$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa File: e4274e13-b3eb-47ca-8f50-e130d402b187.roa (raw, json) Hash identifier: f+wMsx+H2xDy7vCfHGKA+1a3LNfY2z7sImsKUPDwGn0= Subject key identifier: C4:4A:78:5E:10:23:18:4C:53:2F:53:68:89:62:B8:C1:FB:30:8C:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16E5CBC7DD81297E32EF18CFC315DFA850B3D53D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa Signing time: Wed 28 May 2025 00:31:43 +0000 ROA not before: Wed 28 May 2025 00:31:43 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.167.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e5:cb:c7:dd:81:29:7e:32:ef:18:cf:c3:15:df:a8:50:b3:d5:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:43 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=cb986a78b7930c13a9bd3c2cc71d31fd6b56feaa7822d8cfd5c6ea88745c41cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1a:86:07:38:d9:b8:3a:e8:ac:16:ea:8d:25: 2f:cf:aa:5a:e2:20:37:54:fb:93:f3:3d:78:e4:ad: 00:76:e0:b4:d6:2f:fa:3e:ee:47:db:a2:59:b7:00: cb:25:e8:a9:c8:03:9e:fd:84:e0:69:ce:21:43:cf: bd:ba:70:90:bd:42:0a:ab:db:10:3c:bc:6d:38:1f: be:6e:ae:d9:f0:65:1d:35:92:fb:af:b9:72:d8:68: 27:86:0b:8e:7f:52:00:63:aa:b4:77:77:0d:98:39: 7f:af:df:78:c5:23:96:ff:5f:68:f4:2f:14:f8:e3: b4:ab:5d:d9:5c:f1:98:0f:3c:07:30:2d:6b:66:c3: 6b:8c:c4:dd:58:ee:13:ac:fe:32:fa:46:a1:a0:81: 4c:f2:ad:26:0d:29:ca:25:90:fd:af:93:bd:d4:64: 70:08:7b:22:61:a0:e1:e6:6f:56:c0:41:44:46:00: 8f:21:e4:84:a6:f4:ff:29:31:c3:f2:ab:d2:0e:6a: 7c:31:36:ec:0e:dc:ec:01:4a:49:c8:80:d9:59:a6: 39:4e:a4:3b:4e:a8:8e:48:a2:40:9e:69:97:dd:13: 11:7a:25:81:ed:17:a8:74:6c:c0:be:6e:44:41:1e: 91:1b:a9:67:6d:70:d3:6f:bb:b7:38:a4:ef:70:9a: f5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4A:78:5E:10:23:18:4C:53:2F:53:68:89:62:B8:C1:FB:30:8C:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption 09:f6:8f:1a:47:0f:c0:d0:a4:81:f4:91:68:6a:de:ec:cd:c8: 2f:f3:a7:bf:88:ac:cb:52:f5:dd:cb:97:d3:16:b9:81:0e:26: ff:e2:8a:86:c7:01:82:2c:32:64:c1:ef:8c:05:c3:53:fb:81: 80:51:e9:c8:7c:f8:f0:21:47:34:0d:7f:50:87:01:1b:c6:2d: f9:c2:1d:4b:3c:1a:27:84:85:a9:78:df:7b:0f:72:0f:05:a5: 53:f8:78:a0:a9:17:d7:bd:04:b0:f7:29:c6:69:73:a4:d5:56: 2e:19:1f:ca:a2:9c:bd:85:00:4c:dd:84:b7:06:b2:86:4b:60: 34:d6:5b:32:30:31:25:49:e0:16:3f:e7:a3:e8:0d:b3:7e:e8: 45:b2:a2:16:e0:c4:2d:89:82:46:c8:7c:38:24:ef:34:dc:24: bb:b2:8f:c5:e4:b1:09:ed:46:de:72:6f:b3:35:e0:24:c1:c3: 34:08:d6:74:98:d3:b7:66:b6:37:8e:03:81:55:2a:4a:01:c1: 48:c2:76:1a:e2:22:96:ed:19:2a:78:32:9e:e5:99:26:86:6d: a3:be:a5:06:c1:c1:ef:e8:a0:15:3b:00:c7:da:08:a6:1c:42: e2:59:a5:4d:5e:e6:f0:49:bc:cf:99:ab:70:be:66:de:89:b4: d2:d0:72:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFuXLx92BKX4y7xjPwxXfqFCz1T0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTQzWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjk4NmE3OGI3OTMwYzEzYTliZDNjMmNjNzFkMzFmZDZi NTZmZWFhNzgyMmQ4Y2ZkNWM2ZWE4ODc0NWM0MWNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBGoYHONm4OuisFuqNJS/PqlriIDdU+5PzPXjkrQB24LTW L/o+7kfbolm3AMsl6KnIA579hOBpziFDz726cJC9Qgqr2xA8vG04H75urtnwZR01 kvuvuXLYaCeGC45/UgBjqrR3dw2YOX+v33jFI5b/X2j0LxT447SrXdlc8ZgPPAcw LWtmw2uMxN1Y7hOs/jL6RqGggUzyrSYNKcolkP2vk73UZHAIeyJhoOHmb1bAQURG AI8h5ISm9P8pMcPyq9IOanwxNuwO3OwBSknIgNlZpjlOpDtOqI5IokCeaZfdExF6 JYHtF6h0bMC+bkRBHpEbqWdtcNNvu7c4pO9wmvVlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxEp4XhAjGExTL1NoiWK4wfswjEswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0Mjc0ZTEzLWIzZWItNDdjYS04ZjUwLWUxMzBkNDAyYjE4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pzANBgkqhkiG9w0BAQsFAAOCAQEACfaPGkcPwNCkgfSRaGre7M3IL/On v4isy1L13cuX0xa5gQ4m/+KKhscBgiwyZMHvjAXDU/uBgFHpyHz48CFHNA1/UIcB G8Yt+cIdSzwaJ4SFqXjfew9yDwWlU/h4oKkX170EsPcpxmlzpNVWLhkfyqKcvYUA TN2EtwayhktgNNZbMjAxJUngFj/no+gNs37oRbKiFuDELYmCRsh8OCTvNNwku7KP xeSxCe1G3nJvszXgJMHDNAjWdJjTt2a2N44DgVUqSgHBSMJ2GuIilu0ZKngynuWZ JoZto76lBsHB7+igFTsAx9oIphxC4lmlTV7m8Em8z5mrcL5m3om00tByDw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:18:58 2025 by rpki-client