$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa File: 48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa (raw, json) Hash identifier: Z/ao7/edl8x1GHOSzArbl6Sq4MiXsP450SiU2kDcTBI= Subject key identifier: 82:01:75:C1:FC:FE:0D:EA:5D:ED:30:C0:CF:2C:62:A6:66:F0:E6:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E330F212A25F3F600953A69B5B7A2804E636D01 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa Signing time: Tue 20 May 2025 00:52:06 +0000 ROA not before: Tue 20 May 2025 00:52:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:33:0f:21:2a:25:f3:f6:00:95:3a:69:b5:b7:a2:80:4e:63:6d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:52:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=79bbf1aa19fe0ba6cdb4b173b1b471655135e945e9eec716cd1dc4d966526074, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:29:4f:8e:2c:25:c6:9b:37:c8:cd:8f:79: 13:51:d1:fd:92:e2:63:a9:55:a8:ad:91:4d:cc:6d: a7:ac:e8:a9:6a:4e:de:2d:9b:67:33:ba:20:5f:d5: c3:03:bb:26:54:24:b6:05:20:03:a3:23:19:40:cf: cb:5f:5a:0a:15:a7:e0:52:f7:a4:ea:5e:70:8d:ef: f6:49:a0:df:30:3f:3e:b0:31:12:e6:73:3a:e4:38: fd:d3:0e:bb:b5:9f:0d:e6:a4:87:28:9e:02:61:96: bb:44:c9:84:30:12:33:33:49:62:ad:a8:75:f8:a8: fe:16:f9:5f:72:30:dc:5b:c5:7c:41:37:c2:fb:98: 3a:1d:50:b2:d8:1b:24:96:d0:a0:3d:78:cc:ab:bf: ef:23:cb:bd:6b:8c:e4:41:86:88:d8:af:15:93:b5: 02:52:2c:55:48:39:ce:5d:46:47:fd:92:47:17:5e: e1:cd:63:4f:db:53:e7:e6:0d:44:17:75:de:a4:d2: 7b:f5:9b:4a:21:92:f7:fa:22:86:66:79:fb:78:c5: 0c:ed:cf:a1:5c:34:3b:a3:08:95:c2:57:f7:8b:f9: 37:e0:f9:ef:d6:c3:78:15:32:b8:a8:fd:28:de:39: 30:e5:3e:a9:9b:a7:b1:2c:e8:77:58:9c:e0:39:c0: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:01:75:C1:FC:FE:0D:EA:5D:ED:30:C0:CF:2C:62:A6:66:F0:E6:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:1b:5b:fc:ef:91:c6:d4:fb:e9:97:9a:16:9f:3a:4e:3f:53: 18:a9:e8:56:10:42:0e:26:1f:17:1f:b7:bc:ad:3e:b4:1c:5a: 67:8c:2a:68:79:0b:00:b8:f5:1f:69:b9:7c:43:66:96:b6:84: 2c:10:6d:86:21:11:20:7c:df:bc:e8:c6:9a:e2:25:b5:cf:fb: af:ba:8c:68:ad:d2:0f:c3:e1:09:6f:d2:d9:34:d3:c7:53:45: b0:8d:e5:03:a6:2c:72:2a:f5:29:8c:38:47:9c:e4:75:96:ff: 54:d4:2c:46:ec:a2:81:b9:cf:66:14:1d:96:d1:5f:76:ea:aa: 48:e6:53:ff:82:59:59:35:04:41:a2:18:4f:ba:9d:e5:33:34: 41:fe:2c:b2:11:52:d2:cf:db:ca:3b:2d:3d:fe:ae:f9:69:4e: 50:3d:ed:d0:21:cf:25:42:5b:cd:d3:cc:4e:af:a7:e5:61:3f: 1d:4b:53:63:42:9e:05:c3:51:51:52:bc:95:c2:5e:72:31:ad: b3:c2:fc:dc:8f:9b:02:4e:7d:c1:aa:8e:f7:b5:e0:ad:52:c1: c8:59:df:5d:75:1e:20:1a:e6:aa:45:aa:03:4e:94:2f:8f:93: f4:ce:94:51:f5:a7:13:e1:36:fb:d5:97:ed:02:a7:19:e9:90: 89:dd:f8:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHjMPISol8/YAlTpptbeigE5jbQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA1MjA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWJiZjFhYTE5ZmUwYmE2Y2RiNGIxNzNiMWI0NzE2NTUx MzVlOTQ1ZTllZWM3MTZjZDFkYzRkOTY2NTI2MDc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPXSlPjiwlxps3yM2PeRNR0f2S4mOpVaitkU3Mbaes6Klq Tt4tm2czuiBf1cMDuyZUJLYFIAOjIxlAz8tfWgoVp+BS96TqXnCN7/ZJoN8wPz6w MRLmczrkOP3TDru1nw3mpIcongJhlrtEyYQwEjMzSWKtqHX4qP4W+V9yMNxbxXxB N8L7mDodULLYGySW0KA9eMyrv+8jy71rjORBhojYrxWTtQJSLFVIOc5dRkf9kkcX XuHNY0/bU+fmDUQXdd6k0nv1m0ohkvf6IoZmeft4xQztz6FcNDujCJXCV/eL+Tfg +e/Ww3gVMrio/SjeOTDlPqmbp7Es6HdYnOA5wOVxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUggF1wfz+Depd7TDAzyxipmbw5m8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4YmMwMmUxLTRkMmItNDg1NC05MTU1LWQyMThlMmZlMGUyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nzANBgkqhkiG9w0BAQsFAAOCAQEAMxtb/O+RxtT76ZeaFp86Tj9TGKno VhBCDiYfFx+3vK0+tBxaZ4wqaHkLALj1H2m5fENmlraELBBthiERIHzfvOjGmuIl tc/7r7qMaK3SD8PhCW/S2TTTx1NFsI3lA6Yscir1KYw4R5zkdZb/VNQsRuyigbnP ZhQdltFfduqqSOZT/4JZWTUEQaIYT7qd5TM0Qf4sshFS0s/byjstPf6u+WlOUD3t 0CHPJUJbzdPMTq+n5WE/HUtTY0KeBcNRUVK8lcJecjGts8L83I+bAk59waqO97Xg rVLByFnfXXUeIBrmqkWqA06UL4+T9M6UUfWnE+E2+9WX7QKnGemQid34qA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:18:50 2025 by rpki-client