$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa File: 5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa (raw, json) Hash identifier: K+KzC0yeKAWHG9XZjv4CSFL7za1qzXJZL9q0C/qy+DQ= Subject key identifier: CF:64:0D:E4:2A:C3:88:2F:80:9A:57:2F:B8:39:A1:87:02:B2:01:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6004EE3E3BADB7B7A50A547C7E33AE45CD5C4D2A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa Signing time: Sat 03 May 2025 00:31:13 +0000 ROA not before: Sat 03 May 2025 00:31:13 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:04:ee:3e:3b:ad:b7:b7:a5:0a:54:7c:7e:33:ae:45:cd:5c:4d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:13 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=71bfaf5d7bf3bb20915d3a2cb8f21fb2807c7440a01c929cf48422bcbca0231e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:db:b1:41:71:d6:95:84:81:9e:9c:f9:45:d4: 3f:45:e1:8a:c3:4d:2b:02:e1:04:a2:bf:ee:9f:4d: 92:5b:5e:2e:96:dc:dc:23:53:c9:de:84:58:df:e2: 3a:02:f9:b8:ec:68:20:c3:89:a2:eb:5c:38:dd:ff: 2b:75:81:63:7e:4e:07:4a:a0:cd:7f:3a:2a:94:93: c2:1b:d2:fe:32:aa:fd:d2:9d:28:93:d2:65:a4:92: d2:3f:c9:95:95:4d:3a:eb:c2:73:b1:f1:31:bb:54: b2:70:fc:26:03:ff:2c:8a:ec:c3:70:97:cc:19:f2: 38:cc:3e:aa:45:98:c7:1c:ba:18:8f:97:28:d6:ce: f1:e1:49:bb:3b:07:ca:ec:3a:af:55:79:7e:9a:4b: f0:59:4c:72:ad:76:57:bf:f0:81:9d:d5:93:8f:e1: 54:be:b5:07:8b:9b:b1:d4:7a:22:13:9d:d0:51:89: 75:20:ca:f3:e3:b8:9a:1a:ea:e1:48:3d:94:0d:8f: 33:72:0c:4a:9f:23:b7:75:d0:ed:0c:94:44:04:2f: 41:63:a1:1c:91:01:2b:83:0d:2b:5b:80:ff:e6:65: 42:c7:cb:de:5a:01:a1:ba:9c:c3:97:d2:03:da:8b: 2b:b9:22:9d:ec:b2:34:6b:14:37:38:07:9c:3b:f4: 09:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:64:0D:E4:2A:C3:88:2F:80:9A:57:2F:B8:39:A1:87:02:B2:01:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:4f:b4:d3:ca:34:a6:29:36:da:13:38:60:73:ca:92:c5:44: 24:9a:ed:7b:40:4e:3b:3c:8a:b3:36:d7:12:86:af:7f:f7:2a: ec:bf:1c:6e:2c:a9:e0:e7:b1:26:a6:c6:55:e7:66:c9:18:4e: dd:2f:b6:21:8c:07:e1:cc:cb:ad:4c:12:28:6f:b9:10:d0:f4: 64:b7:d8:93:9b:2b:3e:d3:77:73:64:eb:5f:2f:59:80:2a:c2: 54:3e:44:3b:77:96:30:4d:f4:14:ea:06:78:db:e2:a8:9d:86: 01:6f:26:bd:bb:27:dd:c1:0b:f1:41:24:86:79:f5:c9:fc:8e: 8d:ef:69:df:81:27:3e:2c:eb:5e:27:f2:7f:7d:a2:c4:68:e6: 2b:10:1d:f7:02:dc:9e:26:4e:c3:16:1a:ad:5a:14:b9:9b:b3: a8:c4:2c:59:99:5a:5b:c5:44:75:60:0c:58:e8:c5:cf:71:8a: f9:38:49:a8:f7:59:b4:be:39:0a:a6:40:d5:7f:0d:08:3c:6e: 84:a3:05:f0:55:77:a0:1a:06:2d:3e:fa:cc:7a:93:6d:65:e1: 12:7b:dc:28:2f:55:a8:b4:e3:66:ee:5f:f3:21:72:68:77:e3: a8:fa:5b:ff:f5:0c:86:35:14:a9:d2:d1:db:30:cc:10:04:27: dc:6f:d4:53 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYATuPjutt7elClR8fjOuRc1cTSowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTEzWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWJmYWY1ZDdiZjNiYjIwOTE1ZDNhMmNiOGYyMWZiMjgw N2M3NDQwYTAxYzkyOWNmNDg0MjJiY2JjYTAyMzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe27FBcdaVhIGenPlF1D9F4YrDTSsC4QSiv+6fTZJbXi6W 3NwjU8nehFjf4joC+bjsaCDDiaLrXDjd/yt1gWN+TgdKoM1/OiqUk8Ib0v4yqv3S nSiT0mWkktI/yZWVTTrrwnOx8TG7VLJw/CYD/yyK7MNwl8wZ8jjMPqpFmMccuhiP lyjWzvHhSbs7B8rsOq9VeX6aS/BZTHKtdle/8IGd1ZOP4VS+tQeLm7HUeiITndBR iXUgyvPjuJoa6uFIPZQNjzNyDEqfI7d10O0MlEQEL0FjoRyRASuDDStbgP/mZULH y95aAaG6nMOX0gPaiyu5Ip3ssjRrFDc4B5w79Al3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUz2QN5CrDiC+AmlcvuDmhhwKyAYEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNDc0YjJlLWE2ZmQtNDI5OC1iNWRmLWZmOWNhYTI2ZjkxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NDANBgkqhkiG9w0BAQsFAAOCAQEAi0+008o0pik22hM4YHPKksVEJJrt e0BOOzyKszbXEoavf/cq7L8cbiyp4OexJqbGVedmyRhO3S+2IYwH4czLrUwSKG+5 END0ZLfYk5srPtN3c2TrXy9ZgCrCVD5EO3eWME30FOoGeNviqJ2GAW8mvbsn3cEL 8UEkhnn1yfyOje9p34EnPizrXifyf32ixGjmKxAd9wLcniZOwxYarVoUuZuzqMQs WZlaW8VEdWAMWOjFz3GK+ThJqPdZtL45CqZA1X8NCDxuhKMF8FV3oBoGLT76zHqT bWXhEnvcKC9VqLTjZu5f8yFyaHfjqPpb//UMhjUUqdLR2zDMEAQn3G/UUw== -----END CERTIFICATE-----Generated at Mon May 5 11:16:53 2025 by rpki-client