:10:20 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3e:12:fa:cc:ff:4b:d1:c7:86:07:a1:61:76:9a:03:15:8f:38:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 21 00:10:20 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5a:27:e7:b0:60:25:1c:8e:28:ce:37:7e:5c: ea:82:f2:64:18:63:3d:78:86:ea:5d:2c:74:5d:9f: f8:04:6c:08:6c:b6:f4:16:67:eb:df:d4:b6:bf:0c: 92:2b:af:c4:51:42:b3:26:cd:41:c8:1a:83:d6:7b: ad:2e:58:fd:59:b6:27:f5:2f:72:38:3f:bc:33:a3: 05:76:ca:01:c6:3e:d6:9c:69:9b:c6:fe:95:98:e7: 73:22:52:01:a6:e9:da:e2:39:d0:21:f7:0d:cd:60: be:b6:ba:49:fa:41:e6:97:2c:69:8d:12:14:7f:d0: 4f:60:f2:64:52:6d:15:8c:37:07:09:03:44:8d:66: f0:44:5f:aa:88:63:b0:66:52:13:6b:d9:ee:0c:cc: 07:9e:07:48:59:e6:64:0b:68:bf:77:fa:bf:ef:51: 16:6e:f6:2e:a1:34:20:d2:28:ad:e6:20:ed:35:e1: 36:e7:69:2b:04:c6:35:63:13:52:d6:58:78:cc:91: 2c:85:03:53:2d:8d:66:38:f9:04:49:1c:54:12:d1: f5:18:9d:74:55:89:a0:44:6e:21:71:f4:55:4a:48: f6:2d:2c:32:53:c5:fb:ee:a3:e9:42:cd:b0:b0:8b: 2b:d6:2a:fa:b0:37:05:8b:6d:c0:16:37:51:50:a4: be:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C6:40:9B:0F:87:69:51:F8:83:55:0E:50:58:D0:62:98:79:1E:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a62a997-9b7b-441a-b9b2-dc02180d8cf6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:7d:5f:45:59:82:b5:20:94:98:be:89:6f:6d:59:4e:59:7f: 1f:16:d6:02:b6:1e:7e:6f:a8:9b:a4:29:86:ca:2b:5b:cc:a6: c4:52:e0:5e:54:38:65:a4:d1:4d:27:9a:c8:87:40:93:13:ed: 53:14:6d:96:2a:3c:3d:88:cc:17:74:7c:0d:97:11:90:ca:47: ee:25:2b:1a:3c:d7:a2:63:8a:61:d9:21:6c:fa:f1:79:1d:c4: a7:21:e2:6b:84:3b:13:71:bc:7c:03:d6:ff:b0:44:60:d7:11: 4f:f5:86:57:ba:1e:ef:93:05:e0:65:34:c4:1f:f8:fa:03:43: 4d:93:f7:f3:a1:70:05:ed:0e:9e:08:39:bd:e9:98:5d:37:b7: 26:45:d6:bc:b7:99:db:22:8f:a6:4d:d0:2b:de:4f:8d:50:2b: 44:ad:5e:eb:af:3e:c1:ac:a7:f1:d4:5d:13:69:d5:7d:06:c7: c8:dc:62:bd:e7:48:4c:2f:3e:3a:41:d6:0d:eb:85:a3:39:91: f0:2e:2e:4a:fd:c7:6d:67:c5:34:0a:8d:01:ec:e0:b3:35:76: 9d:8a:79:ed:9a:34:1f:44:2c:93:91:c0:e2:4a:34:03:67:67: c8:c8:23:ae:6a:2c:e0:7d:ad:42:92:7b:a7:a7:43:05:2e:16: 66:f8:33:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOD4S+sz/S9HHhgehYXaaAxWPOFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIxMDAxMDIwWhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzA0ZTdmNWQ4N2YwMGVhZjRmNmFjNmMyMWMxOTEyYTZm Y2VlNjI4ZDdiZjk0NmU1NGQyNWJhMGY2M2YzNjQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1WifnsGAlHI4ozjd+XOqC8mQYYz14hupdLHRdn/gEbAhs tvQWZ+vf1La/DJIrr8RRQrMmzUHIGoPWe60uWP1Ztif1L3I4P7wzowV2ygHGPtac aZvG/pWY53MiUgGm6driOdAh9w3NYL62ukn6QeaXLGmNEhR/0E9g8mRSbRWMNwcJ A0SNZvBEX6qIY7BmUhNr2e4MzAeeB0hZ5mQLaL93+r/vURZu9i6hNCDSKK3mIO01 4TbnaSsExjVjE1LWWHjMkSyFA1MtjWY4+QRJHFQS0fUYnXRViaBEbiFx9FVKSPYt LDJTxfvuo+lCzbCwiyvWKvqwNwWLbcAWN1FQpL75AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTsZAmw+HaVH4g1UOUFjQYph5Hp0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhNjJhOTk3LTliN2ItNDQxYS1iOWIyLWRjMDIxODBkOGNmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4vjANBgkqhkiG9w0BAQsFAAOCAQEAGn1fRVmCtSCUmL6Jb21ZTll/HxbW ArYefm+om6QphsorW8ymxFLgXlQ4ZaTRTSeayIdAkxPtUxRtlio8PYjMF3R8DZcR kMpH7iUrGjzXomOKYdkhbPrxeR3EpyHia4Q7E3G8fAPW/7BEYNcRT/WGV7oe75MF 4GU0xB/4+gNDTZP386FwBe0Ongg5vemYXTe3JkXWvLeZ2yKPpk3QK95PjVArRK1e 668+wayn8dRdE2nVfQbHyNxivedITC8+OkHWDeuFozmR8C4uSv3HbWfFNAqNAezg szV2nYp57Zo0H0Qsk5HA4ko0A2dnyMgjrmos4H2tQpJ7p6dDBS4WZvgzyA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:08 2025 by rpki-client