$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa File: e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa (raw, json) Hash identifier: /zB7Hu3uRBdnoATucvGIXEdx/AVbMSTtheUQNnigt98= Subject key identifier: 95:20:A7:A2:7D:1D:5E:45:A3:02:66:89:59:3E:CC:01:FC:43:46:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 027DD3C3CCE4B4743B2ADF7C84F4371F0F7B8819 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa Signing time: Fri 25 Apr 2025 22:53:56 +0000 ROA not before: Fri 25 Apr 2025 22:53:56 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:7d:d3:c3:cc:e4:b4:74:3b:2a:df:7c:84:f4:37:1f:0f:7b:88:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 22:53:56 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1907ff5f61aa7fbcb2509beb3d735fefc39b671e08c3a7de2a56948e86bd4485, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8d:43:f8:ab:01:06:96:e7:32:9d:4e:67:1f: 58:ef:6e:33:34:e0:07:87:0d:4d:ab:c8:d4:50:19: 25:85:8b:cc:11:cb:11:7c:e4:a1:19:4a:5b:9d:f9: 5a:dc:00:96:85:38:cb:7e:a5:43:8d:dd:94:4c:39: f9:5d:09:49:f3:37:a2:a5:a7:44:48:62:a6:b2:64: 6e:7b:41:9d:e6:90:7c:06:bf:1c:fe:0c:18:0b:25: 2b:44:78:72:26:92:34:b8:d7:b3:ad:97:dd:8a:f2: ac:b8:4e:2f:70:72:0a:11:ee:c2:42:ed:51:ef:ad: b9:71:83:8b:de:ba:c2:24:5d:59:2a:7c:e2:c1:d1: e3:e9:86:48:c3:0d:94:84:18:d8:03:88:f3:3a:0f: 44:a4:b0:21:8d:9c:78:b9:5b:53:e8:b8:18:16:ac: 44:d1:d1:b2:7a:01:8c:f3:97:62:f0:19:6e:95:c3: 2a:55:85:04:10:e0:6a:67:66:a7:60:b0:ab:c0:db: 48:46:04:c1:fe:53:a4:c8:ff:d3:ae:3e:09:e7:c8: e4:ad:ce:f4:33:3f:2c:1f:c4:53:95:7f:d3:64:4a: fc:a0:20:16:49:4f:ea:bc:69:0e:b6:4b:cf:71:c4: 3e:8b:d7:de:04:34:b8:bc:32:8a:4e:84:fa:48:32: b2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:20:A7:A2:7D:1D:5E:45:A3:02:66:89:59:3E:CC:01:FC:43:46:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:0b:b3:3c:08:bd:fc:95:28:8e:c6:1b:65:66:e8:d1:85:5d: 4b:91:02:c3:3d:4f:b5:8f:b4:79:82:17:9a:04:00:c0:cd:df: 9c:d8:69:2d:3b:6a:ce:e0:cf:55:a8:37:04:9b:fd:bf:f1:3a: 1d:b0:76:6d:c8:3a:48:a0:76:4a:7f:12:88:48:e5:71:a8:1e: 0e:b5:c4:32:da:00:e1:f3:c9:22:2d:47:10:80:87:aa:55:b8: 65:d6:a4:06:66:c4:d9:01:bf:ef:6b:ae:4d:0e:ad:ee:02:b9: 1a:fa:14:c5:ee:84:d1:79:4b:0c:fb:c5:f5:3e:74:0c:3a:44: ba:2d:89:78:cd:80:82:a3:03:d2:2d:18:56:aa:ce:e7:da:d9: 32:bc:fe:57:2d:28:65:24:8f:1e:fa:1a:72:8e:b7:db:7f:25: 1f:74:b0:68:92:16:70:38:35:19:74:ae:e1:ac:f8:a4:45:eb: 9e:6b:06:57:09:c3:c9:51:cd:0d:d4:82:93:f2:16:c1:3d:d8: cc:e4:0f:b4:8c:9a:c7:cd:ce:a0:c3:4e:cc:b5:98:54:1a:b0: 5d:6c:63:5e:ef:6b:bb:c7:ec:a7:dc:db:f4:04:2b:f4:41:66: f7:fd:be:cb:a9:b9:e3:33:bc:52:06:79:61:c1:c0:fe:62:46: 95:56:9a:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAn3Tw8zktHQ7Kt98hPQ3Hw97iBkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MjI1MzU2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTA3ZmY1ZjYxYWE3ZmJjYjI1MDliZWIzZDczNWZlZmMz OWI2NzFlMDhjM2E3ZGUyYTU2OTQ4ZTg2YmQ0NDg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqjUP4qwEGlucynU5nH1jvbjM04AeHDU2ryNRQGSWFi8wR yxF85KEZSlud+VrcAJaFOMt+pUON3ZRMOfldCUnzN6Klp0RIYqayZG57QZ3mkHwG vxz+DBgLJStEeHImkjS417Otl92K8qy4Ti9wcgoR7sJC7VHvrblxg4veusIkXVkq fOLB0ePphkjDDZSEGNgDiPM6D0SksCGNnHi5W1PouBgWrETR0bJ6AYzzl2LwGW6V wypVhQQQ4GpnZqdgsKvA20hGBMH+U6TI/9OuPgnnyOStzvQzPywfxFOVf9NkSvyg IBZJT+q8aQ62S89xxD6L194ENLi8MopOhPpIMrJfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlSCnon0dXkWjAmaJWT7MAfxDRm4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwYmQxOTNiLWZmZmMtNDVjNC1iZDQ0LWU1OWZmZjNjMGMwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xDANBgkqhkiG9w0BAQsFAAOCAQEAeQuzPAi9/JUojsYbZWbo0YVdS5EC wz1PtY+0eYIXmgQAwM3fnNhpLTtqzuDPVag3BJv9v/E6HbB2bcg6SKB2Sn8SiEjl cageDrXEMtoA4fPJIi1HEICHqlW4ZdakBmbE2QG/72uuTQ6t7gK5GvoUxe6E0XlL DPvF9T50DDpEui2JeM2AgqMD0i0YVqrO59rZMrz+Vy0oZSSPHvoaco63238lH3Sw aJIWcDg1GXSu4az4pEXrnmsGVwnDyVHNDdSCk/IWwT3YzOQPtIyax83OoMNOzLWY VBqwXWxjXu9ru8fsp9zb9AQr9EFm9/2+y6m54zO8UgZ5YcHA/mJGlVaamw== -----END CERTIFICATE-----Generated at Thu May 8 07:38:23 2025 by rpki-client