$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa File: 7d8956ca-c7c5-4819-a13e-59940ce8965b.roa (raw, json) Hash identifier: N7h+xOkHbGfJXGKgFHaOfqvyuUf9ni8xPrP/2hPRC8c= Subject key identifier: 69:84:E5:9E:45:06:25:DE:90:4E:79:1A:D1:CF:0B:9F:A5:C4:4F:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C4D17D2FC8750556842E4065FE29F2ADCEBCBE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa Signing time: Wed 28 May 2025 00:31:04 +0000 ROA not before: Wed 28 May 2025 00:31:04 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4d:17:d2:fc:87:50:55:68:42:e4:06:5f:e2:9f:2a:dc:eb:cb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:04 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=2a36069f915bb4e8be8f4f5ce8119f0b8e135ddddff6488c44a3680e9a6b24db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dc:7e:05:5d:18:99:1c:9e:01:e8:93:3e:e6: 47:7a:f6:fe:a7:4e:40:2d:de:8c:4d:fb:f2:6f:f8: 40:e3:b9:92:f6:ad:24:18:72:36:00:98:32:70:dd: d9:78:fb:be:8b:f6:ba:ac:07:96:b5:5a:b3:bd:78: c0:30:7f:21:d3:ec:f1:d8:44:1d:53:5d:f2:80:f4: 62:1e:66:54:f1:fd:f6:4a:1b:c1:07:df:60:48:ed: 04:bf:d8:5f:8f:d3:10:ae:f4:18:dc:61:e0:91:dc: 29:35:d6:88:e6:be:b4:38:b0:12:e8:a8:45:13:b6: 5b:60:1a:e0:ac:94:5c:ff:17:1b:43:21:ef:54:bf: e3:68:17:33:09:ad:04:71:be:9b:b0:1d:8e:f8:68: dc:f9:52:c1:dd:e9:13:67:56:17:92:39:15:ec:0b: b6:1c:68:63:74:95:ba:89:e8:bf:78:1b:67:93:7d: f0:fc:d0:95:34:42:5b:bc:b1:88:fc:ab:47:28:d1: cd:dd:fc:ac:ad:9b:2f:e5:89:7a:0d:fc:9b:64:1c: 88:37:da:81:8d:a3:c7:4f:ac:45:6c:a5:a2:06:d6: 93:5c:80:fa:22:74:62:66:37:41:2a:7d:a5:32:4e: 41:c7:37:13:b3:bb:94:e4:ce:7b:d1:7d:e3:1a:f9: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:84:E5:9E:45:06:25:DE:90:4E:79:1A:D1:CF:0B:9F:A5:C4:4F:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:a0:a8:20:1b:c5:2c:a5:ea:1b:e5:ee:16:68:13:5d:7b:24: 01:03:5d:08:c4:5c:a1:f8:97:e5:00:51:47:ab:c6:8a:8d:d2: 66:7e:3b:05:b9:57:02:61:d7:19:27:2e:3c:c8:1a:7f:29:ef: 6a:77:67:8a:35:e5:76:16:6a:f7:76:78:23:10:8d:f0:0c:5f: 1b:67:fe:a1:8d:b9:c2:7e:36:16:58:b5:fc:e7:cf:c6:90:97: 0b:2d:e6:ec:c0:a8:dc:25:11:f0:91:25:2c:58:b7:a2:4a:63: 93:ea:a8:fd:c3:98:d8:2f:49:4a:3f:d3:fc:f5:4d:9a:b0:d0: 10:1c:7f:5e:89:3f:e2:de:53:71:6d:f1:98:97:6d:7d:85:8f: d8:c9:b3:bc:ab:71:2a:e7:67:f5:7b:69:7c:df:8c:b0:a1:d4: dd:94:64:98:27:32:a6:7f:b8:60:f1:92:34:a6:46:69:fe:54: 09:49:8e:bf:b6:6e:02:c8:e0:e3:c6:8d:36:23:fb:04:b3:14: 42:bf:b1:6a:9e:99:a3:15:2d:42:76:c8:20:a6:68:b1:5b:b3: cf:d6:97:be:2e:0b:6d:2d:f6:22:e6:80:e1:20:0f:37:82:41: ef:8e:e6:af:39:d2:02:3c:38:2e:97:74:25:a9:50:e0:7d:d1: 36:3e:ac:a6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHE0X0vyHUFVoQuQGX+KfKtzry+MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTA0WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTM2MDY5ZjkxNWJiNGU4YmU4ZjRmNWNlODExOWYwYjhl MTM1ZGRkZGZmNjQ4OGM0NGEzNjgwZTlhNmIyNGRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK3H4FXRiZHJ4B6JM+5kd69v6nTkAt3oxN+/Jv+EDjuZL2 rSQYcjYAmDJw3dl4+76L9rqsB5a1WrO9eMAwfyHT7PHYRB1TXfKA9GIeZlTx/fZK G8EH32BI7QS/2F+P0xCu9BjcYeCR3Ck11ojmvrQ4sBLoqEUTtltgGuCslFz/FxtD Ie9Uv+NoFzMJrQRxvpuwHY74aNz5UsHd6RNnVheSORXsC7YcaGN0lbqJ6L94G2eT ffD80JU0Qlu8sYj8q0co0c3d/Kytmy/liXoN/JtkHIg32oGNo8dPrEVspaIG1pNc gPoidGJmN0EqfaUyTkHHNxOzu5TkznvRfeMa+SxPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaYTlnkUGJd6QTnka0c8Ln6XETyswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkODk1NmNhLWM3YzUtNDgxOS1hMTNlLTU5OTQwY2U4OTY1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NzANBgkqhkiG9w0BAQsFAAOCAQEAd6CoIBvFLKXqG+XuFmgTXXskAQNd CMRcofiX5QBRR6vGio3SZn47BblXAmHXGScuPMgafynvandnijXldhZq93Z4IxCN 8AxfG2f+oY25wn42Fli1/OfPxpCXCy3m7MCo3CUR8JElLFi3okpjk+qo/cOY2C9J Sj/T/PVNmrDQEBx/Xok/4t5TcW3xmJdtfYWP2MmzvKtxKudn9XtpfN+MsKHU3ZRk mCcypn+4YPGSNKZGaf5UCUmOv7ZuAsjg48aNNiP7BLMUQr+xap6ZoxUtQnbIIKZo sVuzz9aXvi4LbS32IuaA4SAPN4JB747mrznSAjw4Lpd0JalQ4H3RNj6spg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:00 2025 by rpki-client