$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa93eae8-1183-4788-b326-e47a328e99c0.roa File: aa93eae8-1183-4788-b326-e47a328e99c0.roa (raw, json) Hash identifier: rqOw/QGPeBMsWdW0duRk+MNs3UUJF2gwn6iIQDWn/cc= Subject key identifier: 10:15:29:1C:A6:BD:B7:AB:B1:83:55:17:4B:32:EE:F6:12:5A:E9:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 699B7C0A46DB0DD01F24495C9DBD1E1E22CF3DBF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa93eae8-1183-4788-b326-e47a328e99c0.roa Signing time: Sat 10 May 2025 00:10:59 +0000 ROA not before: Sat 10 May 2025 00:10:59 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9b:7c:0a:46:db:0d:d0:1f:24:49:5c:9d:bd:1e:1e:22:cf:3d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:10:59 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=13d071c3b031ef5b866957c7bcdfc2e039ab5e6136aa2d1af42336dec6ef8e5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:42:2c:8e:fd:31:cf:6b:46:a7:06:fc:7a: 07:56:62:0c:bb:73:f7:dd:b2:75:8f:ee:33:c1:2a: 03:ac:85:17:99:e9:94:04:06:c7:91:56:0a:30:fc: ca:e2:5c:a7:36:cb:da:49:a5:88:42:88:d7:34:d3: 80:16:19:94:8c:99:8e:0e:d8:7a:56:57:cf:d1:8c: 1e:67:b7:e2:d6:91:94:2f:a7:93:33:10:e9:ce:c7: 0c:43:9b:83:e0:f3:6e:a6:27:20:61:56:6e:a3:9e: 93:1a:ca:51:07:ac:37:7d:f8:89:a4:f5:9b:c8:93: e4:49:64:d6:04:d6:9f:68:c6:91:30:e6:cd:74:db: 28:ad:1e:94:32:40:d4:51:32:e1:62:75:ca:9a:6e: 34:27:64:ac:70:fb:bf:55:ad:e1:3b:ee:66:fa:77: 98:29:e7:b5:4a:86:ad:f0:6a:5c:2e:da:f3:4c:83: 4b:6a:9b:c0:ee:de:3f:00:93:ce:2a:22:e5:18:b7: 25:7e:ba:c3:5c:57:17:cc:dc:b8:57:45:5e:36:74: b5:ea:d9:5c:f9:33:d5:9e:58:20:0f:0b:b2:18:c2: 1a:3b:c0:0f:3c:5b:74:ab:43:33:48:57:7c:31:77: 27:ae:fd:8f:ab:11:06:44:04:9b:80:45:2d:e8:1c: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:15:29:1C:A6:BD:B7:AB:B1:83:55:17:4B:32:EE:F6:12:5A:E9:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa93eae8-1183-4788-b326-e47a328e99c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption 60:31:14:f7:0a:ac:0d:a8:ce:39:23:c4:85:f4:6b:32:25:36: 14:16:fd:62:c1:4b:bf:75:1f:5f:30:fc:44:94:ad:8b:62:24: 59:4a:78:27:7f:21:56:97:cc:e0:a3:7e:d9:0f:91:e5:82:ee: 0a:b3:92:a5:09:4d:a4:bc:e8:81:91:80:77:11:45:3a:8b:df: 48:7d:14:52:54:ee:05:b2:b6:60:34:96:33:2f:52:d4:c8:65: a7:9f:c7:84:5f:0b:22:ea:63:90:06:98:32:54:59:25:c2:3d: 45:ef:c9:9c:56:16:6b:df:a2:47:57:ae:0f:11:31:d7:4e:2e: 05:63:f4:a9:aa:99:e2:17:75:16:cd:f6:ea:f2:a3:1a:55:c0: 7c:18:49:1d:e9:24:04:8b:02:e4:36:60:e7:1a:4f:c6:24:fc: 64:b6:da:8f:bc:db:93:35:04:85:6c:96:fc:b2:45:9b:9c:01: 58:41:16:d9:99:78:f8:25:05:79:fb:d2:e2:7d:77:b4:7b:e1: 52:02:bf:a1:83:fd:f0:bb:5e:2b:46:46:18:ec:c4:57:84:52: fb:d7:3e:63:f1:1e:0b:2c:a2:d9:86:11:0d:62:6f:0c:3d:14: 27:75:9a:f0:4a:1c:dc:81:c4:29:c1:eb:2d:08:25:b6:fe:46: 89:2b:ee:37 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaZt8CkbbDdAfJElcnb0eHiLPPb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAxMDU5WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2QwNzFjM2IwMzFlZjViODY2OTU3YzdiY2RmYzJlMDM5 YWI1ZTYxMzZhYTJkMWFmNDIzMzZkZWM2ZWY4ZTViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEXEIsjv0xz2tGpwb8egdWYgy7c/fdsnWP7jPBKgOshReZ 6ZQEBseRVgow/MriXKc2y9pJpYhCiNc004AWGZSMmY4O2HpWV8/RjB5nt+LWkZQv p5MzEOnOxwxDm4Pg826mJyBhVm6jnpMaylEHrDd9+Imk9ZvIk+RJZNYE1p9oxpEw 5s102yitHpQyQNRRMuFidcqabjQnZKxw+79VreE77mb6d5gp57VKhq3walwu2vNM g0tqm8Du3j8Ak84qIuUYtyV+usNcVxfM3LhXRV42dLXq2Vz5M9WeWCAPC7IYwho7 wA88W3SrQzNIV3wxdyeu/Y+rEQZEBJuARS3oHOQRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEBUpHKa9t6uxg1UXSzLu9hJa6RUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhOTNlYWU4LTExODMtNDc4OC1iMzI2LWU0N2EzMjhlOTljMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4BzANBgkqhkiG9w0BAQsFAAOCAQEAYDEU9wqsDajOOSPEhfRrMiU2FBb9 YsFLv3UfXzD8RJSti2IkWUp4J38hVpfM4KN+2Q+R5YLuCrOSpQlNpLzogZGAdxFF OovfSH0UUlTuBbK2YDSWMy9S1Mhlp5/HhF8LIupjkAaYMlRZJcI9Re/JnFYWa9+i R1euDxEx104uBWP0qaqZ4hd1Fs326vKjGlXAfBhJHekkBIsC5DZg5xpPxiT8ZLba j7zbkzUEhWyW/LJFm5wBWEEW2Zl4+CUFefvS4n13tHvhUgK/oYP98LteK0ZGGOzE V4RS+9c+Y/EeCyyi2YYRDWJvDD0UJ3Wa8Eoc3IHEKcHrLQgltv5GiSvuNw== -----END CERTIFICATE-----Generated at Sun May 11 13:34:11 2025 by rpki-client