$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565bd2b5-79dd-4341-a5bc-d68981cd9648.roa File: 565bd2b5-79dd-4341-a5bc-d68981cd9648.roa (raw, json) Hash identifier: DywAoeFl1lBj+w+wZAIER9Js5My+EKxJYpZ9uDnjqyg= Subject key identifier: AB:97:86:A5:A4:A8:B8:80:90:38:2B:5C:9C:0F:ED:38:DA:42:2D:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35FFA38B89BEA0D6461AD544B597854D3185010B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565bd2b5-79dd-4341-a5bc-d68981cd9648.roa Signing time: Wed 07 May 2025 00:41:17 +0000 ROA not before: Wed 07 May 2025 00:41:17 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.119.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ff:a3:8b:89:be:a0:d6:46:1a:d5:44:b5:97:85:4d:31:85:01:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:41:17 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=87968fa6b0ba370fe9c0079fa8114642d7983a72a977edcce07a0a91487c7317, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ee:12:43:fd:8f:b2:19:2e:b7:4d:03:07:46: 85:01:b8:0d:7f:f8:d5:15:02:a1:c0:c9:df:8f:3b: 3b:7d:8f:ca:a9:61:5e:43:a3:19:47:14:77:50:a5: d6:1f:63:17:68:b0:97:de:38:01:96:8c:ae:0b:67: 57:fd:ba:13:dd:0d:82:dd:f5:f1:29:e6:5d:c6:a7: 93:83:07:62:3e:8a:6e:89:b1:92:c5:3a:5e:fd:94: e2:bd:33:7c:48:6e:b9:55:bc:0f:6a:63:69:f7:cd: 96:78:18:e8:97:b5:eb:66:db:9c:39:26:51:c0:60: 08:15:21:31:80:21:19:88:a8:53:16:d6:eb:06:8c: a0:5d:e1:8f:74:38:43:78:74:d7:26:87:ce:96:74: 44:cf:64:36:56:b1:dd:5e:ca:2d:45:10:7e:30:c0: 60:24:d4:84:ea:e3:54:82:f9:04:45:63:3d:4b:4e: 0a:d0:14:41:0a:95:8c:a8:56:fa:94:14:d8:bb:92: 3e:9e:3d:48:24:3e:59:76:e3:f0:f9:a4:56:9b:7d: 08:7f:b1:70:65:84:d4:6e:d8:f6:8c:47:f3:ff:7b: 87:ea:f7:91:2a:3c:8a:91:01:8c:02:ae:65:69:64: 0e:8d:1a:19:2f:67:91:0a:4d:d7:c6:8f:9e:90:59: 24:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:97:86:A5:A4:A8:B8:80:90:38:2B:5C:9C:0F:ED:38:DA:42:2D:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565bd2b5-79dd-4341-a5bc-d68981cd9648.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.119.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:96:fa:b7:e4:38:e5:e1:d8:1e:cb:65:23:2c:a2:d7:02:82: 43:7e:53:80:83:f1:0e:7a:3f:9e:79:82:3d:b3:b5:61:30:a3: 3c:85:3a:75:4e:bf:29:c7:a1:ab:eb:8d:64:7b:a8:c2:7e:67: 64:7e:40:1d:97:fb:81:85:ab:01:21:be:49:2e:4b:71:a8:89: 90:c2:f4:6c:00:9a:36:24:02:16:06:63:fe:2e:eb:ee:a6:88: ef:4b:ae:3d:b3:51:3a:bf:24:4f:b3:3b:b0:bd:21:14:ae:b3: 6b:b5:8f:67:85:cb:a8:33:9c:d1:b9:9c:ac:b7:70:42:2b:24: 55:40:63:4b:21:9c:c9:e9:4d:4d:93:7c:6f:48:4b:c7:74:05: e9:d6:d2:0c:f2:89:d7:96:f0:c2:78:64:36:4a:72:f8:08:f4: ec:2f:ec:84:19:c8:0a:29:d0:06:56:88:2e:14:80:9c:45:c9: 3b:dc:c0:15:c7:d2:9d:bf:32:9a:d5:08:20:0a:16:7a:b2:12: 0b:1b:e1:25:b2:dc:8f:d7:67:02:5d:a8:a1:aa:be:f7:fe:55: c9:5a:af:96:3c:1a:54:2e:94:7e:6b:39:d0:b6:7b:1c:b6:be: fa:99:03:ac:2b:16:6f:98:65:b8:87:56:00:70:0c:93:6a:f9: 0a:75:c9:8d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNf+ji4m+oNZGGtVEtZeFTTGFAQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA0MTE3WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Nzk2OGZhNmIwYmEzNzBmZTljMDA3OWZhODExNDY0MmQ3 OTgzYTcyYTk3N2VkY2NlMDdhMGE5MTQ4N2M3MzE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa7hJD/Y+yGS63TQMHRoUBuA1/+NUVAqHAyd+POzt9j8qp YV5DoxlHFHdQpdYfYxdosJfeOAGWjK4LZ1f9uhPdDYLd9fEp5l3Gp5ODB2I+im6J sZLFOl79lOK9M3xIbrlVvA9qY2n3zZZ4GOiXtetm25w5JlHAYAgVITGAIRmIqFMW 1usGjKBd4Y90OEN4dNcmh86WdETPZDZWsd1eyi1FEH4wwGAk1ITq41SC+QRFYz1L TgrQFEEKlYyoVvqUFNi7kj6ePUgkPll24/D5pFabfQh/sXBlhNRu2PaMR/P/e4fq 95EqPIqRAYwCrmVpZA6NGhkvZ5EKTdfGj56QWSSfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUq5eGpaSouICQOCtcnA/tONpCLYkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2NWJkMmI1LTc5ZGQtNDM0MS1hNWJjLWQ2ODk4MWNkOTY0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4dzANBgkqhkiG9w0BAQsFAAOCAQEAIZb6t+Q45eHYHstlIyyi1wKCQ35T gIPxDno/nnmCPbO1YTCjPIU6dU6/Kcehq+uNZHuown5nZH5AHZf7gYWrASG+SS5L caiJkML0bACaNiQCFgZj/i7r7qaI70uuPbNROr8kT7M7sL0hFK6za7WPZ4XLqDOc 0bmcrLdwQiskVUBjSyGcyelNTZN8b0hLx3QF6dbSDPKJ15bwwnhkNkpy+Aj07C/s hBnICinQBlaILhSAnEXJO9zAFcfSnb8ymtUIIAoWerISCxvhJbLcj9dnAl2ooaq+ 9/5VyVqvljwaVC6Ufms50LZ7HLa++pkDrCsWb5hluIdWAHAMk2r5CnXJjQ== -----END CERTIFICATE-----Generated at Mon May 12 16:56:09 2025 by rpki-client