$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55a1b39c-73cf-4a03-a54b-58e8ee77e2c8.roa File: 55a1b39c-73cf-4a03-a54b-58e8ee77e2c8.roa (raw, json) Hash identifier: Ws6MHMUEngE/RPtTQs2uyOujSUiMnVJH3/7mfeidGqQ= Subject key identifier: 01:6C:11:4B:A9:B2:B2:6B:9E:73:D0:6A:29:73:BA:64:DE:F4:68:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 294BD1506C70325D94B32FCD8075D388602E8383 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55a1b39c-73cf-4a03-a54b-58e8ee77e2c8.roa Signing time: Mon 28 Apr 2025 15:30:20 +0000 ROA not before: Mon 28 Apr 2025 15:30:20 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.197.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4b:d1:50:6c:70:32:5d:94:b3:2f:cd:80:75:d3:88:60:2e:83:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:30:20 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=d8cc02466dd7c322a8e3d193a09626c0c78928a99c2802d616e4226b9ef56d30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a5:ff:ca:72:f5:d9:43:bf:75:eb:b4:88:79: 72:53:7f:90:98:e5:79:71:44:05:3d:8b:67:16:b6: 22:70:c0:dd:9c:a5:eb:3c:5d:70:12:3a:d1:c1:a9: 6b:a2:52:3a:bd:db:af:91:b8:5b:0d:16:be:85:ba: c3:6e:12:fb:30:57:04:e1:27:92:8c:6d:21:af:5e: b3:12:95:96:d9:43:72:b1:db:6f:88:31:48:39:ad: 1b:31:e0:44:d8:38:26:a4:7e:8b:66:ce:64:db:75: eb:03:46:5b:b5:04:46:5d:be:c4:2b:e0:ad:42:86: ca:b7:07:54:4c:fb:4f:33:67:cc:bb:3f:c5:b2:33: 59:af:76:4c:28:f7:11:29:b0:d5:99:4d:9d:3c:27: 10:ae:5e:b3:6e:97:08:85:73:67:62:05:b2:0b:80: fe:c6:3a:8c:30:3f:22:de:e0:94:f3:f0:2b:7d:d7: 99:de:31:60:63:8c:2d:18:cb:4d:6c:9f:04:d2:34: ba:31:16:8d:a1:af:aa:13:94:3e:fc:14:31:36:4a: 5c:6e:ec:bb:4f:33:83:04:24:50:6a:23:59:52:14: 3b:07:fe:f9:a1:46:7d:38:52:5f:73:a2:45:ad:f9: ab:c3:bd:f1:db:e2:55:dc:a3:80:e4:32:64:da:03: 7b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6C:11:4B:A9:B2:B2:6B:9E:73:D0:6A:29:73:BA:64:DE:F4:68:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55a1b39c-73cf-4a03-a54b-58e8ee77e2c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.197.128.0/18 Signature Algorithm: sha256WithRSAEncryption 72:a2:40:10:b1:70:6c:53:05:dd:b3:b7:0b:5a:42:0c:86:40: d0:5a:ae:61:7d:61:0f:11:1d:b3:15:b3:d0:ee:90:b0:fd:c9: f1:c0:0c:8c:b2:df:81:82:ab:19:e4:50:3f:70:b7:0f:1f:a4: 19:15:76:3a:05:a7:db:d2:27:0e:16:75:85:46:62:b2:08:2d: 70:f5:96:1d:3e:58:a7:f0:d7:c6:21:1f:99:fa:40:69:60:28: 96:de:6f:80:a8:62:53:ff:74:76:08:1b:ef:cc:3f:10:36:4c: 6d:74:13:10:49:16:6e:d3:cc:ca:83:1d:6b:ff:1f:95:16:29: b4:e3:3b:83:86:eb:7c:45:17:25:31:15:5c:8b:34:cd:52:48: b7:cd:9a:bc:1d:b5:6b:a1:0d:25:fd:8d:54:52:54:05:69:d5: ce:af:e1:b7:a6:35:b3:54:cc:72:3a:5a:aa:d0:32:4d:e5:5a: ad:22:6f:b5:4f:bb:60:90:74:c6:9d:5f:47:bb:60:7f:c9:63: ec:9f:20:0b:51:e1:92:88:0c:ca:2c:62:5b:c6:cc:7b:31:a4: 5e:6c:45:e9:57:36:a3:21:7e:72:04:68:8e:41:b2:68:12:fe: 30:cf:b8:28:11:14:5d:8f:78:1f:ed:07:37:bc:22:54:ef:fc: 40:4b:d8:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKUvRUGxwMl2Usy/NgHXTiGAug4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUzMDIwWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGNjMDI0NjZkZDdjMzIyYThlM2QxOTNhMDk2MjZjMGM3 ODkyOGE5OWMyODAyZDYxNmU0MjI2YjllZjU2ZDMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIpf/KcvXZQ79167SIeXJTf5CY5XlxRAU9i2cWtiJwwN2c pes8XXASOtHBqWuiUjq926+RuFsNFr6FusNuEvswVwThJ5KMbSGvXrMSlZbZQ3Kx 22+IMUg5rRsx4ETYOCakfotmzmTbdesDRlu1BEZdvsQr4K1Chsq3B1RM+08zZ8y7 P8WyM1mvdkwo9xEpsNWZTZ08JxCuXrNulwiFc2diBbILgP7GOowwPyLe4JTz8Ct9 15neMWBjjC0Yy01snwTSNLoxFo2hr6oTlD78FDE2Slxu7LtPM4MEJFBqI1lSFDsH /vmhRn04Ul9zokWt+avDvfHb4lXco4DkMmTaA3vlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAWwRS6mysmuec9BqKXO6ZN70aN4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1YTFiMzljLTczY2YtNGEwMy1hNTRiLTU4ZThlZTc3ZTJjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZMxYAwDQYJKoZIhvcNAQELBQADggEBAHKiQBCxcGxTBd2ztwtaQgyGQNBa rmF9YQ8RHbMVs9DukLD9yfHADIyy34GCqxnkUD9wtw8fpBkVdjoFp9vSJw4WdYVG YrIILXD1lh0+WKfw18YhH5n6QGlgKJbeb4CoYlP/dHYIG+/MPxA2TG10ExBJFm7T zMqDHWv/H5UWKbTjO4OG63xFFyUxFVyLNM1SSLfNmrwdtWuhDSX9jVRSVAVp1c6v 4bemNbNUzHI6WqrQMk3lWq0ib7VPu2CQdMadX0e7YH/JY+yfIAtR4ZKIDMosYlvG zHsxpF5sRelXNqMhfnIEaI5BsmgS/jDPuCgRFF2PeB/tBze8IlTv/EBL2Ck= -----END CERTIFICATE-----Generated at Tue May 6 05:40:58 2025 by rpki-client