$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/074c1d81-3bbe-47ac-8bec-c54dccaaf547.roa File: 074c1d81-3bbe-47ac-8bec-c54dccaaf547.roa (raw, json) Hash identifier: d6mCnPcsHgkCwMHQj9FPla1eNqo1fKq//1m3lpk/wk4= Subject key identifier: 59:1D:68:DF:1E:6E:B3:11:7D:5B:B2:B5:EF:F2:DB:9B:F4:D5:DB:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4956E4764A77269113870D2766C12A39DFDD328C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/074c1d81-3bbe-47ac-8bec-c54dccaaf547.roa Signing time: Fri 25 Apr 2025 15:00:16 +0000 ROA not before: Fri 25 Apr 2025 15:00:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.180.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:56:e4:76:4a:77:26:91:13:87:0d:27:66:c1:2a:39:df:dd:32:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:00:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b9d9900ea3a5dc017bc0514ddcf1a9693a20975c2ff1be1adcfc30f134746573, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7c:5b:5a:a7:09:3d:74:53:6a:f2:ee:a7:65: db:ce:d0:92:fe:cd:2a:34:51:5f:b4:2f:d5:5e:36: fa:cc:c3:db:53:f0:52:cb:e9:0b:4c:ed:b7:ed:14: 9c:a5:51:74:a6:63:27:7a:44:8b:37:ec:98:c7:ed: c7:05:e2:5f:5e:4d:b7:2b:d5:b8:a3:e8:eb:4a:28: 62:4e:96:41:e6:d7:7e:63:0d:02:f8:02:85:1d:53: 77:06:6a:5c:27:2a:b1:67:02:92:61:bc:01:40:3a: 38:73:36:5f:86:09:66:94:b7:69:c8:71:88:1b:04: 8e:9b:6f:2d:79:56:f4:ce:01:3c:de:5d:28:08:46: 53:86:53:b3:c5:e8:04:c2:fb:41:22:44:d7:61:eb: fa:fd:21:94:8f:ff:68:e0:3e:45:73:54:4f:4f:85: 5d:d9:39:17:42:26:d6:2f:d9:4b:16:2c:2a:de:61: 70:1e:c0:95:01:c4:e2:70:75:d0:ee:b4:8d:dd:94: 72:05:b8:be:b2:81:96:c0:7d:dd:bb:5d:34:dd:03: 9e:50:4e:52:ae:86:13:06:b7:a9:53:a4:a5:e2:e7: b9:46:5f:bf:08:8d:ed:ea:f4:c2:0d:45:88:69:a3: 33:cf:22:f4:ce:da:59:05:19:ae:0b:c0:35:1e:36: 12:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1D:68:DF:1E:6E:B3:11:7D:5B:B2:B5:EF:F2:DB:9B:F4:D5:DB:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/074c1d81-3bbe-47ac-8bec-c54dccaaf547.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.180.0.0/14 Signature Algorithm: sha256WithRSAEncryption cd:a2:1f:bb:0f:7b:75:1c:d0:41:89:85:46:b2:28:b7:c7:28: 84:ce:de:c7:38:cf:d3:86:f3:a9:8e:0d:2b:29:cb:dd:12:f8: 75:a4:50:cb:e1:c1:cb:52:26:c5:de:38:7e:00:ec:41:c7:30: 64:4f:b8:e2:df:f5:cf:1b:d0:45:4b:49:cc:59:76:67:7f:38: 60:26:7b:c2:ee:eb:83:cd:de:ed:fd:90:07:a4:84:42:20:ea: f7:07:2a:f3:62:cf:c7:33:97:00:20:42:b0:79:2a:e5:69:d4: 8f:6b:88:c7:27:3d:98:d8:84:df:4b:f4:e3:88:52:8a:fb:4b: 22:ec:1a:ed:74:d1:3c:30:e8:ac:87:6a:44:0e:44:79:58:98: 73:86:72:2c:4c:05:b5:a8:77:6c:fb:88:92:b1:f0:e0:ad:45: 6a:e3:7c:7a:65:e6:1a:d1:fc:49:c4:0f:ea:8e:08:e0:3b:71: 85:c9:78:17:fd:f2:96:79:70:77:c2:17:52:e7:1f:79:0c:2c: 71:9d:20:0f:14:dd:a3:64:0f:2f:46:0b:c7:bf:b8:d9:2b:3e: 27:08:94:0f:e0:83:c2:dd:2d:79:8a:ea:fd:82:6d:c4:41:43: cb:bd:7b:a5:6f:86:25:7e:d6:37:6e:8f:29:9f:8b:48:da:12: fb:6f:04:a1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSVbkdkp3JpEThw0nZsEqOd/dMowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMDE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWQ5OTAwZWEzYTVkYzAxN2JjMDUxNGRkY2YxYTk2OTNh MjA5NzVjMmZmMWJlMWFkY2ZjMzBmMTM0NzQ2NTczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRfFtapwk9dFNq8u6nZdvO0JL+zSo0UV+0L9VeNvrMw9tT 8FLL6QtM7bftFJylUXSmYyd6RIs37JjH7ccF4l9eTbcr1bij6OtKKGJOlkHm135j DQL4AoUdU3cGalwnKrFnApJhvAFAOjhzNl+GCWaUt2nIcYgbBI6bby15VvTOATze XSgIRlOGU7PF6ATC+0EiRNdh6/r9IZSP/2jgPkVzVE9PhV3ZORdCJtYv2UsWLCre YXAewJUBxOJwddDutI3dlHIFuL6ygZbAfd27XTTdA55QTlKuhhMGt6lTpKXi57lG X78Ije3q9MINRYhpozPPIvTO2lkFGa4LwDUeNhIfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWR1o3x5usxF9W7K17/Lbm/TV204wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3NGMxZDgxLTNiYmUtNDdhYy04YmVjLWM1NGRjY2FhZjU0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI/tDANBgkqhkiG9w0BAQsFAAOCAQEAzaIfuw97dRzQQYmFRrIot8cohM7e xzjP04bzqY4NKynL3RL4daRQy+HBy1Imxd44fgDsQccwZE+44t/1zxvQRUtJzFl2 Z384YCZ7wu7rg83e7f2QB6SEQiDq9wcq82LPxzOXACBCsHkq5WnUj2uIxyc9mNiE 30v044hSivtLIuwa7XTRPDDorIdqRA5EeViYc4ZyLEwFtah3bPuIkrHw4K1FauN8 emXmGtH8ScQP6o4I4Dtxhcl4F/3ylnlwd8IXUucfeQwscZ0gDxTdo2QPL0YLx7+4 2Ss+JwiUD+CDwt0teYrq/YJtxEFDy717pW+GJX7WN26PKZ+LSNoS+28EoQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:33 2025 by rpki-client