$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa File: b50e29db-8ea8-465e-b77b-6bb4903e7932.roa (raw, json) Hash identifier: VJ2Z6di6mJvIiW5L0d9g0NsyfbZyybHqmlSXSM7kgDY= Subject key identifier: FC:02:B3:DD:FA:F3:F2:BA:AB:24:E0:AE:BC:87:9F:26:70:04:3B:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 618068351DA1DE9BB401F4E317DAB404085333CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa Signing time: Tue 20 May 2025 15:01:45 +0000 ROA not before: Tue 20 May 2025 15:01:45 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:80:68:35:1d:a1:de:9b:b4:01:f4:e3:17:da:b4:04:08:53:33:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:01:45 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=95e4289d1f90b7e97d807560b08420a247ec72da27de9cee41443e041f1dd36d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:a8:cf:a1:2d:e5:d3:7d:07:59:93:38:8e: f2:8d:a2:cb:98:8c:38:41:86:2c:ed:fb:ab:ce:ad: e1:40:57:f9:7c:ea:99:35:c2:9e:bf:0f:81:6a:42: 69:7d:40:e7:52:1a:c2:4d:f2:55:3f:e3:e6:2c:ae: 0b:42:68:2b:d2:dd:ff:40:2f:c6:91:62:5f:88:1f: 96:73:32:dc:b7:b7:0a:9b:7e:20:cc:34:01:cf:a3: bc:fc:4a:31:46:ee:b9:09:ee:cb:6f:c0:de:be:16: 6c:5e:a9:7d:c5:3c:18:b8:cd:98:e8:d6:81:1b:75: 68:dc:07:32:fc:d8:58:f9:65:be:d0:57:67:00:68: ad:93:37:4b:ea:58:b8:13:de:df:21:89:1c:27:21: 20:99:42:85:0c:40:94:a8:48:41:b5:ff:0b:27:9c: d2:16:a7:b0:87:ec:e1:fc:60:78:fa:d6:a2:f3:c8: ca:8e:b8:a3:5b:3f:ef:71:2a:6d:d3:75:d0:41:71: 91:11:37:bd:16:40:98:78:23:aa:d6:84:43:6a:e4: 4a:67:9e:87:0d:55:1f:69:76:4b:13:d7:43:47:5f: 51:b6:2b:b8:74:d0:88:0b:be:51:70:ba:57:94:63: d2:30:48:1f:09:4a:bd:bd:64:18:ad:85:87:b9:58: cd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:02:B3:DD:FA:F3:F2:BA:AB:24:E0:AE:BC:87:9F:26:70:04:3B:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:48:25:e3:18:4d:c9:62:eb:41:96:af:1e:ff:18:25:11:6e: b7:a9:f5:b4:7f:15:16:4e:7d:b4:40:39:ec:9c:a5:ea:db:bf: 26:6a:4a:e3:8b:ac:de:85:b5:d9:a6:ff:b5:a7:5a:52:3a:48: 96:ac:2b:c8:be:5f:db:17:16:d1:03:58:13:dd:82:c8:58:9b: 63:81:7a:6d:2c:11:16:c2:a4:0c:b3:41:e5:37:a7:0e:88:7a: 3c:37:ca:fa:bb:76:c0:31:55:7c:3c:4d:0d:64:4d:58:fa:52: 5b:d2:7a:e1:d4:89:ad:89:94:35:1d:98:89:a5:58:14:e2:20: fb:ec:8b:ff:6d:d9:7d:80:e7:98:60:cf:87:34:b9:42:1b:d4: 58:44:e9:13:f3:72:2e:0a:70:1c:b8:f2:3a:ee:c0:f9:90:3a: 5c:6b:a5:7b:ac:91:ea:a0:b7:a6:ec:d8:b8:74:7e:d0:f0:aa: 2f:09:13:3d:a6:1c:1b:2a:24:77:40:19:8a:75:db:78:8a:99: 09:97:7e:7d:05:c4:06:91:93:d6:7e:8e:f6:48:f2:8e:20:c2: 64:5e:33:03:f4:de:3a:8c:46:1e:b6:07:a5:ea:60:f9:8c:7c: d3:98:82:61:c8:d1:dd:3b:ee:e3:ba:ac:7b:1b:ef:0e:f6:a7: ac:0c:c5:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYYBoNR2h3pu0AfTjF9q0BAhTM8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUwMTQ1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWU0Mjg5ZDFmOTBiN2U5N2Q4MDc1NjBiMDg0MjBhMjQ3 ZWM3MmRhMjdkZTljZWU0MTQ0M2UwNDFmMWRkMzZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjxKjPoS3l030HWZM4jvKNosuYjDhBhizt+6vOreFAV/l8 6pk1wp6/D4FqQml9QOdSGsJN8lU/4+YsrgtCaCvS3f9AL8aRYl+IH5ZzMty3twqb fiDMNAHPo7z8SjFG7rkJ7stvwN6+FmxeqX3FPBi4zZjo1oEbdWjcBzL82Fj5Zb7Q V2cAaK2TN0vqWLgT3t8hiRwnISCZQoUMQJSoSEG1/wsnnNIWp7CH7OH8YHj61qLz yMqOuKNbP+9xKm3TddBBcZERN70WQJh4I6rWhENq5EpnnocNVR9pdksT10NHX1G2 K7h00IgLvlFwuleUY9IwSB8JSr29ZBithYe5WM1FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/AKz3frz8rqrJOCuvIefJnAEO5UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1MGUyOWRiLThlYTgtNDY1ZS1iNzdiLTZiYjQ5MDNlNzkzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41zANBgkqhkiG9w0BAQsFAAOCAQEATEgl4xhNyWLrQZavHv8YJRFut6n1 tH8VFk59tEA57Jyl6tu/JmpK44us3oW12ab/tadaUjpIlqwryL5f2xcW0QNYE92C yFibY4F6bSwRFsKkDLNB5TenDoh6PDfK+rt2wDFVfDxNDWRNWPpSW9J64dSJrYmU NR2YiaVYFOIg++yL/23ZfYDnmGDPhzS5QhvUWETpE/NyLgpwHLjyOu7A+ZA6XGul e6yR6qC3puzYuHR+0PCqLwkTPaYcGyokd0AZinXbeIqZCZd+fQXEBpGT1n6O9kjy jiDCZF4zA/TeOoxGHrYHpepg+Yx805iCYcjR3Tvu47qsexvvDvanrAzFKw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:28:35 2025 by rpki-client