$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6da0220-4baf-4a3e-b3be-24321f963d36.roa File: c6da0220-4baf-4a3e-b3be-24321f963d36.roa (raw, json) Hash identifier: ANZkTwCacc4lKrrnDgYEJJCRSSgRiicLaLkuhJxzUDU= Subject key identifier: 56:4D:CA:ED:C5:A9:F9:F9:D4:E6:D9:A7:C6:E6:ED:92:82:7C:90:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F5DB64B6A5E2FEECDB19758A9E10C2705E9773F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6da0220-4baf-4a3e-b3be-24321f963d36.roa Signing time: Sat 10 May 2025 00:10:48 +0000 ROA not before: Sat 10 May 2025 00:10:48 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.13.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5d:b6:4b:6a:5e:2f:ee:cd:b1:97:58:a9:e1:0c:27:05:e9:77:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:10:48 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=c52ebd33e7eb3550cb8b07787436cb9aca13af2ac68026ff39fd28c4eea15ee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:b7:74:0e:d1:c7:5f:14:04:e2:f6:4c:81: cb:b9:8d:9a:94:f6:76:2a:f6:4d:de:0d:47:93:32: 97:b4:59:bf:6d:34:65:c1:32:b2:74:65:9d:2d:b5: 10:2f:09:3f:4b:36:ef:19:8e:bf:2a:0d:8a:fa:f0: f0:20:32:8e:f4:e7:68:ea:20:c6:67:d8:3b:64:db: a7:ea:b8:18:6b:a0:15:c1:bf:2b:a3:79:f5:d9:87: eb:c9:8d:e6:d5:3b:f9:b4:97:d6:4a:bf:61:93:51: 36:07:4a:a8:32:51:a4:4e:a6:99:ca:d3:ac:a6:44: cb:e2:73:de:2b:c3:de:ba:d6:79:19:36:05:c9:0a: 8d:cf:cf:44:43:ea:50:7f:f4:a7:95:52:eb:39:59: 7b:87:bc:50:bd:ee:36:1b:1d:1a:c5:1e:0f:90:a5: 14:28:93:0e:37:f3:50:7d:11:00:94:2f:64:65:9b: 6e:3c:52:d0:d8:f6:10:00:dc:43:e8:ca:da:19:1d: 08:3f:3f:df:8e:4f:8b:9f:62:09:30:5c:67:a2:77: ca:52:4b:1e:6c:7d:6c:87:06:11:4b:4b:19:a8:fe: 07:c6:30:01:bf:66:f1:36:bd:ce:73:c8:33:33:a6: d7:83:25:d9:c6:b0:b8:e8:d7:d9:73:dc:e6:d1:af: 5c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4D:CA:ED:C5:A9:F9:F9:D4:E6:D9:A7:C6:E6:ED:92:82:7C:90:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6da0220-4baf-4a3e-b3be-24321f963d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.13.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:41:59:38:23:fe:0d:7f:87:ab:0f:b5:f9:a4:99:ec:0e:82: 1a:bc:5e:54:81:9d:63:d9:0f:8d:13:e2:48:c3:e5:3c:46:d7: 91:4b:85:2e:f9:df:d8:50:82:57:ae:dd:63:06:7b:81:4c:ab: b6:f2:33:f6:d1:2f:75:73:36:73:fa:4d:6f:f1:1d:95:b6:d9: 3c:ac:b0:62:19:21:98:1b:db:1c:22:fe:40:06:68:f2:60:2a: f3:3d:2b:22:30:5e:d0:8c:19:87:78:ca:ff:b6:eb:6b:d5:d7: dd:30:65:ff:25:4b:7d:6a:61:e3:96:8c:34:9e:61:3f:63:5b: 7d:7e:98:fa:b1:86:94:d6:db:91:d5:b2:4f:3e:c0:2d:c4:81: 87:af:10:1a:dd:91:f3:25:6d:78:ab:d9:33:be:1d:15:66:fe: fa:3f:16:c2:9a:e6:bd:91:82:e1:a2:96:91:98:b9:e3:ff:d7: 6d:76:49:7c:2c:61:de:42:b9:cc:4e:37:37:c8:2a:bf:41:ac: 3c:ab:50:e7:5a:cc:df:d4:bd:a5:70:0f:b4:33:9e:81:36:c5: a0:4c:ce:f5:a4:40:39:c8:a7:f7:b0:a9:dd:58:97:39:ab:19: 9d:7d:2d:93:67:24:15:2c:58:0a:36:08:8f:f7:77:a1:5d:ca: 00:84:46:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT122S2peL+7NsZdYqeEMJwXpdz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAxMDQ4WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTJlYmQzM2U3ZWIzNTUwY2I4YjA3Nzg3NDM2Y2I5YWNh MTNhZjJhYzY4MDI2ZmYzOWZkMjhjNGVlYTE1ZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4ebd0DtHHXxQE4vZMgcu5jZqU9nYq9k3eDUeTMpe0Wb9t NGXBMrJ0ZZ0ttRAvCT9LNu8Zjr8qDYr68PAgMo7052jqIMZn2Dtk26fquBhroBXB vyujefXZh+vJjebVO/m0l9ZKv2GTUTYHSqgyUaROppnK06ymRMvic94rw9661nkZ NgXJCo3Pz0RD6lB/9KeVUus5WXuHvFC97jYbHRrFHg+QpRQokw4381B9EQCUL2Rl m248UtDY9hAA3EPoytoZHQg/P9+OT4ufYgkwXGeid8pSSx5sfWyHBhFLSxmo/gfG MAG/ZvE2vc5zyDMzpteDJdnGsLjo19lz3ObRr1yZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVk3K7cWp+fnU5tmnxubtkoJ8kGMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2ZGEwMjIwLTRiYWYtNGEzZS1iM2JlLTI0MzIxZjk2M2QzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4DTANBgkqhkiG9w0BAQsFAAOCAQEAN0FZOCP+DX+Hqw+1+aSZ7A6CGrxe VIGdY9kPjRPiSMPlPEbXkUuFLvnf2FCCV67dYwZ7gUyrtvIz9tEvdXM2c/pNb/Ed lbbZPKywYhkhmBvbHCL+QAZo8mAq8z0rIjBe0IwZh3jK/7bra9XX3TBl/yVLfWph 45aMNJ5hP2NbfX6Y+rGGlNbbkdWyTz7ALcSBh68QGt2R8yVteKvZM74dFWb++j8W wprmvZGC4aKWkZi54//XbXZJfCxh3kK5zE43N8gqv0GsPKtQ51rM39S9pXAPtDOe gTbFoEzO9aRAOcin97Cp3ViXOasZnX0tk2ckFSxYCjYIj/d3oV3KAIRGgA== -----END CERTIFICATE-----Generated at Sat May 10 05:06:45 2025 by rpki-client