$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: MTKLNHyynLsetqq97KaHo5wI9yd01CxtuOVXRwsK6po= Subject key identifier: AB:85:DF:50:E6:45:6A:CF:7B:53:98:B0:F0:03:C8:50:CB:FF:DB:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 719BE10A71708AF372BBAAB71C64054FC027C865 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Fri 25 Apr 2025 00:31:10 +0000 ROA not before: Fri 25 Apr 2025 00:31:10 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9b:e1:0a:71:70:8a:f3:72:bb:aa:b7:1c:64:05:4f:c0:27:c8:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:31:10 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=3983e2abc43975c95d6fe1457e80007644c6b7071562d02ca6a613266e8bbf14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:f8:d4:84:6e:fc:fd:09:21:f3:3e:35:b0: 66:a9:82:52:41:7c:a4:d5:7e:dd:50:55:38:65:76: 23:db:f7:1b:74:10:60:5b:5f:54:3d:63:a9:b2:91: 27:0e:65:6a:d1:2f:5e:71:b5:ea:e8:0d:30:da:cb: e3:ac:1a:7b:73:ac:0e:c5:fb:67:7e:4e:0d:40:f6: 20:df:f7:8c:32:b2:92:90:84:8f:8c:9c:9e:33:c5: 56:c8:db:be:42:eb:ee:61:b2:91:90:28:b4:53:56: 46:5e:00:e5:d2:cf:e0:3f:1a:1a:5b:d5:08:a1:c4: fc:a5:b5:7a:7d:5b:92:65:46:88:f5:d4:81:f2:28: 93:b6:96:45:0c:21:bf:32:7f:14:82:6c:c4:a3:be: 40:01:84:01:67:73:82:bc:0b:d9:48:53:1c:5a:59: 55:83:9e:2d:7b:94:a7:bb:6c:0b:08:a1:7b:cc:13: 3b:d7:ea:04:6d:88:01:02:ec:e2:e4:04:d8:5b:17: 87:70:7c:6e:a1:fe:51:26:ac:f4:ac:1b:30:48:ca: 77:c5:2e:26:24:48:24:1a:af:7b:46:aa:7b:22:67: 94:08:30:2b:34:4d:43:96:c5:55:70:6b:8d:f7:e3: 83:c5:af:4f:94:bd:cd:3e:1e:6d:59:e7:0e:dd:ee: cd:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:85:DF:50:E6:45:6A:CF:7B:53:98:B0:F0:03:C8:50:CB:FF:DB:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:86:c5:8b:5f:cd:15:b5:5b:45:17:98:b6:9f:31:c5:08:09: ac:9c:b3:3b:39:0a:a5:76:48:aa:d5:95:be:02:3c:bd:2e:97: 87:fa:e3:c8:c2:7b:5b:96:0d:5c:d9:f4:12:47:96:be:c7:4c: 91:55:c3:b5:b6:65:62:ed:83:2b:e5:5c:38:82:36:3a:e3:87: 76:e5:34:41:f4:ec:3e:a4:46:9e:2b:fb:40:78:a7:97:fd:48: 18:2f:7e:6f:ec:24:97:d3:28:73:57:32:d2:12:82:17:7e:11: 18:1e:77:28:d8:06:41:86:13:67:56:fb:ab:e6:bd:7e:4d:92: b5:28:ed:45:8a:26:59:90:99:78:02:e0:14:3f:17:87:f9:92: 0b:fb:cb:82:2c:f4:9c:63:df:6a:97:0e:af:01:3a:c9:d3:7c: 3a:a1:e0:8a:32:29:e5:0f:13:07:e5:c5:e4:c3:8f:4b:30:6a: 96:4e:3d:40:80:25:67:89:f5:17:6c:a4:d1:fe:9e:c5:08:28: bb:53:d7:14:d2:6c:f2:de:6d:8f:ef:01:13:ae:fa:6f:c6:8e: 9d:7e:4d:8d:50:8c:8f:0b:4b:e8:71:37:31:49:19:6f:d8:4a: 6b:5e:28:ab:3b:ce:3d:19:5a:0c:22:9b:01:36:34:c4:df:6d: 5c:f2:2c:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcZvhCnFwivNyu6q3HGQFT8AnyGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAzMTEwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTgzZTJhYmM0Mzk3NWM5NWQ2ZmUxNDU3ZTgwMDA3NjQ0 YzZiNzA3MTU2MmQwMmNhNmE2MTMyNjZlOGJiZjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC78vjUhG78/Qkh8z41sGapglJBfKTVft1QVThldiPb9xt0 EGBbX1Q9Y6mykScOZWrRL15xteroDTDay+OsGntzrA7F+2d+Tg1A9iDf94wyspKQ hI+MnJ4zxVbI275C6+5hspGQKLRTVkZeAOXSz+A/Ghpb1QihxPyltXp9W5JlRoj1 1IHyKJO2lkUMIb8yfxSCbMSjvkABhAFnc4K8C9lIUxxaWVWDni17lKe7bAsIoXvM EzvX6gRtiAEC7OLkBNhbF4dwfG6h/lEmrPSsGzBIynfFLiYkSCQar3tGqnsiZ5QI MCs0TUOWxVVwa43344PFr0+Uvc0+Hm1Z5w7d7s27AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq4XfUOZFas97U5iw8APIUMv/26IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBAEyGxYtfzRW1W0UXmLafMcUICayc szs5CqV2SKrVlb4CPL0ul4f648jCe1uWDVzZ9BJHlr7HTJFVw7W2ZWLtgyvlXDiC Njrjh3blNEH07D6kRp4r+0B4p5f9SBgvfm/sJJfTKHNXMtISghd+ERgedyjYBkGG E2dW+6vmvX5NkrUo7UWKJlmQmXgC4BQ/F4f5kgv7y4Is9Jxj32qXDq8BOsnTfDqh 4IoyKeUPEwflxeTDj0swapZOPUCAJWeJ9RdspNH+nsUIKLtT1xTSbPLebY/vAROu +m/Gjp1+TY1QjI8LS+hxNzFJGW/YSmteKKs7zj0ZWgwimwE2NMTfbVzyLC8= -----END CERTIFICATE-----Generated at Sat Apr 26 13:17:55 2025 by rpki-client