$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa File: b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json) Hash identifier: Z+4nLxw9/DLQHuPjyWzjhy/FGWiOvdF47AhMZYVyBsU= Subject key identifier: B3:21:EE:AD:24:54:7D:8F:83:3F:CA:84:17:29:B3:25:FC:50:46:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43189668C88F40245987295CE3788587DF268AE9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa Signing time: Sat 03 May 2025 00:31:17 +0000 ROA not before: Sat 03 May 2025 00:31:17 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:18:96:68:c8:8f:40:24:59:87:29:5c:e3:78:85:87:df:26:8a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:17 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=4e7539dc4ce8b3c358b59d1083572b2c60b6953c5a2baab57953e4c62f0681d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:9f:d4:db:2d:88:cb:64:52:cd:9d:1e:6c: 3e:0c:dd:ba:04:b4:4c:8e:fb:e9:ba:8c:b2:e1:87: e3:ba:7b:37:11:a5:4a:d9:d9:58:32:2b:13:26:7f: 00:33:4e:ea:0d:d0:02:37:6d:29:85:51:b1:20:d8: b9:53:a1:36:00:57:8a:6f:97:91:b4:6a:93:1a:13: 7b:43:a0:e2:92:e3:24:0c:08:4e:6e:b8:f7:b0:fb: ca:ce:31:9b:b8:c9:c9:20:3d:5f:d0:71:e9:d6:42: 3c:81:4e:f7:07:46:cf:99:c5:63:ea:4a:d4:90:86: 03:dd:b7:39:7f:94:91:78:10:ec:b8:a7:eb:bc:e1: 06:74:a9:75:e4:c2:f1:75:f7:5d:73:34:22:1d:d1: fa:28:ed:ee:5c:e6:a9:c6:29:e9:f0:df:16:45:ef: 89:51:0f:4b:c6:b1:5a:9b:8c:65:9f:76:d9:bc:15: c3:8b:1b:44:81:31:ac:dd:06:07:24:43:22:ce:b2: 50:38:91:2a:fe:d5:08:61:2b:3e:d5:89:d7:29:99: 4e:6f:3f:2e:76:49:ba:86:43:1c:ae:3a:dc:1f:be: e5:e1:89:e6:5d:82:eb:cf:94:4d:9c:5c:44:a9:be: 8f:a3:5b:89:d4:89:89:a6:4c:d2:34:70:da:80:64: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:21:EE:AD:24:54:7D:8F:83:3F:CA:84:17:29:B3:25:FC:50:46:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:8c:0a:36:6e:6f:a5:fd:34:9b:8c:85:89:ee:19:0d:b9:82: c0:86:11:1c:dc:2f:09:5a:16:2d:2d:ef:d9:2a:66:b4:4d:18: 6c:c6:04:21:cf:c8:d4:96:ef:83:f0:de:96:bb:8a:12:3d:45: b9:d9:9b:e5:8b:72:95:e7:75:1c:cf:1a:be:5b:fd:a3:a8:42: c1:ed:9a:78:6b:91:09:01:4f:46:30:82:78:a2:5f:55:8f:cb: 3e:4e:1f:f6:37:f3:74:08:2a:8c:51:37:fb:d5:c5:36:7f:7c: 6c:cc:1e:5e:cc:35:c3:50:0b:09:ca:60:cd:76:c4:ca:b8:02: d3:f2:4d:2c:bd:a7:bb:66:3d:68:c7:b3:7b:ab:8d:8c:92:4d: 33:00:14:98:1e:6f:76:43:63:1e:47:e4:0b:d6:78:aa:58:4e: 7e:00:12:0e:a7:54:4e:d5:dd:c1:89:7d:ff:40:43:57:fc:ff: e1:1a:d5:e3:18:94:b1:60:45:c0:ec:08:ed:d6:8d:93:99:f9: 30:b1:32:78:f6:c3:df:f1:7d:f6:6a:5f:bb:6d:72:6f:62:af: ee:43:88:a5:0c:81:38:50:1f:7b:d8:bf:e9:ae:88:b9:6e:f5: 30:81:86:a3:84:09:b5:62:f4:41:63:5a:bb:af:98:94:2c:94: 6e:58:93:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQxiWaMiPQCRZhylc43iFh98miukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTE3WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTc1MzlkYzRjZThiM2MzNThiNTlkMTA4MzU3MmIyYzYw YjY5NTNjNWEyYmFhYjU3OTUzZTRjNjJmMDY4MWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCEJ/U2y2Iy2RSzZ0ebD4M3boEtEyO++m6jLLhh+O6ezcR pUrZ2VgyKxMmfwAzTuoN0AI3bSmFUbEg2LlToTYAV4pvl5G0apMaE3tDoOKS4yQM CE5uuPew+8rOMZu4yckgPV/QcenWQjyBTvcHRs+ZxWPqStSQhgPdtzl/lJF4EOy4 p+u84QZ0qXXkwvF1911zNCId0foo7e5c5qnGKenw3xZF74lRD0vGsVqbjGWfdtm8 FcOLG0SBMazdBgckQyLOslA4kSr+1QhhKz7VidcpmU5vPy52SbqGQxyuOtwfvuXh ieZdguvPlE2cXESpvo+jW4nUiYmmTNI0cNqAZE+tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsyHurSRUfY+DP8qEFymzJfxQRicwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAZYwKNm5vpf00m4yFie4ZDbmCwIYR HNwvCVoWLS3v2SpmtE0YbMYEIc/I1Jbvg/DelruKEj1Fudmb5Ytyled1HM8avlv9 o6hCwe2aeGuRCQFPRjCCeKJfVY/LPk4f9jfzdAgqjFE3+9XFNn98bMweXsw1w1AL CcpgzXbEyrgC0/JNLL2nu2Y9aMeze6uNjJJNMwAUmB5vdkNjHkfkC9Z4qlhOfgAS DqdUTtXdwYl9/0BDV/z/4RrV4xiUsWBFwOwI7daNk5n5MLEyePbD3/F99mpfu21y b2Kv7kOIpQyBOFAfe9i/6a6IuW71MIGGo4QJtWL0QWNau6+YlCyUbliThQ== -----END CERTIFICATE-----Generated at Sat May 10 13:21:09 2025 by rpki-client