$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e541b1d1-d624-4ed3-a35b-eb257b0a449b.roa File: e541b1d1-d624-4ed3-a35b-eb257b0a449b.roa (raw, json) Hash identifier: vEy9rkHXqCNseJN/DFAlWbpemoDJy25yFfrlL+V1hdY= Subject key identifier: C6:DD:B5:6C:6F:F6:52:A8:EE:E3:60:A8:E2:0A:AC:B4:FE:40:4E:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A871C00A683AD018B9D28EE5357FF00698B63F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e541b1d1-d624-4ed3-a35b-eb257b0a449b.roa Signing time: Wed 07 May 2025 00:11:43 +0000 ROA not before: Wed 07 May 2025 00:11:43 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.224.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:87:1c:00:a6:83:ad:01:8b:9d:28:ee:53:57:ff:00:69:8b:63:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:11:43 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=58cbabf49678c88ae52d04dd11582ea1048856e037bb3914d0ff6ac145f1198e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6f:da:4b:ba:48:4a:e2:10:6f:2e:62:27:54: 52:33:13:82:f8:c8:fd:62:72:ce:8d:9e:56:ef:0c: b2:57:66:b9:85:91:48:13:a8:20:7e:af:ab:9e:1b: a4:e8:84:d1:2d:62:57:96:e9:3e:fc:1d:41:36:08: e5:4d:81:6e:19:63:e8:b0:5d:e8:47:07:e0:40:45: 53:4f:8c:93:81:ea:0b:d0:0e:8f:71:31:6c:35:1e: 67:a1:2f:12:11:f0:c9:08:ed:fb:60:be:d7:df:4a: 1c:4b:8e:0e:c3:8f:8a:b9:c8:3f:98:e3:c7:57:ab: 0d:85:19:44:ca:9b:b9:2a:1c:50:0c:40:25:9e:51: ef:c9:41:4b:3e:77:c7:2b:4b:68:5e:57:c7:07:9c: 13:b1:35:f0:f9:66:43:20:94:30:02:6a:e8:08:18: 23:e1:bb:3c:d5:5f:bb:8f:c2:c6:6e:33:22:06:eb: 16:7f:d2:ea:cd:d9:f6:4a:4b:02:47:93:2e:26:e6: 73:72:8a:0e:a1:20:95:14:e9:52:d3:43:89:2f:23: c7:3f:d7:f5:c5:92:cb:f0:ff:d2:cc:86:64:3c:5e: bb:4b:b9:57:ca:5d:8d:c6:ea:0c:0a:bb:33:44:59: 17:f7:61:a3:72:fc:bd:32:c7:9d:e1:9a:5f:1f:52: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DD:B5:6C:6F:F6:52:A8:EE:E3:60:A8:E2:0A:AC:B4:FE:40:4E:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e541b1d1-d624-4ed3-a35b-eb257b0a449b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.224.0.0/11 Signature Algorithm: sha256WithRSAEncryption 42:82:52:bd:f8:9f:70:4c:8d:96:8d:30:e6:9b:6d:27:17:ec: bb:5e:f8:87:95:1c:16:f1:ab:cc:99:23:d9:08:d0:4f:02:14: 9e:08:bc:09:a6:a4:e4:c8:9b:58:71:7b:57:f4:87:e8:87:50: b6:10:4f:0b:b7:32:a6:23:dd:82:47:03:e7:2d:f3:41:df:40: 3c:bf:87:a2:d1:ec:ff:9e:07:84:88:9e:16:e1:73:e3:e1:41: e5:09:9e:69:6e:3d:f0:ff:c0:dd:ef:6d:6b:8f:b6:ad:52:7b: 55:68:81:29:1a:62:cf:ca:62:81:36:14:61:d1:05:50:f1:01: 46:6a:81:ab:1a:d2:7b:00:1f:8c:7f:13:41:c7:f0:e7:39:a2: e7:cf:cb:76:d0:35:7f:36:8d:50:18:90:e6:14:aa:cc:9f:61: 79:74:2d:ac:a3:60:ee:22:99:aa:f1:eb:6c:c6:61:92:9d:88: 62:4c:8e:b0:97:11:83:02:3d:0f:10:fe:84:53:94:7f:4b:60: 17:69:96:b1:7b:66:12:76:42:d7:dc:67:2e:5c:27:9c:64:ef: f3:21:ce:83:24:64:96:6a:f6:03:26:b8:f8:f5:89:1e:f2:ac: bb:f8:68:57:7d:56:67:d6:ed:b7:ec:f4:b2:67:2a:a7:45:94: 58:21:a2:d0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaoccAKaDrQGLnSjuU1f/AGmLY/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAxMTQzWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGNiYWJmNDk2NzhjODhhZTUyZDA0ZGQxMTU4MmVhMTA0 ODg1NmUwMzdiYjM5MTRkMGZmNmFjMTQ1ZjExOThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcb9pLukhK4hBvLmInVFIzE4L4yP1ics6NnlbvDLJXZrmF kUgTqCB+r6ueG6TohNEtYleW6T78HUE2COVNgW4ZY+iwXehHB+BARVNPjJOB6gvQ Do9xMWw1HmehLxIR8MkI7ftgvtffShxLjg7Dj4q5yD+Y48dXqw2FGUTKm7kqHFAM QCWeUe/JQUs+d8crS2heV8cHnBOxNfD5ZkMglDACaugIGCPhuzzVX7uPwsZuMyIG 6xZ/0urN2fZKSwJHky4m5nNyig6hIJUU6VLTQ4kvI8c/1/XFksvw/9LMhmQ8XrtL uVfKXY3G6gwKuzNEWRf3YaNy/L0yx53hml8fUjrPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxt21bG/2Uqju42Co4gqstP5ATsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1NDFiMWQxLWQ2MjQtNGVkMy1hMzViLWViMjU3YjBhNDQ5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUs4DANBgkqhkiG9w0BAQsFAAOCAQEAQoJSvfifcEyNlo0w5pttJxfsu174 h5UcFvGrzJkj2QjQTwIUngi8Caak5MibWHF7V/SH6IdQthBPC7cypiPdgkcD5y3z Qd9APL+HotHs/54HhIieFuFz4+FB5QmeaW498P/A3e9ta4+2rVJ7VWiBKRpiz8pi gTYUYdEFUPEBRmqBqxrSewAfjH8TQcfw5zmi58/LdtA1fzaNUBiQ5hSqzJ9heXQt rKNg7iKZqvHrbMZhkp2IYkyOsJcRgwI9DxD+hFOUf0tgF2mWsXtmEnZC19xnLlwn nGTv8yHOgyRklmr2Aya4+PWJHvKsu/hoV31WZ9btt+z0smcqp0WUWCGi0A== -----END CERTIFICATE-----Generated at Thu May 8 13:58:11 2025 by rpki-client