$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa File: 4e472895-b434-4391-8576-749405dc5ab2.roa (raw, json) Hash identifier: tvqZX9wV4m041TcxJWqLx2sd8VaGsfNTX3PnXd8mKSM= Subject key identifier: 1A:16:90:B3:66:FA:CF:5E:61:8C:BB:00:D6:67:AE:83:1C:27:0C:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 344BC373F61AD03A628855D66FB1F30B9F0F994A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa Signing time: Tue 08 Apr 2025 00:30:13 +0000 ROA not before: Tue 08 Apr 2025 00:30:13 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:4b:c3:73:f6:1a:d0:3a:62:88:55:d6:6f:b1:f3:0b:9f:0f:99:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:30:13 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=d88536e1b88b04d7932022c375b9510d49cecc9db37009699e4efc3aa900af65, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:9a:4f:4c:05:34:ec:4a:8a:ba:da:54:a1: 69:e3:cf:13:db:25:61:1b:0b:4d:22:f0:08:29:ce: 26:19:85:0d:a8:02:bb:c0:41:67:95:c9:1a:65:78: 6a:ae:2a:8b:f0:4c:e0:c4:bb:12:e1:3c:7e:a4:a5: b9:0c:d5:0a:b2:25:7c:8b:58:19:36:56:a9:24:e8: ab:4b:b3:1d:48:e5:8d:28:8c:1e:6e:c8:d5:8b:f6: d0:1f:fd:ec:58:30:78:3c:18:be:06:fa:65:41:b9: 80:98:83:5b:b5:00:5e:65:f2:c1:a8:7a:79:a9:c0: a4:f7:2f:6c:90:68:c3:ac:77:57:ea:e1:4f:cc:45: e4:12:a7:df:ab:c1:8e:4b:b6:94:18:59:46:b0:cf: e1:ec:b9:5c:c8:35:6e:37:ea:8c:ac:fa:31:01:86: 51:e6:8f:5a:8c:c1:71:77:63:d6:a5:73:92:4d:37: 08:51:53:73:e3:92:ca:47:35:f5:3e:c7:43:28:56: 2f:b0:e7:e5:0c:7e:31:bc:33:8d:bd:c7:c1:8d:b1: 45:0e:0a:3a:b9:a1:ee:2c:d7:74:22:9a:59:5d:78: cf:04:9a:86:d2:c7:c9:20:db:e3:20:5a:a9:e8:a1: 02:b9:5a:55:45:c5:98:d8:d2:c3:40:0c:d4:3a:99: 3a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:16:90:B3:66:FA:CF:5E:61:8C:BB:00:D6:67:AE:83:1C:27:0C:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:25:ba:44:25:61:37:f6:2e:b3:11:85:b0:45:41:60:ee:ae: c0:4a:b7:44:c7:90:53:1a:ee:77:79:0f:b6:1a:ea:d7:56:83: 32:69:73:c4:f3:c0:30:dd:3b:d9:cf:68:c4:df:b6:6a:ee:90: 4b:5c:72:c8:69:08:f2:db:93:5b:c0:16:3b:07:e3:9b:bc:3f: 07:eb:d0:e8:82:66:6a:18:19:bd:9f:0e:8c:42:cc:c8:9b:3c: 0c:35:6f:9e:fc:a3:5d:36:5c:50:d8:90:78:23:7e:57:26:b4: eb:f7:1e:a4:a6:67:35:bf:9c:28:35:59:bc:0a:79:cf:ab:c7: bc:a9:bb:8d:66:6b:52:30:42:ca:d3:54:20:7b:36:a4:01:db: b0:a6:1b:27:cb:e4:ad:ad:8c:b2:ec:dd:2a:34:aa:01:df:14: e0:d8:32:c0:38:4e:e5:f8:0f:c4:05:3e:e5:60:37:15:6e:e0: 60:68:73:21:3e:92:20:38:fc:a8:2b:1c:df:a9:1f:7f:30:0b: 21:49:98:ab:eb:bc:08:16:1e:e5:dd:07:14:23:2b:db:63:20: 54:69:59:86:16:6e:10:10:ee:f9:c3:ce:11:4f:29:31:b9:e1: 80:a3:bd:98:22:27:71:3c:4c:1f:7e:9b:b9:f0:fa:b8:16:8a: e5:8e:39:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNEvDc/Ya0DpiiFXWb7HzC58PmUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMDEzWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODg1MzZlMWI4OGIwNGQ3OTMyMDIyYzM3NWI5NTEwZDQ5 Y2VjYzlkYjM3MDA5Njk5ZTRlZmMzYWE5MDBhZjY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoQppPTAU07EqKutpUoWnjzxPbJWEbC00i8AgpziYZhQ2o ArvAQWeVyRpleGquKovwTODEuxLhPH6kpbkM1QqyJXyLWBk2Vqkk6KtLsx1I5Y0o jB5uyNWL9tAf/exYMHg8GL4G+mVBuYCYg1u1AF5l8sGoenmpwKT3L2yQaMOsd1fq 4U/MReQSp9+rwY5LtpQYWUawz+HsuVzINW436oys+jEBhlHmj1qMwXF3Y9alc5JN NwhRU3PjkspHNfU+x0MoVi+w5+UMfjG8M429x8GNsUUOCjq5oe4s13QimlldeM8E mobSx8kg2+MgWqnooQK5WlVFxZjY0sNADNQ6mTqjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGhaQs2b6z15hjLsA1meugxwnDP0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNDcyODk1LWI0MzQtNDM5MS04NTc2LTc0OTQwNWRjNWFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4aDANBgkqhkiG9w0BAQsFAAOCAQEAayW6RCVhN/YusxGFsEVBYO6uwEq3 RMeQUxrud3kPthrq11aDMmlzxPPAMN072c9oxN+2au6QS1xyyGkI8tuTW8AWOwfj m7w/B+vQ6IJmahgZvZ8OjELMyJs8DDVvnvyjXTZcUNiQeCN+Vya06/cepKZnNb+c KDVZvAp5z6vHvKm7jWZrUjBCytNUIHs2pAHbsKYbJ8vkra2MsuzdKjSqAd8U4Ngy wDhO5fgPxAU+5WA3FW7gYGhzIT6SIDj8qCsc36kffzALIUmYq+u8CBYe5d0HFCMr 22MgVGlZhhZuEBDu+cPOEU8pMbnhgKO9mCIncTxMH36bufD6uBaK5Y45Yg== -----END CERTIFICATE-----Generated at Wed Apr 16 17:19:15 2025 by rpki-client