$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d96ed6-09b2-4c70-9918-fa565f4aecae.roa File: d3d96ed6-09b2-4c70-9918-fa565f4aecae.roa (raw, json) Hash identifier: k6dQkW/x6x4raNkezKhGdFJmLIDz7mFGYn63VuHuNEY= Subject key identifier: 0A:0E:B0:60:9E:21:5B:87:8D:49:20:05:BB:F0:3B:FA:A6:37:0A:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 289659C5F2AFC79D6141223C6DD7F042F442BF34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d96ed6-09b2-4c70-9918-fa565f4aecae.roa Signing time: Sat 05 Apr 2025 00:00:28 +0000 ROA not before: Sat 05 Apr 2025 00:00:28 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.155.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:96:59:c5:f2:af:c7:9d:61:41:22:3c:6d:d7:f0:42:f4:42:bf:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 5 00:00:28 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0e:21:d1:fa:ac:18:dc:22:3b:1c:a2:f6:41: cb:f5:da:12:d3:25:97:79:10:45:8d:c8:02:7a:0e: 2c:d0:38:40:07:e5:a3:fb:09:61:c6:95:df:4e:8d: bc:98:db:42:8d:1a:fd:b3:8a:a4:8e:c1:b3:9e:54: f7:bd:ba:ec:9f:f3:cf:95:df:fe:a2:6f:b6:70:b5: e3:7a:9b:9a:4e:14:fc:25:a1:8e:6a:22:35:47:ee: df:0d:8b:0e:37:33:39:9b:a6:0d:b5:12:8d:4d:f0: 89:77:38:a6:4a:f3:69:32:02:55:02:99:e3:07:4c: 8f:80:77:26:d3:cd:be:4c:c5:c7:80:ea:2c:ff:58: fc:3a:fc:cc:0f:c4:c4:5c:4a:6a:c1:36:2d:2d:4f: 2e:62:8d:ba:c5:3c:fb:ff:82:75:f3:c3:06:a8:00: 2e:96:4e:af:da:e5:54:96:ff:b2:aa:62:93:bf:ab: 21:5b:a3:79:12:6a:e2:37:21:87:cf:e7:dd:79:bf: e1:9f:72:2c:7c:58:b5:62:46:13:76:0d:6b:48:8c: 0a:09:8e:6e:df:85:a4:c0:ad:1e:ca:08:cc:80:09: d2:d7:d6:7d:7a:d1:a2:9b:c5:90:19:c7:89:fc:7d: 39:fd:82:a6:c3:d0:72:7c:0f:0b:44:8b:07:6d:e5: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0E:B0:60:9E:21:5B:87:8D:49:20:05:BB:F0:3B:FA:A6:37:0A:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3d96ed6-09b2-4c70-9918-fa565f4aecae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.155.0.0/17 Signature Algorithm: sha256WithRSAEncryption a7:02:80:08:51:5f:e8:ad:30:be:31:3a:bc:0e:73:27:72:e8: 24:f3:4a:5d:1b:4c:81:8b:2f:73:28:80:fe:40:08:38:b9:b0: 38:50:61:52:ec:27:e0:3e:a1:5d:ff:83:22:82:a0:b8:98:d6: 82:0e:ef:89:71:1d:17:e2:6c:3c:d4:6e:51:a8:7f:49:77:4a: 60:16:12:bc:d8:15:97:9a:f9:56:91:46:86:a7:a7:c4:d6:50: c3:cb:c2:25:32:3f:4e:31:bd:3e:11:7f:2d:08:af:45:48:be: 6a:af:dc:a7:c7:37:66:ed:be:4b:a5:73:9e:14:99:96:a2:9b: b5:99:d6:3d:cc:97:f8:70:aa:f6:75:3f:46:d7:4f:f4:0a:c5: 90:f2:7b:bd:46:cc:fc:24:1b:05:58:4e:14:f0:47:30:94:41: 3b:1c:f2:1e:33:fb:4a:06:37:d2:cc:7b:dc:3c:99:3b:ef:fb: 54:12:42:3b:13:33:86:4b:f5:4b:e4:49:73:89:33:56:4e:9c: bd:8e:a5:fb:d6:41:57:35:f3:5f:84:fe:82:59:e8:d4:a7:1b: 3e:f8:9a:a0:bd:32:a0:d8:c8:2c:4e:71:2f:9c:31:bc:2c:59: 6e:f9:40:1a:23:63:3f:c6:97:d0:b0:f0:7c:71:c1:23:93:86: 8a:f4:31:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKJZZxfKvx51hQSI8bdfwQvRCvzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA1MDAwMDI4WhcNMjUwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGJlYjIyZWFhMmEzNzk1Nzg3ODU0YWQxYjZmOGRiM2M4 MmI3OGI1ZGUxNDY2MjYyNzhlOThmOTZjNGQ3MzljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMDiHR+qwY3CI7HKL2Qcv12hLTJZd5EEWNyAJ6DizQOEAH 5aP7CWHGld9OjbyY20KNGv2ziqSOwbOeVPe9uuyf88+V3/6ib7ZwteN6m5pOFPwl oY5qIjVH7t8Niw43Mzmbpg21Eo1N8Il3OKZK82kyAlUCmeMHTI+AdybTzb5MxceA 6iz/WPw6/MwPxMRcSmrBNi0tTy5ijbrFPPv/gnXzwwaoAC6WTq/a5VSW/7KqYpO/ qyFbo3kSauI3IYfP5915v+Gfcix8WLViRhN2DWtIjAoJjm7fhaTArR7KCMyACdLX 1n160aKbxZAZx4n8fTn9gqbD0HJ8DwtEiwdt5XPHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCg6wYJ4hW4eNSSAFu/A7+qY3CvkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzZDk2ZWQ2LTA5YjItNGM3MC05OTE4LWZhNTY1ZjRhZWNhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc4mwAwDQYJKoZIhvcNAQELBQADggEBAKcCgAhRX+itML4xOrwOcydy6CTz Sl0bTIGLL3MogP5ACDi5sDhQYVLsJ+A+oV3/gyKCoLiY1oIO74lxHRfibDzUblGo f0l3SmAWErzYFZea+VaRRoanp8TWUMPLwiUyP04xvT4Rfy0Ir0VIvmqv3KfHN2bt vkulc54UmZaim7WZ1j3Ml/hwqvZ1P0bXT/QKxZDye71GzPwkGwVYThTwRzCUQTsc 8h4z+0oGN9LMe9w8mTvv+1QSQjsTM4ZL9UvkSXOJM1ZOnL2OpfvWQVc181+E/oJZ 6NSnGz74mqC9MqDYyCxOcS+cMbwsWW75QBojYz/Gl9Cw8HxxwSOThor0Mf8= -----END CERTIFICATE-----Generated at Sat Apr 5 13:22:42 2025 by rpki-client