$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04306634-1dbc-4569-a40a-6081987ab549.roa File: 04306634-1dbc-4569-a40a-6081987ab549.roa (raw, json) Hash identifier: PhRWsa+mGWyUQaiK6AxQpfsEr4JqAoNnxtxKzbJrEhk= Subject key identifier: 73:21:DE:8F:4E:CC:BC:36:D1:23:EB:92:5B:9A:CA:16:EB:83:9D:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4211384C31D11EB846470073A42D6CA30A653946 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04306634-1dbc-4569-a40a-6081987ab549.roa Signing time: Fri 18 Apr 2025 00:50:29 +0000 ROA not before: Fri 18 Apr 2025 00:50:29 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:11:38:4c:31:d1:1e:b8:46:47:00:73:a4:2d:6c:a3:0a:65:39:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:50:29 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=b3de1d7331400adfeaa7e60da3d754053c42a6baed7adcb01f1e7c5bc25fb1fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cb:aa:4d:70:ed:26:82:0c:5e:79:77:b0:a2: 4a:fb:fe:00:3d:41:1f:97:d3:6a:5f:92:f4:46:8b: fc:34:b1:74:08:7a:df:ec:2a:16:c6:f4:36:3f:1e: b6:75:9b:d9:72:69:89:a0:07:e0:dd:8d:a7:4d:8d: a5:44:ad:28:f1:1d:f5:fd:46:2a:6b:05:06:77:23: d9:80:ee:1c:05:ff:1c:88:0a:4f:45:bd:c4:f8:14: 43:9f:e5:dd:6b:db:2b:ca:0b:97:a7:92:c0:12:08: 2a:85:c7:62:d3:a3:a1:7b:5a:b6:75:92:64:b2:53: a2:2c:d0:ce:0b:eb:80:e6:a7:39:1f:55:6c:69:06: b2:8e:cf:d9:aa:8f:6e:d6:19:b4:ba:7b:80:50:c7: df:02:0d:bc:fb:1d:cc:32:08:9f:88:4a:ef:fb:e8: d3:ec:24:a8:ca:f1:1e:56:df:ab:e4:2c:d0:fa:c7: 10:cd:28:3c:7a:ec:15:d6:4c:40:92:b4:1b:02:fd: 2f:47:03:4c:6b:4d:56:de:63:ad:21:15:b8:b7:a0: fa:ea:20:2d:91:3d:fb:14:8f:2d:d4:6f:19:ec:02: 21:17:65:ab:f4:2a:64:63:63:fc:3c:45:45:b0:0b: b2:a1:1a:e4:ba:21:a7:a5:1f:92:52:72:16:be:99: 3e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:21:DE:8F:4E:CC:BC:36:D1:23:EB:92:5B:9A:CA:16:EB:83:9D:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04306634-1dbc-4569-a40a-6081987ab549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:bd:b6:a5:60:b1:43:04:01:dd:9c:aa:0e:6e:5e:39:3d:22: 70:ad:6f:23:60:7a:04:56:89:d1:46:3c:76:43:9d:28:36:8a: fa:dc:5c:e8:59:0b:50:27:85:c5:6c:85:4a:c5:8e:3f:c5:8a: 29:fe:45:cd:a7:2c:66:99:ce:a5:54:5c:0b:f9:1b:51:e9:9d: 1f:f5:d8:30:4f:8c:2e:74:44:4b:13:20:80:80:3f:33:5b:39: 92:fb:27:aa:ac:f2:42:5a:e4:57:65:a9:62:41:2e:76:35:cf: 93:23:a3:9b:56:6c:c0:4c:73:72:d2:8b:ab:3d:48:2e:d5:ae: 38:10:b7:de:0a:1d:5e:ea:ec:a7:13:4a:fb:19:7f:37:0f:c2: 34:2c:d3:3e:63:80:b4:90:41:f8:0c:7b:df:94:99:c9:9a:29: 41:e7:6d:a1:61:3b:c5:31:ea:94:4e:e9:35:75:3c:13:04:f3: b6:f0:34:d9:f7:91:83:92:d9:cc:e4:af:e2:10:1f:11:33:e9: 9f:32:8a:2f:ae:8d:f3:d1:3d:a0:1d:bc:d5:9e:e8:58:0d:6e: f4:d8:ed:06:5e:1d:67:2e:71:e3:aa:09:ea:5e:19:93:e0:05: ff:b5:e4:c9:e4:d8:b7:cd:01:9f:3e:e1:30:b5:b1:39:cb:7f: 9b:1d:8d:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQhE4TDHRHrhGRwBzpC1sowplOUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDA1MDI5WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2RlMWQ3MzMxNDAwYWRmZWFhN2U2MGRhM2Q3NTQwNTNj NDJhNmJhZWQ3YWRjYjAxZjFlN2M1YmMyNWZiMWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDty6pNcO0mggxeeXewokr7/gA9QR+X02pfkvRGi/w0sXQI et/sKhbG9DY/HrZ1m9lyaYmgB+DdjadNjaVErSjxHfX9RiprBQZ3I9mA7hwF/xyI Ck9FvcT4FEOf5d1r2yvKC5enksASCCqFx2LTo6F7WrZ1kmSyU6Is0M4L64Dmpzkf VWxpBrKOz9mqj27WGbS6e4BQx98CDbz7HcwyCJ+ISu/76NPsJKjK8R5W36vkLND6 xxDNKDx67BXWTECStBsC/S9HA0xrTVbeY60hFbi3oPrqIC2RPfsUjy3UbxnsAiEX Zav0KmRjY/w8RUWwC7KhGuS6IaelH5JScha+mT49AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcyHej07MvDbRI+uSW5rKFuuDneAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0MzA2NjM0LTFkYmMtNDU2OS1hNDBhLTYwODE5ODdhYjU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBIKDANBgkqhkiG9w0BAQsFAAOCAQEAB722pWCxQwQB3ZyqDm5eOT0icK1v I2B6BFaJ0UY8dkOdKDaK+txc6FkLUCeFxWyFSsWOP8WKKf5FzacsZpnOpVRcC/kb UemdH/XYME+MLnRESxMggIA/M1s5kvsnqqzyQlrkV2WpYkEudjXPkyOjm1ZswExz ctKLqz1ILtWuOBC33godXurspxNK+xl/Nw/CNCzTPmOAtJBB+Ax735SZyZopQedt oWE7xTHqlE7pNXU8EwTztvA02feRg5LZzOSv4hAfETPpnzKKL66N89E9oB281Z7o WA1u9NjtBl4dZy5x46oJ6l4Zk+AF/7XkyeTYt80Bnz7hMLWxOct/mx2Nsg== -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:42 2025 by rpki-client