$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa File: ee072b22-d511-4e36-bf63-9dea3fed9955.roa (raw, json) Hash identifier: Wo+GKD5bfETOf8V3KcgD54CjJgh/D16XDmDqBlLdEM8= Subject key identifier: F2:12:31:36:72:92:EF:16:E1:B6:AF:4B:0D:15:CE:16:DD:7D:15:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4123919FC4D82577B9539E79D52B128E4D43C8AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa Signing time: Mon 28 Apr 2025 15:30:14 +0000 ROA not before: Mon 28 Apr 2025 15:30:14 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:23:91:9f:c4:d8:25:77:b9:53:9e:79:d5:2b:12:8e:4d:43:c8:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:30:14 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=887c52c0e0909616576b6e243b83fce8a93d4d0b1da0b336bb352544b92086e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:73:b8:2d:6f:49:d3:08:ca:05:d3:fe:dd: 83:64:c9:cc:fd:1a:5f:f0:ad:40:ec:d3:44:b7:9a: 49:4b:bb:a3:3f:e0:bf:f4:5c:f3:e1:43:17:2a:de: 1b:92:c5:38:fd:fe:44:12:f8:20:f7:2b:2e:57:b8: 4f:56:06:b3:e0:75:9a:46:56:10:40:a5:29:cf:57: 54:c3:fc:82:44:53:cc:33:bf:97:61:4a:99:89:c7: 32:b9:6b:1f:41:7a:9c:65:96:2a:1a:ab:df:ea:76: 95:ad:17:6d:c8:05:8e:b4:5a:7c:16:63:1e:2b:50: e4:a6:90:85:8c:b0:6f:d3:6d:25:ac:ad:2d:07:23: 03:ef:01:9e:d1:48:c5:4e:ad:91:d1:82:8a:40:0f: 00:a3:e5:b4:19:8b:f0:94:0d:05:9f:ac:a3:bf:d7: 9f:c0:44:a7:dd:4c:cd:b9:2f:3f:b9:9c:66:c4:d6: 27:0c:86:2a:26:ec:09:b9:ce:85:d7:0e:a4:1d:c8: 2e:38:34:ab:09:a1:26:71:01:c3:40:43:09:4b:fd: f9:8d:7d:3f:f1:26:8a:59:18:5c:fa:5d:ce:ce:4b: 7b:42:79:ba:f9:17:25:b0:ef:12:a3:8f:d7:8d:0a: 0d:1d:67:40:36:b9:12:3f:8f:f4:8c:66:c7:75:47: b1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:12:31:36:72:92:EF:16:E1:B6:AF:4B:0D:15:CE:16:DD:7D:15:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:b3:77:83:0d:b1:e2:65:41:28:92:75:e0:b8:f6:74:24:e3: 99:d6:a6:04:e2:0c:2f:dc:a6:81:c5:8b:b4:3a:21:6c:47:21: 91:8a:dd:bf:f9:64:a7:08:27:72:6c:44:b9:9d:b8:f6:b3:68: 34:68:4b:a4:96:49:92:4e:20:05:05:1c:2f:3b:93:5d:b1:43: 3c:6e:79:78:1e:cf:78:d5:26:6e:f2:84:cf:4d:11:22:80:a2: 5b:22:5c:68:89:3c:7e:0b:cd:99:cf:f6:8d:22:65:c7:08:72: 80:5a:2f:11:62:1e:17:4d:93:12:f7:21:0c:57:3a:43:cd:da: da:30:1e:7e:3f:e4:3c:a4:59:b9:f1:df:0a:22:36:64:23:02: 53:0b:81:89:56:0c:6f:eb:a5:9e:69:85:8f:14:de:7e:c9:97: 10:81:8d:fd:f0:cd:ff:5b:eb:7f:c6:8c:8f:69:d5:35:2c:f6: bd:d5:53:96:2a:e0:74:f1:53:71:dc:a6:ab:62:54:88:9e:bf: 26:b5:f3:35:00:ee:5f:d2:01:cf:53:a4:3b:dc:6c:40:18:e4: ba:8e:28:4a:93:fd:ef:fa:83:08:c7:3d:f4:4c:12:0e:ee:b2: 4c:41:1b:3b:dd:2c:eb:ef:07:a1:e4:bd:e5:f3:66:9e:fb:14: 07:6c:e6:88 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQSORn8TYJXe5U5551SsSjk1DyK4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUzMDE0WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODdjNTJjMGUwOTA5NjE2NTc2YjZlMjQzYjgzZmNlOGE5 M2Q0ZDBiMWRhMGIzMzZiYjM1MjU0NGI5MjA4NmU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD5nO4LW9J0wjKBdP+3YNkycz9Gl/wrUDs00S3mklLu6M/ 4L/0XPPhQxcq3huSxTj9/kQS+CD3Ky5XuE9WBrPgdZpGVhBApSnPV1TD/IJEU8wz v5dhSpmJxzK5ax9Bepxllioaq9/qdpWtF23IBY60WnwWYx4rUOSmkIWMsG/TbSWs rS0HIwPvAZ7RSMVOrZHRgopADwCj5bQZi/CUDQWfrKO/15/ARKfdTM25Lz+5nGbE 1icMhiom7Am5zoXXDqQdyC44NKsJoSZxAcNAQwlL/fmNfT/xJopZGFz6Xc7OS3tC ebr5FyWw7xKjj9eNCg0dZ0A2uRI/j/SMZsd1R7GpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8hIxNnKS7xbhtq9LDRXOFt19FYMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMDcyYjIyLWQ1MTEtNGUzNi1iZjYzLTlkZWEzZmVkOTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KDANBgkqhkiG9w0BAQsFAAOCAQEAQ7N3gw2x4mVBKJJ14Lj2dCTjmdam BOIML9ymgcWLtDohbEchkYrdv/lkpwgncmxEuZ249rNoNGhLpJZJkk4gBQUcLzuT XbFDPG55eB7PeNUmbvKEz00RIoCiWyJcaIk8fgvNmc/2jSJlxwhygFovEWIeF02T EvchDFc6Q83a2jAefj/kPKRZufHfCiI2ZCMCUwuBiVYMb+ulnmmFjxTefsmXEIGN /fDN/1vrf8aMj2nVNSz2vdVTlirgdPFTcdymq2JUiJ6/JrXzNQDuX9IBz1OkO9xs QBjkuo4oSpP97/qDCMc99EwSDu6yTEEbO90s6+8HoeS95fNmnvsUB2zmiA== -----END CERTIFICATE-----Generated at Sat May 10 18:59:22 2025 by rpki-client