$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa File: 1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa (raw, json) Hash identifier: Ka6B116YyTjvLisP8AZxKakutZh4KkhX4WdZ9ojJP0M= Subject key identifier: 25:4C:3A:CF:18:A0:26:20:59:EC:85:DD:46:B7:91:9F:0A:D7:62:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25B53FCD18A1C6AA4E1F95214E649026EDA94FA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa Signing time: Fri 25 Apr 2025 00:41:13 +0000 ROA not before: Fri 25 Apr 2025 00:41:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.172.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b5:3f:cd:18:a1:c6:aa:4e:1f:95:21:4e:64:90:26:ed:a9:4f:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=94a82c10f39b72fef47125e425c3a26fe27f9e4854c124940d7dc0b9522073c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:f0:90:76:23:f4:82:48:69:8a:61:9d:ea: 4e:e4:af:08:67:2c:76:07:11:43:e2:a5:30:b2:e2: 55:30:d8:62:e6:44:6a:7e:75:0a:46:c9:f3:1d:4d: 4d:46:5e:0e:6a:97:2a:8e:5a:e7:0d:eb:d3:71:2b: c2:12:28:32:b7:c6:b8:40:22:e6:0d:01:e2:05:e7: 86:82:c9:7b:3b:b2:3b:f9:d0:7e:55:27:cc:16:c1: b1:c5:3d:17:0c:af:26:6b:93:5b:2c:9b:3b:fd:9c: b2:c2:0b:3b:45:fa:41:33:9f:05:fd:e5:8b:b3:05: 91:d5:66:9e:76:90:6d:b5:cf:c0:4b:a5:67:f6:a3: 60:b4:75:50:75:4f:a9:7a:8a:26:72:10:98:1a:7a: fc:b0:94:5c:d6:42:f8:ae:08:5e:79:a7:d8:9b:b5: b2:5f:2b:74:c7:6a:42:88:d2:bc:a4:8b:00:fd:63: 82:0a:8a:7a:20:ca:31:20:fa:6a:2f:70:e3:a0:59: cd:61:5c:e1:e5:b1:cd:04:e0:d0:18:f3:75:d2:ed: c9:c4:a3:77:12:5a:a8:61:69:a1:29:12:37:1c:32: 68:34:1e:4c:77:48:77:ff:c8:82:45:b3:5a:99:e1: 34:47:cb:07:10:6e:c6:b3:08:55:90:48:48:27:c7: 4b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4C:3A:CF:18:A0:26:20:59:EC:85:DD:46:B7:91:9F:0A:D7:62:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:f1:c8:be:e6:79:51:f7:71:5b:06:0e:3e:8a:fe:dc:09:28: 19:5c:30:19:a7:0c:42:65:15:70:2c:77:fa:e5:27:3c:76:99: 50:66:a9:82:b8:df:28:8e:d5:5f:87:25:da:a5:97:ba:55:db: 43:e9:75:03:9a:91:1c:53:f1:e0:c2:f1:97:41:83:74:c5:83: 6b:de:7c:3b:af:44:ec:9e:9d:a9:52:bf:a1:01:11:af:07:71: e1:84:6c:a9:ca:e6:b7:12:62:f7:57:fd:d9:2a:21:c9:9d:e2: 1d:70:ad:95:d9:80:d8:90:ee:11:b8:8e:7f:9a:c7:a8:ab:08: 60:93:77:02:5a:9a:09:9f:4b:8f:86:19:6a:80:22:0a:1f:d9: b1:0f:77:f3:3b:a2:2f:6a:a4:b5:37:0e:15:1d:fe:b1:1f:15: b2:e1:69:fb:35:5a:ad:f7:0a:8e:58:2a:fa:1a:03:31:d9:94: a4:5f:e2:43:eb:f3:fb:c6:3c:15:40:a7:a0:e5:eb:f6:8e:d4: 85:8f:e0:5e:6f:3d:54:6c:a7:28:01:4a:f5:63:1d:33:bc:36: 80:8c:5a:e3:19:fa:8e:cc:a2:02:bd:59:e0:94:8e:c4:f7:39: 6a:9e:bb:c7:91:c1:dd:07:a5:90:71:fa:a9:4d:04:2c:88:51: ae:89:1b:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJbU/zRihxqpOH5UhTmSQJu2pT6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MTEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGE4MmMxMGYzOWI3MmZlZjQ3MTI1ZTQyNWMzYTI2ZmUy N2Y5ZTQ4NTRjMTI0OTQwZDdkYzBiOTUyMjA3M2MxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCAvCQdiP0gkhpimGd6k7krwhnLHYHEUPipTCy4lUw2GLm RGp+dQpGyfMdTU1GXg5qlyqOWucN69NxK8ISKDK3xrhAIuYNAeIF54aCyXs7sjv5 0H5VJ8wWwbHFPRcMryZrk1ssmzv9nLLCCztF+kEznwX95YuzBZHVZp52kG21z8BL pWf2o2C0dVB1T6l6iiZyEJgaevywlFzWQviuCF55p9ibtbJfK3THakKI0rykiwD9 Y4IKinogyjEg+movcOOgWc1hXOHlsc0E4NAY83XS7cnEo3cSWqhhaaEpEjccMmg0 Hkx3SHf/yIJFs1qZ4TRHywcQbsazCFWQSEgnx0vTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJUw6zxigJiBZ7IXdRreRnwrXYgswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkM2NmMDcxLTE1YTEtNGI1Mi1iZThmLTUzYmQ0YTc5ZGY0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAorDANBgkqhkiG9w0BAQsFAAOCAQEAC/HIvuZ5UfdxWwYOPor+3AkoGVww GacMQmUVcCx3+uUnPHaZUGapgrjfKI7VX4cl2qWXulXbQ+l1A5qRHFPx4MLxl0GD dMWDa958O69E7J6dqVK/oQERrwdx4YRsqcrmtxJi91f92SohyZ3iHXCtldmA2JDu EbiOf5rHqKsIYJN3AlqaCZ9Lj4YZaoAiCh/ZsQ938zuiL2qktTcOFR3+sR8VsuFp +zVarfcKjlgq+hoDMdmUpF/iQ+vz+8Y8FUCnoOXr9o7UhY/gXm89VGynKAFK9WMd M7w2gIxa4xn6jsyiAr1Z4JSOxPc5ap67x5HB3QelkHH6qU0ELIhRrokbWw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:18:01 2025 by rpki-client