$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa File: 5e83772b-20e7-44cd-b060-03d5950ee025.roa (raw, json) Hash identifier: 4wQRa75h+frdU1QIsa6JcwHxqRc3EjGPmdRYyiMTOdE= Subject key identifier: 25:4C:1E:3E:1D:2D:18:AE:CC:C6:5B:63:2D:0B:F0:B2:BA:A3:DF:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 211A2C0CB371240DD23E34182E12D87655DBC68D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa Signing time: Tue 29 Apr 2025 00:11:59 +0000 ROA not before: Tue 29 Apr 2025 00:11:59 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1a:2c:0c:b3:71:24:0d:d2:3e:34:18:2e:12:d8:76:55:db:c6:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:59 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=b5ec48d34100fc2d20f241c79f15dde69e82ec13f11d0e6874de9d41ca02d6c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:6c:fe:89:bf:69:0d:72:ee:e6:9e:54:2a: fd:89:c8:04:99:61:8f:e9:76:be:25:39:5b:fd:4e: dd:e3:f3:71:23:26:14:a4:37:92:a3:f8:bd:ac:ee: be:1a:78:e4:14:8e:cf:5f:77:9e:d1:61:44:43:f6: f2:0a:8e:35:cd:58:b3:25:84:82:b5:e1:5b:e3:0d: 59:d6:7c:3b:d7:65:ce:d9:e0:4f:72:25:b2:6d:62: 1a:57:52:06:69:23:11:8f:36:8b:d1:be:3c:a5:f9: 27:d9:89:dc:26:ef:9a:d0:6f:d6:64:62:df:d6:8b: 22:1d:7b:62:3e:23:c5:2f:11:3f:46:8a:e6:eb:7f: 9b:5d:db:cc:8f:43:48:ea:06:2d:6c:d3:ca:e8:58: fe:c2:37:d6:58:27:9f:2b:d3:c0:cf:b8:70:0c:49: 52:4d:34:94:c7:4e:7d:07:39:47:7f:1f:2b:f4:eb: e0:cd:8a:81:68:4a:3f:90:dd:5d:51:79:33:63:9a: 20:4b:95:b0:d1:65:93:77:7c:b7:c7:3b:29:b6:69: 36:42:5a:e5:52:34:5c:ab:97:74:76:2e:7e:b1:be: 96:e0:8f:e4:0d:a8:a3:ae:79:27:41:c3:0a:62:7e: 81:30:d3:01:df:46:fb:9e:9b:5c:ca:36:1c:86:7f: 51:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4C:1E:3E:1D:2D:18:AE:CC:C6:5B:63:2D:0B:F0:B2:BA:A3:DF:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:e7:ff:07:9b:5e:f6:af:46:15:e0:21:9a:5e:28:a5:60:45: 03:50:32:03:d1:f6:f0:ca:49:88:fb:31:fd:f5:03:76:e8:12: cf:fc:6d:23:b6:30:fe:dd:b9:fa:47:49:d9:f9:79:7d:95:b7: 83:85:65:d6:22:70:df:02:44:20:07:1b:46:40:54:b9:12:4e: 7f:8e:81:6e:fb:4e:51:aa:c6:9e:20:13:0b:bd:13:2f:24:17: ce:13:30:83:c4:7a:2b:2f:72:d0:b1:9d:01:be:0f:dd:d4:87: 97:eb:4d:4e:51:4e:d2:31:88:21:4a:70:4f:ab:01:76:dd:c6: 85:03:55:d7:30:e2:bd:b5:89:e4:f2:c4:60:5d:a2:a2:3e:e7: 1b:f8:5d:62:d1:76:cf:85:87:03:f0:ea:6e:1e:2e:55:4d:e3: 5d:4a:b8:a6:89:f9:cd:e4:30:6a:3d:d2:93:7a:d5:fb:38:29: 5c:8e:21:6f:a9:58:a8:b9:a8:ae:22:72:57:33:7a:78:28:2b: 36:f6:11:3a:af:7f:2c:de:fb:42:78:ea:e2:c1:a2:47:d2:bf: 8a:20:9a:ec:e8:71:0b:0f:1f:54:89:e9:97:a1:39:2d:52:12: 6a:3a:fd:be:8a:fc:e6:14:b1:fc:21:95:08:42:45:fa:ee:f0: ea:e4:d1:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIRosDLNxJA3SPjQYLhLYdlXbxo0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMTU5WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWVjNDhkMzQxMDBmYzJkMjBmMjQxYzc5ZjE1ZGRlNjll ODJlYzEzZjExZDBlNjg3NGRlOWQ0MWNhMDJkNmMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoFWz+ib9pDXLu5p5UKv2JyASZYY/pdr4lOVv9Tt3j83Ej JhSkN5Kj+L2s7r4aeOQUjs9fd57RYURD9vIKjjXNWLMlhIK14VvjDVnWfDvXZc7Z 4E9yJbJtYhpXUgZpIxGPNovRvjyl+SfZidwm75rQb9ZkYt/WiyIde2I+I8UvET9G iubrf5td28yPQ0jqBi1s08roWP7CN9ZYJ58r08DPuHAMSVJNNJTHTn0HOUd/Hyv0 6+DNioFoSj+Q3V1ReTNjmiBLlbDRZZN3fLfHOym2aTZCWuVSNFyrl3R2Ln6xvpbg j+QNqKOueSdBwwpifoEw0wHfRvuem1zKNhyGf1GzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJUwePh0tGK7MxltjLQvwsrqj3/wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlODM3NzJiLTIwZTctNDRjZC1iMDYwLTAzZDU5NTBlZTAyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4lTANBgkqhkiG9w0BAQsFAAOCAQEAU+f/B5te9q9GFeAhml4opWBFA1Ay A9H28MpJiPsx/fUDdugSz/xtI7Yw/t25+kdJ2fl5fZW3g4Vl1iJw3wJEIAcbRkBU uRJOf46BbvtOUarGniATC70TLyQXzhMwg8R6Ky9y0LGdAb4P3dSHl+tNTlFO0jGI IUpwT6sBdt3GhQNV1zDivbWJ5PLEYF2ioj7nG/hdYtF2z4WHA/Dqbh4uVU3jXUq4 pon5zeQwaj3Sk3rV+zgpXI4hb6lYqLmoriJyVzN6eCgrNvYROq9/LN77Qnjq4sGi R9K/iiCa7OhxCw8fVInpl6E5LVISajr9vor85hSx/CGVCEJF+u7w6uTRrg== -----END CERTIFICATE-----Generated at Mon May 5 08:09:00 2025 by rpki-client