$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa File: 24fc63bc-3295-48be-b7b8-25e6b313cd42.roa (raw, json) Hash identifier: WAeHdbV6Qu+BjSqfJRlnxX7EG0lR6xmJROcsQP/BIZ8= Subject key identifier: 23:16:BA:AD:1A:C5:2A:59:8F:D5:79:55:DB:75:4C:D5:28:92:AB:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BFCFE7A5EC8F11A57643EB7EDE0E4FBB7E9C18C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa Signing time: Wed 07 May 2025 00:50:09 +0000 ROA not before: Wed 07 May 2025 00:50:09 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:fc:fe:7a:5e:c8:f1:1a:57:64:3e:b7:ed:e0:e4:fb:b7:e9:c1:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:50:09 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=eba4e178054361e92f8f47899fe92490f02469a685923f30f9491e6330849df4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:33:c3:5d:ea:c1:f8:4e:d0:6f:12:cb:9d:b5: fb:34:2b:4f:a4:f0:04:ea:f4:c6:86:c7:40:e0:47: ee:6c:2f:3e:10:08:e7:9a:f1:4d:42:c3:ae:0b:c3: 6e:7d:93:c6:68:b7:f1:c5:f0:01:2e:3a:82:42:05: 64:e2:7d:c0:9d:5c:e5:6f:0f:dc:a9:02:de:7f:5f: 2a:05:17:fc:15:36:b0:e4:31:a8:9b:29:63:9f:7c: d5:56:81:75:e4:97:cb:8d:eb:bd:a1:aa:5b:c6:ed: ba:a2:fa:12:9f:61:50:2f:bb:38:92:f3:47:e2:3d: ee:2a:5b:e4:0b:b7:5d:ce:7c:03:04:8c:34:88:23: 5f:60:c8:9f:4e:04:6d:2e:4b:09:a1:e7:ef:57:4c: c4:f3:87:ca:23:05:91:6c:4f:8e:e3:65:55:41:d5: b4:e0:35:4f:4f:1c:c5:dd:a4:93:fe:5c:8e:16:c2: 58:55:e9:c7:ea:b0:8c:2e:c7:a4:a5:11:ec:a3:32: df:cf:f8:bd:a7:09:8d:e3:94:5e:94:fe:3c:28:f0: 5c:35:e2:47:ec:ad:9e:73:c7:73:a9:33:6d:5a:b6: e7:c1:d8:fc:21:89:9f:13:f6:0d:5e:8e:ef:76:14: 86:1e:24:53:39:33:ce:00:b9:6d:70:15:92:e1:63: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:16:BA:AD:1A:C5:2A:59:8F:D5:79:55:DB:75:4C:D5:28:92:AB:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:f9:ba:81:82:51:22:70:cd:b2:5e:5d:ed:d4:63:fc:f8:b9: 1b:47:a5:14:0e:f7:84:6c:c3:80:f3:05:5f:f6:73:83:39:8b: 7e:45:3c:2e:4e:66:bd:ba:4f:23:d4:3e:d2:ff:fa:ad:30:ab: fb:a2:f5:ba:22:ff:26:15:33:8c:79:fd:07:ce:91:d8:14:5b: 70:fc:82:8d:e2:d7:b2:9a:58:e0:f1:f7:50:7c:78:e0:6e:f1: fb:ce:c9:9b:51:32:6b:78:4a:7f:61:e9:9d:da:88:c2:cf:13: 53:15:a7:10:98:a0:de:cf:47:21:19:ef:d7:be:5f:06:68:2a: 19:d1:ec:82:2b:51:e2:cc:af:19:85:5a:0d:08:aa:59:a1:8b: ed:b9:e3:98:e8:8f:c7:db:3f:fd:de:de:44:d9:d1:e3:93:1d: 7d:cd:57:eb:32:c8:6e:78:ea:20:e7:5f:d2:33:52:fb:7e:bd: 3c:43:62:84:f2:2c:07:60:2d:ed:5f:39:77:99:6a:e1:08:63: 5a:1f:a5:39:b2:a4:05:e5:0c:74:82:3f:40:60:67:ea:2c:b9: 33:b8:f8:a8:86:00:b7:4b:4c:b4:34:7a:a3:45:ce:5f:52:53: de:d6:ba:54:e8:85:72:e2:62:04:b8:79:fa:da:f2:33:4e:3c: 1b:02:ee:17 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK/z+el7I8RpXZD637eDk+7fpwYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA1MDA5WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmE0ZTE3ODA1NDM2MWU5MmY4ZjQ3ODk5ZmU5MjQ5MGYw MjQ2OWE2ODU5MjNmMzBmOTQ5MWU2MzMwODQ5ZGY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHM8Nd6sH4TtBvEsudtfs0K0+k8ATq9MaGx0DgR+5sLz4Q COea8U1Cw64Lw259k8Zot/HF8AEuOoJCBWTifcCdXOVvD9ypAt5/XyoFF/wVNrDk MaibKWOffNVWgXXkl8uN672hqlvG7bqi+hKfYVAvuziS80fiPe4qW+QLt13OfAME jDSII19gyJ9OBG0uSwmh5+9XTMTzh8ojBZFsT47jZVVB1bTgNU9PHMXdpJP+XI4W wlhV6cfqsIwux6SlEeyjMt/P+L2nCY3jlF6U/jwo8Fw14kfsrZ5zx3OpM21atufB 2PwhiZ8T9g1eju92FIYeJFM5M84AuW1wFZLhYzu7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIxa6rRrFKlmP1XlV23VM1SiSq6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0ZmM2M2JjLTMyOTUtNDhiZS1iN2I4LTI1ZTZiMzEzY2Q0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA44zANBgkqhkiG9w0BAQsFAAOCAQEALfm6gYJRInDNsl5d7dRj/Pi5G0el FA73hGzDgPMFX/ZzgzmLfkU8Lk5mvbpPI9Q+0v/6rTCr+6L1uiL/JhUzjHn9B86R 2BRbcPyCjeLXsppY4PH3UHx44G7x+87Jm1Eya3hKf2HpndqIws8TUxWnEJig3s9H IRnv175fBmgqGdHsgitR4syvGYVaDQiqWaGL7bnjmOiPx9s//d7eRNnR45Mdfc1X 6zLIbnjqIOdf0jNS+369PENihPIsB2At7V85d5lq4QhjWh+lObKkBeUMdII/QGBn 6iy5M7j4qIYAt0tMtDR6o0XOX1JT3ta6VOiFcuJiBLh5+tryM048GwLuFw== -----END CERTIFICATE-----Generated at Sun May 11 18:49:50 2025 by rpki-client