$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51621cf0-cbef-4961-bbc8-b9ec131a5408.roa File: 51621cf0-cbef-4961-bbc8-b9ec131a5408.roa (raw, json) Hash identifier: xmTkedlxjGg4OhmOZzCkM6HML90vZCujoUZyNKFT+aY= Subject key identifier: 5A:3B:EB:75:EB:8B:C8:F8:46:F1:B3:0F:AB:A6:91:5D:4A:AE:F9:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32C982E068BE75501B5F80FF125DE89B5B2F93AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51621cf0-cbef-4961-bbc8-b9ec131a5408.roa Signing time: Sat 12 Apr 2025 00:50:16 +0000 ROA not before: Sat 12 Apr 2025 00:50:16 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.65.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c9:82:e0:68:be:75:50:1b:5f:80:ff:12:5d:e8:9b:5b:2f:93:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:50:16 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=cc2e6ebb1bd903436d422c0c5d7f684a7042133f0dd08e7e1246ca01be4d5d30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:83:7d:29:5c:0e:a2:1e:f3:17:cb:cd:41:52: a9:0b:ce:58:d4:f5:aa:0d:3e:39:62:5e:9c:90:7e: a8:12:95:d8:c7:76:8f:61:6a:1b:7d:ac:01:bd:ef: 4f:c2:2d:41:9f:79:62:10:4c:6c:60:c0:c8:10:7f: f1:69:09:64:46:70:86:fe:13:1b:33:5c:ba:67:9c: ed:e6:b3:59:45:7d:ce:37:6e:7e:03:69:b6:62:0e: db:33:bb:41:b1:c4:d5:71:4d:a7:1c:0c:b6:20:81: 83:32:aa:72:84:50:3e:18:00:fc:a4:ba:82:bb:ed: b0:57:ea:41:3e:a7:62:c1:b7:b9:22:22:b7:35:af: 30:fd:df:db:07:2c:eb:09:5c:56:2e:a6:74:68:fe: 81:03:67:92:81:3b:7a:2a:68:8f:40:ac:67:25:2a: 40:5f:08:a1:c8:c1:78:8e:66:d1:f4:f9:80:ef:bc: aa:53:2f:d1:2f:79:77:38:48:14:f2:80:f0:de:34: b5:72:3b:70:ac:57:7a:c9:3e:31:9b:04:4b:cb:7e: da:b0:10:66:ec:1a:ea:31:ef:4d:07:c6:c6:91:76: 12:59:f1:7b:1a:e4:2a:be:d6:14:dd:1d:10:36:cb: 52:cc:0b:6a:df:16:7a:75:56:00:bb:5f:80:3d:d9: 0c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3B:EB:75:EB:8B:C8:F8:46:F1:B3:0F:AB:A6:91:5D:4A:AE:F9:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51621cf0-cbef-4961-bbc8-b9ec131a5408.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.65.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:64:d2:0e:78:5d:5d:26:43:b1:87:0d:81:57:ed:72:30:37: a6:3d:17:8c:1a:e4:48:4a:3b:ac:53:1a:e5:9c:bd:12:4c:15: 52:bd:5c:cc:8e:34:a3:f2:33:db:39:1b:3b:56:a8:3a:6c:e6: 15:91:c9:e9:80:0e:38:b6:33:5c:9c:d6:2a:13:50:75:75:d1: 48:84:7d:5a:e2:aa:97:c2:41:51:76:12:03:09:cc:c8:83:68: 13:4c:a2:56:1a:3d:d4:f6:0b:b5:43:4f:2c:73:d8:ba:25:6d: 21:2c:f5:f2:1e:c7:e9:7e:84:2b:24:77:b1:fb:a5:ca:8e:15: 76:e9:f1:02:61:5f:11:99:43:cb:a6:fa:8c:90:ce:07:12:c1: 7a:8d:29:f8:d4:01:f0:aa:82:48:1d:8d:3f:f9:be:d3:02:69: fb:c6:4e:a0:cc:d3:db:be:23:21:c3:54:43:1e:9d:86:aa:af: b5:7a:4d:89:d1:d3:c7:fd:b6:9e:49:35:e3:a4:d8:89:78:35: c6:a8:6a:67:d3:59:99:9d:9a:f0:57:dd:2e:e3:25:d3:7c:78: 66:d6:19:df:9e:95:21:c0:e5:7e:68:66:c3:01:9b:77:a6:83: 1a:5f:15:75:ea:98:a8:87:e6:31:89:2e:79:22:1a:70:14:bb: 2b:13:03:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMsmC4Gi+dVAbX4D/El3om1svk6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDA1MDE2WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzJlNmViYjFiZDkwMzQzNmQ0MjJjMGM1ZDdmNjg0YTcw NDIxMzNmMGRkMDhlN2UxMjQ2Y2EwMWJlNGQ1ZDMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYg30pXA6iHvMXy81BUqkLzljU9aoNPjliXpyQfqgSldjH do9haht9rAG970/CLUGfeWIQTGxgwMgQf/FpCWRGcIb+ExszXLpnnO3ms1lFfc43 bn4DabZiDtszu0GxxNVxTaccDLYggYMyqnKEUD4YAPykuoK77bBX6kE+p2LBt7ki Irc1rzD939sHLOsJXFYupnRo/oEDZ5KBO3oqaI9ArGclKkBfCKHIwXiOZtH0+YDv vKpTL9EveXc4SBTygPDeNLVyO3CsV3rJPjGbBEvLftqwEGbsGuox700HxsaRdhJZ 8Xsa5Cq+1hTdHRA2y1LMC2rfFnp1VgC7X4A92QwjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWjvrdeuLyPhG8bMPq6aRXUqu+WEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxNjIxY2YwLWNiZWYtNDk2MS1iYmM4LWI5ZWMxMzFhNTQwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QTANBgkqhkiG9w0BAQsFAAOCAQEAGWTSDnhdXSZDsYcNgVftcjA3pj0X jBrkSEo7rFMa5Zy9EkwVUr1czI40o/Iz2zkbO1aoOmzmFZHJ6YAOOLYzXJzWKhNQ dXXRSIR9WuKql8JBUXYSAwnMyINoE0yiVho91PYLtUNPLHPYuiVtISz18h7H6X6E KyR3sfulyo4VdunxAmFfEZlDy6b6jJDOBxLBeo0p+NQB8KqCSB2NP/m+0wJp+8ZO oMzT274jIcNUQx6dhqqvtXpNidHTx/22nkk146TYiXg1xqhqZ9NZmZ2a8FfdLuMl 03x4ZtYZ356VIcDlfmhmwwGbd6aDGl8VdeqYqIfmMYkueSIacBS7KxMDPA== -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:58 2025 by rpki-client