$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa File: 1619d0e7-4e79-4136-ac39-2148c9d5e013.roa (raw, json) Hash identifier: U0Zm0BEEDcED2GLRkNwQaSgnFJNDGclJ/9Jc+mfAMNo= Subject key identifier: 33:AC:09:04:BD:F3:9F:2B:6B:28:DF:CF:78:A8:1C:AA:7B:A9:8E:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A63AE7D5EE7A31B47D01FB94194276950670462 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa Signing time: Wed 23 Apr 2025 00:51:38 +0000 ROA not before: Wed 23 Apr 2025 00:51:38 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:63:ae:7d:5e:e7:a3:1b:47:d0:1f:b9:41:94:27:69:50:67:04:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:38 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=bfaa03d4b8b55f1983a6c3b50756531029f7215d63e78cfeb938fd5b5ac5dabb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3a:e6:d5:af:3c:e8:18:d0:1c:e5:21:fd:ec: 75:45:07:b1:72:0b:16:25:9e:0e:61:f2:72:85:0f: 4b:a3:3b:19:9d:01:a0:06:45:59:95:86:c7:01:8b: 3c:86:f0:d0:84:41:a6:49:19:8a:04:b5:ba:74:be: 79:bb:2b:59:b8:05:7e:53:94:3c:51:fa:18:5f:93: bb:fa:57:c3:ce:f9:4c:89:32:99:be:49:ea:29:b4: 01:b5:8e:6f:13:32:a9:66:52:a4:0f:66:01:0a:d6: b4:73:a7:3c:f9:42:bf:7d:26:56:17:e7:39:af:1e: 20:c8:3c:23:6d:e7:1e:52:a0:70:b9:4e:7b:21:e7: 10:58:56:13:e5:0b:b5:17:09:5d:e1:18:ce:a8:38: 31:fa:4c:b5:ec:7a:ee:77:8c:c1:00:6e:cb:94:ba: 8a:4a:0a:8d:a3:b1:0a:0c:3a:27:0d:c8:6e:be:4b: d0:2e:12:c6:eb:b4:46:bb:ee:99:e1:8d:b7:58:96: b4:ef:b2:1f:27:22:53:bd:76:37:38:81:4c:5e:5a: ee:db:60:f5:6e:ba:5b:67:19:a0:e9:a9:33:e2:be: b4:3e:0a:90:de:73:e3:a5:6a:62:e2:68:66:bc:b5: 07:33:2b:53:ef:b5:f2:51:01:90:4e:69:c2:2f:f8: 7b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AC:09:04:BD:F3:9F:2B:6B:28:DF:CF:78:A8:1C:AA:7B:A9:8E:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.32.0/21 Signature Algorithm: sha256WithRSAEncryption 48:89:a9:a1:d8:57:f9:c4:0e:40:22:95:f8:6c:82:c2:78:b0: 6c:b0:71:cc:be:0b:50:ee:7e:f2:d5:f6:ac:2a:61:d4:10:e0: dc:5e:7e:5b:3b:e3:bd:8f:7b:02:b3:55:92:24:69:2c:c9:19: 08:1e:e1:8d:b4:57:98:6e:b2:bf:30:bb:f2:80:d3:9e:aa:33: ca:e6:6d:60:6e:5b:4a:fa:e7:d5:8d:4f:6e:03:08:a9:dc:3c: a0:3c:9c:ec:d0:f9:12:03:b7:8e:20:3a:70:fb:13:1b:ad:6a: 06:8b:a3:e1:83:2d:ec:c7:43:28:70:fd:15:35:4c:fd:c5:81: 2d:28:e3:41:34:68:45:ea:cc:b2:7f:2e:79:a6:7e:95:5b:8b: 21:a3:a2:af:af:ea:53:38:5a:0a:a9:44:c5:9b:ae:3f:f0:6f: 9e:26:67:61:3b:00:d8:6e:98:97:0c:62:43:4d:88:4f:46:9f: 83:cd:70:ec:e4:b6:f1:af:9e:d0:56:6b:e5:6c:57:8a:46:44: f5:8a:b2:ce:06:2e:f6:8b:f4:2d:0e:b3:7a:b6:dc:b7:9b:44: 08:50:e3:77:9f:ab:54:18:2f:89:fd:c6:55:a5:74:71:37:39: f1:cd:70:c2:94:8a:19:e2:26:13:95:da:e6:07:6f:61:5e:25: 7b:3d:b5:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSmOufV7noxtH0B+5QZQnaVBnBGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTM4WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmFhMDNkNGI4YjU1ZjE5ODNhNmMzYjUwNzU2NTMxMDI5 ZjcyMTVkNjNlNzhjZmViOTM4ZmQ1YjVhYzVkYWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbOubVrzzoGNAc5SH97HVFB7FyCxYlng5h8nKFD0ujOxmd AaAGRVmVhscBizyG8NCEQaZJGYoEtbp0vnm7K1m4BX5TlDxR+hhfk7v6V8PO+UyJ Mpm+SeoptAG1jm8TMqlmUqQPZgEK1rRzpzz5Qr99JlYX5zmvHiDIPCNt5x5SoHC5 Tnsh5xBYVhPlC7UXCV3hGM6oODH6TLXseu53jMEAbsuUuopKCo2jsQoMOicNyG6+ S9AuEsbrtEa77pnhjbdYlrTvsh8nIlO9djc4gUxeWu7bYPVuultnGaDpqTPivrQ+ CpDec+OlamLiaGa8tQczK1PvtfJRAZBOacIv+HvFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM6wJBL3znytrKN/PeKgcqnupjoEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2MTlkMGU3LTRlNzktNDEzNi1hYzM5LTIxNDhjOWQ1ZTAxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOugSAwDQYJKoZIhvcNAQELBQADggEBAEiJqaHYV/nEDkAilfhsgsJ4sGyw ccy+C1DufvLV9qwqYdQQ4Nxefls7472PewKzVZIkaSzJGQge4Y20V5husr8wu/KA 056qM8rmbWBuW0r659WNT24DCKncPKA8nOzQ+RIDt44gOnD7ExutagaLo+GDLezH Qyhw/RU1TP3FgS0o40E0aEXqzLJ/LnmmfpVbiyGjoq+v6lM4WgqpRMWbrj/wb54m Z2E7ANhumJcMYkNNiE9Gn4PNcOzktvGvntBWa+VsV4pGRPWKss4GLvaL9C0Os3q2 3LebRAhQ43efq1QYL4n9xlWldHE3OfHNcMKUihniJhOV2uYHb2FeJXs9tRo= -----END CERTIFICATE-----Generated at Sat Apr 26 19:25:39 2025 by rpki-client