$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa File: 6a459199-d80a-4790-b99e-d7e340b000a0.roa (raw, json) Hash identifier: D3Z3qmkmclqw+AYEO1AN86PJMOBQBcwgtU8bpSW4Bxw= Subject key identifier: 7B:25:E6:DB:A0:29:00:05:72:68:80:8E:80:5F:4F:7F:1F:CE:6D:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35B31580B3FA5CD62C28F9BA27B12DB4F7017A90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa Signing time: Sat 03 May 2025 00:30:22 +0000 ROA not before: Sat 03 May 2025 00:30:22 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b3:15:80:b3:fa:5c:d6:2c:28:f9:ba:27:b1:2d:b4:f7:01:7a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:30:22 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=8bdf26645101df1d3275fd3cd2b26ad35146a174d30984ce9453e2550005e362, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c8:dd:b7:2f:c6:12:65:ca:f1:87:3a:16:65: d4:ce:00:81:71:e0:f4:55:bf:8d:29:e2:56:b4:03: dd:73:ae:d6:35:23:07:ec:eb:11:ad:98:f8:5e:9f: d4:c7:71:45:65:14:21:a2:de:05:ca:30:fc:15:8a: 91:ad:ac:ff:bb:c5:fa:be:b2:f6:55:32:d9:c0:d7: fa:64:72:48:62:e8:c1:09:ed:bf:75:64:55:8b:4c: 9d:60:9a:7e:16:3b:f2:55:40:24:5b:b3:b7:e3:49: 69:2d:ac:9c:b5:fe:d6:11:4f:3f:4a:e3:3a:44:5c: 14:7f:9d:08:b8:0a:59:ed:e4:f5:51:96:3a:04:43: 7a:f9:be:87:77:00:d5:88:58:c5:f9:30:63:33:f0: db:b9:ed:5f:b7:5a:c3:8b:a5:86:3e:3a:1b:51:29: b4:53:ed:23:7f:3a:a1:c0:cc:ad:b9:59:d8:f0:c2: 1f:39:9a:63:99:f8:51:84:6b:9b:c3:56:f1:a8:59: 49:75:9e:bf:13:36:1c:87:7f:d5:a8:3b:96:71:65: 4d:9c:16:9f:68:35:32:87:9a:17:1d:f8:35:f6:4d: cc:aa:02:d1:84:70:65:d5:6c:55:bf:60:37:ef:31: a6:48:4f:45:27:ae:bc:e8:a6:98:ca:97:cc:9e:c4: cb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:25:E6:DB:A0:29:00:05:72:68:80:8E:80:5F:4F:7F:1F:CE:6D:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:f1:fb:55:c9:a3:ee:d9:94:93:49:22:4d:72:28:dd:32:f9: 5a:9e:43:60:80:4c:9d:61:83:de:17:6a:f1:51:94:08:04:b7: 11:ca:15:e6:5a:33:cf:61:0c:b2:ad:ae:05:e6:56:8a:50:d3: d1:e5:f9:29:1c:aa:93:a9:cb:89:75:df:e7:0c:a1:b2:d9:ce: d4:87:5e:98:ca:53:6b:2b:a7:76:bf:1d:d3:f7:29:45:5c:a1: 35:c5:71:fd:40:bc:a2:9e:3f:9e:2d:ef:4d:4b:d5:3c:65:8c: 0d:7a:b0:be:c0:6e:0e:66:71:4c:3e:02:42:6a:ea:74:4b:95: 3e:70:31:07:d1:e4:70:85:3b:6d:c3:91:58:70:39:a3:6f:98: f4:94:30:eb:4e:c6:88:a6:32:0f:cd:7b:51:49:7e:e0:d4:06: 7e:2d:4a:ee:57:81:3b:e6:39:ab:39:46:e2:74:c1:28:21:2c: e9:13:7d:d6:b9:62:06:94:30:a5:64:68:63:d6:0b:49:52:ae: 1e:6a:74:e1:f0:eb:5d:1a:e0:83:0a:d3:57:30:15:d5:b9:d5: 25:bc:ad:a7:9f:cf:c7:80:3d:c0:6e:21:ec:d6:7b:dd:3e:a6: 53:5e:ec:86:69:87:07:d1:aa:54:ba:b1:c1:1a:37:0d:42:ca: 35:44:6a:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNbMVgLP6XNYsKPm6J7EttPcBepAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMDIyWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmRmMjY2NDUxMDFkZjFkMzI3NWZkM2NkMmIyNmFkMzUx NDZhMTc0ZDMwOTg0Y2U5NDUzZTI1NTAwMDVlMzYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxyN23L8YSZcrxhzoWZdTOAIFx4PRVv40p4la0A91zrtY1 Iwfs6xGtmPhen9THcUVlFCGi3gXKMPwVipGtrP+7xfq+svZVMtnA1/pkckhi6MEJ 7b91ZFWLTJ1gmn4WO/JVQCRbs7fjSWktrJy1/tYRTz9K4zpEXBR/nQi4Clnt5PVR ljoEQ3r5vod3ANWIWMX5MGMz8Nu57V+3WsOLpYY+OhtRKbRT7SN/OqHAzK25Wdjw wh85mmOZ+FGEa5vDVvGoWUl1nr8TNhyHf9WoO5ZxZU2cFp9oNTKHmhcd+DX2Tcyq AtGEcGXVbFW/YDfvMaZIT0UnrrzoppjKl8yexMuLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeyXm26ApAAVyaICOgF9Pfx/ObbswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNDU5MTk5LWQ4MGEtNDc5MC1iOTllLWQ3ZTM0MGIwMDBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uDANBgkqhkiG9w0BAQsFAAOCAQEAEvH7Vcmj7tmUk0kiTXIo3TL5Wp5D YIBMnWGD3hdq8VGUCAS3EcoV5lozz2EMsq2uBeZWilDT0eX5KRyqk6nLiXXf5wyh stnO1IdemMpTayundr8d0/cpRVyhNcVx/UC8op4/ni3vTUvVPGWMDXqwvsBuDmZx TD4CQmrqdEuVPnAxB9HkcIU7bcORWHA5o2+Y9JQw607GiKYyD817UUl+4NQGfi1K 7leBO+Y5qzlG4nTBKCEs6RN91rliBpQwpWRoY9YLSVKuHmp04fDrXRrggwrTVzAV 1bnVJbytp5/Px4A9wG4h7NZ73T6mU17shmmHB9GqVLqxwRo3DULKNURq7Q== -----END CERTIFICATE-----Generated at Sun May 11 21:58:23 2025 by rpki-client