$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa File: 41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa (raw, json) Hash identifier: Y1845SnVURzKp5Nu5n9ji9RK4CB+xFVMfW+wXlBVj8I= Subject key identifier: 4C:E4:F8:25:7B:30:D6:F7:A2:B6:B9:73:1F:7C:D6:9A:29:C0:47:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74B72DE2F6A4AB5ACDE4AA38D42AABBA54816F37 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa Signing time: Fri 25 Apr 2025 00:50:21 +0000 ROA not before: Fri 25 Apr 2025 00:50:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b7:2d:e2:f6:a4:ab:5a:cd:e4:aa:38:d4:2a:ab:ba:54:81:6f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:50:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ead66ee7c2f9500d4e20baf9c132807e439eca318e1b9480a23325a0a994e878, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:94:7f:0d:db:19:8c:5e:62:8e:35:5b:6e:eb: 12:f9:00:9a:8f:dc:b0:e6:c8:de:49:fc:6d:c1:65: cb:29:85:26:fd:86:66:e7:29:08:f8:ca:0c:91:07: 93:8f:ab:04:2a:3c:86:76:db:93:48:05:60:1a:d5: ac:02:f7:3a:3c:e2:b0:38:20:86:29:20:ed:4a:7a: 04:22:b2:4a:94:9f:4f:95:ba:4f:a1:f2:7a:39:d5: 7f:02:15:aa:03:bc:fe:df:86:d6:8e:b6:57:0c:59: a4:20:a6:00:a4:fd:af:2c:a6:9a:d1:e5:6b:2e:5e: 6d:40:f7:8c:ea:47:92:e7:29:ef:4b:c6:59:1d:da: 29:85:13:48:95:ee:9f:1b:43:0e:1b:7b:0d:85:7f: e8:e5:85:dc:94:19:fb:bb:03:6c:45:47:42:8e:eb: 96:48:c2:f6:e6:a5:eb:14:2a:72:57:e3:10:db:6d: b3:00:eb:39:93:d1:4e:4b:74:23:1e:24:26:79:82: 71:bc:eb:59:b4:19:e0:3b:17:90:20:99:00:ac:fd: 82:c8:fb:ea:06:9d:13:ec:20:54:00:77:02:d3:20: 55:7b:5a:82:f0:50:56:da:e3:6d:15:b0:b9:5f:0e: dc:de:82:0b:40:da:f3:d0:41:12:80:9a:e5:51:e2: 8b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E4:F8:25:7B:30:D6:F7:A2:B6:B9:73:1F:7C:D6:9A:29:C0:47:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:16:2e:1c:76:62:87:24:12:b4:c6:cf:b7:b8:dd:a1:13:38: 79:af:a6:60:e1:01:97:53:6f:1e:d9:85:d1:f6:58:d2:ab:a8: a2:0c:d4:18:ac:16:4f:55:c4:73:df:8f:9f:c8:f3:f6:52:af: eb:f6:c8:48:e2:a5:66:cd:8c:32:b5:dc:03:e7:69:bf:96:1a: 9d:4e:22:3b:d6:3a:c7:f0:bc:d8:83:00:f5:43:39:fb:63:41: 63:6d:19:63:a9:b0:18:e1:91:d7:1a:d9:8a:5f:cf:70:e2:8a: fc:90:7a:e7:60:7e:39:be:84:27:93:62:2c:33:bf:1b:40:db: 88:cf:30:a3:1a:76:8b:26:3c:35:6a:ed:99:d5:6d:92:a9:6b: c7:13:25:38:a3:6c:c4:0a:7c:fb:52:84:1e:6b:82:1e:c1:43: 30:19:71:91:30:64:10:49:cd:a9:17:7b:9d:24:8a:97:7b:43: 00:32:b8:ae:6c:2c:8f:fa:c0:13:9f:57:7e:d0:52:08:ab:1f: 0b:db:25:96:11:e7:95:c5:c5:9a:90:27:e0:d2:e1:ea:25:cd: cd:3e:3a:b2:db:76:6d:a0:f5:3c:75:80:68:05:c1:5d:22:68: c6:d7:75:9d:6d:de:1a:8d:14:1f:f2:15:e2:0f:d0:56:6d:84: 2b:3a:e1:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdLct4vakq1rN5Ko41CqrulSBbzcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA1MDIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWQ2NmVlN2MyZjk1MDBkNGUyMGJhZjljMTMyODA3ZTQz OWVjYTMxOGUxYjk0ODBhMjMzMjVhMGE5OTRlODc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDClH8N2xmMXmKONVtu6xL5AJqP3LDmyN5J/G3BZcsphSb9 hmbnKQj4ygyRB5OPqwQqPIZ225NIBWAa1awC9zo84rA4IIYpIO1KegQiskqUn0+V uk+h8no51X8CFaoDvP7fhtaOtlcMWaQgpgCk/a8spprR5WsuXm1A94zqR5LnKe9L xlkd2imFE0iV7p8bQw4bew2Ff+jlhdyUGfu7A2xFR0KO65ZIwvbmpesUKnJX4xDb bbMA6zmT0U5LdCMeJCZ5gnG861m0GeA7F5AgmQCs/YLI++oGnRPsIFQAdwLTIFV7 WoLwUFba420VsLlfDtzeggtA2vPQQRKAmuVR4ovPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTOT4JXsw1veitrlzH3zWminARwQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxMjQxYjYwLTdhYjgtNDY3Ny05ZjRmLWRjNDQwMmI5NWQwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA43TANBgkqhkiG9w0BAQsFAAOCAQEADRYuHHZihyQStMbPt7jdoRM4ea+m YOEBl1NvHtmF0fZY0quoogzUGKwWT1XEc9+Pn8jz9lKv6/bISOKlZs2MMrXcA+dp v5YanU4iO9Y6x/C82IMA9UM5+2NBY20ZY6mwGOGR1xrZil/PcOKK/JB652B+Ob6E J5NiLDO/G0DbiM8woxp2iyY8NWrtmdVtkqlrxxMlOKNsxAp8+1KEHmuCHsFDMBlx kTBkEEnNqRd7nSSKl3tDADK4rmwsj/rAE59XftBSCKsfC9sllhHnlcXFmpAn4NLh 6iXNzT46stt2baD1PHWAaAXBXSJoxtd1nW3eGo0UH/IV4g/QVm2EKzrh7Q== -----END CERTIFICATE-----Generated at Sat May 10 19:42:02 2025 by rpki-client