$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: eM+rN/lwnOWnwsLReh0jrrq4xh+tB9+7x12jG6PJkEQ= Subject key identifier: 58:63:9F:2A:E2:5E:80:8B:32:12:99:75:8D:74:03:66:0B:F2:B3:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C00625450D2DB8F8631F5756C378124D9BF4DDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Sat 03 May 2025 00:31:16 +0000 ROA not before: Sat 03 May 2025 00:31:16 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:00:62:54:50:d2:db:8f:86:31:f5:75:6c:37:81:24:d9:bf:4d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:16 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=4bd15a8709f32f7cfba5cf0b4f24e8629ea2d6e48f063dd5f989e97ec17ac274, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:17:0b:77:7c:88:65:48:f1:32:05:2f:e0:90: 97:aa:af:43:b7:59:c2:9f:0d:34:27:e6:ea:1a:b1: 78:af:01:ea:f5:2a:27:17:5b:7c:5f:76:20:3b:e3: c8:18:07:6b:7f:1b:f0:f5:7f:64:9e:ec:32:bc:5f: 8c:af:74:b4:3d:74:ed:2a:d0:a4:48:56:32:b9:f0: 54:64:dc:b6:b4:91:5f:a9:12:6f:df:94:6e:9a:cd: b8:f9:c9:d5:38:90:c8:9b:c3:ad:54:a4:51:f8:71: b0:2a:ab:12:87:af:34:a5:18:af:a8:a5:d6:88:ec: de:6d:3f:9d:c5:e0:e2:1a:07:83:36:18:35:4b:3b: e9:63:8b:87:b2:d0:ad:87:44:c0:d5:3c:d6:a6:0f: ad:25:9c:ad:28:cd:d7:af:7d:74:12:f5:d5:08:f3: 7c:a0:6e:ba:6d:57:45:e3:31:eb:e5:33:9b:bc:fa: ff:ca:60:fe:b3:f5:d4:5e:b7:fe:7c:b4:0c:d5:c1: c1:53:48:92:3e:ca:6e:51:69:19:c0:75:11:42:37: 1a:f5:e7:2f:63:71:01:71:50:7c:bd:45:ca:f6:4d: b8:81:0d:1e:cc:7f:c3:29:ef:b0:44:7e:b3:f5:22: 23:0a:8f:77:78:e1:e5:4f:65:54:e5:03:a1:c9:d0: 22:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:63:9F:2A:E2:5E:80:8B:32:12:99:75:8D:74:03:66:0B:F2:B3:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:87:92:53:26:03:8e:e5:f1:7a:31:98:9a:13:2b:83:65:a9: e8:09:97:25:ff:c1:0c:5f:87:51:2f:33:85:05:ac:f6:cf:4c: e1:20:6c:a7:84:fd:d1:c1:cd:7c:59:e2:55:36:dc:28:12:44: d3:9b:76:0b:f4:3c:54:63:93:b5:d9:8f:47:8a:66:56:a3:f8: f2:c4:ee:58:43:1c:ab:03:52:a2:1d:9e:30:ae:2d:ed:18:29: d8:ab:c6:7c:97:42:8c:29:5d:31:45:d0:fc:2e:de:5a:4b:0c: 08:09:2e:ee:89:4c:3c:62:b6:ff:59:63:96:2a:88:3e:91:e6: 94:1f:89:45:01:d3:ba:70:79:28:a2:43:6a:50:b3:12:82:19: 38:4c:ed:0c:91:6c:58:8b:57:6e:72:ab:5f:26:54:9d:9f:16: 36:e6:ef:7d:a7:47:12:93:09:e3:6d:de:39:82:75:7e:be:1c: 5f:49:38:f7:45:27:25:3f:56:7c:75:6d:6e:9d:dc:f8:94:73: ec:fb:96:4e:12:9b:13:d2:26:61:2f:2c:4e:56:a6:cc:df:b1: 77:c0:e4:d4:90:6c:cf:2d:d9:c0:9b:cc:fa:82:89:65:8e:e1: fa:fe:3f:72:7e:11:87:89:c8:c9:fb:7c:cd:3f:04:aa:3e:7c: 97:cf:d6:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULABiVFDS24+GMfV1bDeBJNm/TdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTE2WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmQxNWE4NzA5ZjMyZjdjZmJhNWNmMGI0ZjI0ZTg2Mjll YTJkNmU0OGYwNjNkZDVmOTg5ZTk3ZWMxN2FjMjc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbFwt3fIhlSPEyBS/gkJeqr0O3WcKfDTQn5uoasXivAer1 KicXW3xfdiA748gYB2t/G/D1f2Se7DK8X4yvdLQ9dO0q0KRIVjK58FRk3La0kV+p Em/flG6azbj5ydU4kMibw61UpFH4cbAqqxKHrzSlGK+opdaI7N5tP53F4OIaB4M2 GDVLO+lji4ey0K2HRMDVPNamD60lnK0ozdevfXQS9dUI83ygbrptV0XjMevlM5u8 +v/KYP6z9dRet/58tAzVwcFTSJI+ym5RaRnAdRFCNxr15y9jcQFxUHy9Rcr2TbiB DR7Mf8Mp77BEfrP1IiMKj3d44eVPZVTlA6HJ0CKzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWGOfKuJegIsyEpl1jXQDZgvys5gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAk4eSUyYDjuXxejGYmhMrg2Wp6AmX Jf/BDF+HUS8zhQWs9s9M4SBsp4T90cHNfFniVTbcKBJE05t2C/Q8VGOTtdmPR4pm VqP48sTuWEMcqwNSoh2eMK4t7Rgp2KvGfJdCjCldMUXQ/C7eWksMCAku7olMPGK2 /1ljliqIPpHmlB+JRQHTunB5KKJDalCzEoIZOEztDJFsWItXbnKrXyZUnZ8WNubv fadHEpMJ423eOYJ1fr4cX0k490UnJT9WfHVtbp3c+JRz7PuWThKbE9ImYS8sTlam zN+xd8Dk1JBszy3ZwJvM+oKJZY7h+v4/cn4Rh4nIyft8zT8Eqj58l8/WLw== -----END CERTIFICATE-----Generated at Sun May 11 04:13:38 2025 by rpki-client