$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa File: 21224473-433c-4fa2-9491-e141ae8efbea.roa (raw, json) Hash identifier: zwQlocSZTBQnG69scafomqXngZtpL+JV1Rks0DVfcgg= Subject key identifier: 90:25:0E:12:9D:DB:01:FC:8D:52:15:1E:8E:F8:70:8F:87:0E:3E:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05C25DEAB25284DAB116368FA272E303618C2403 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa Signing time: Fri 25 Apr 2025 15:11:02 +0000 ROA not before: Fri 25 Apr 2025 15:11:02 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:c2:5d:ea:b2:52:84:da:b1:16:36:8f:a2:72:e3:03:61:8c:24:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:11:02 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1082b44a333d45c34a37561fc130573842c047a280b2c7d87aade47a8609e690, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3a:58:6c:85:a0:5a:ab:77:e9:1e:d9:1d:f5: 43:61:a2:5e:29:a0:0a:d1:6c:4f:27:3a:35:7e:67: a9:32:9f:43:55:c9:45:e3:d9:91:97:3b:8b:b3:c3: 5b:c8:3f:dc:7b:fd:08:30:c4:6b:73:43:fa:f0:92: 62:48:68:4c:32:6e:63:30:da:6c:86:63:d9:5a:73: 10:84:c8:7f:d1:26:f0:61:8d:38:87:b6:21:d2:84: a0:31:53:e4:08:db:34:91:c9:38:67:a1:c6:2e:1d: fc:b6:ca:9d:9b:cb:8b:30:1c:b2:ea:f7:e6:40:6c: d0:c1:12:7d:1b:02:c1:91:55:38:b3:6d:1b:df:2f: 6b:7d:fc:2b:c9:22:d4:27:01:2d:09:01:4c:48:c6: 2f:59:9e:30:f8:42:87:5c:15:af:b9:1d:7e:f4:b3: 5f:75:9b:95:0c:06:51:1d:a3:4e:fa:16:e8:5e:d1: c7:f6:2a:a8:b6:4d:09:46:6f:ba:38:17:60:b7:18: 3d:13:da:6f:13:3b:57:53:3b:73:f1:40:31:7c:3c: b4:04:13:51:dd:90:9f:d7:c9:da:fe:19:ca:93:5d: 0e:3e:66:5b:3a:5a:d9:3f:75:d0:37:a2:45:9e:2d: 1a:71:21:d0:0d:ae:52:28:1f:57:14:2d:1c:55:35: 9b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:25:0E:12:9D:DB:01:FC:8D:52:15:1E:8E:F8:70:8F:87:0E:3E:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.128.0/18 Signature Algorithm: sha256WithRSAEncryption ce:a9:1e:98:11:c0:05:34:e2:21:9b:52:00:50:7a:2d:c4:01: e7:61:3e:98:81:7f:3f:b3:b8:04:75:27:c3:16:8d:ed:5b:50: 45:92:46:57:14:30:f9:b1:06:50:9d:3b:82:f4:20:cd:ac:65: d1:60:a4:f6:6b:db:d6:a9:5e:6e:04:cd:dc:b8:ce:8a:d3:49: 25:23:ea:5a:e9:0b:cd:a2:33:ae:fa:32:6b:4c:53:fd:c4:4a: 0a:6c:83:10:93:8d:1f:c7:c1:ac:1e:bc:db:28:cf:e3:43:0c: 4b:44:8c:f9:c3:73:0c:1f:08:a4:ba:73:a6:1e:26:d8:70:06: b6:b7:25:b9:4f:a9:a4:a5:b9:98:ca:bf:1e:52:f0:f7:6c:1f: 15:6b:18:e8:37:f7:07:8d:6c:1b:cd:f8:fb:42:a0:26:85:50: 27:3d:76:62:0b:42:19:ed:58:ce:e1:50:14:a2:f5:56:e6:5a: 84:3a:f5:e9:34:bf:db:96:5e:83:82:d0:bb:af:4a:ab:9f:82: 98:7b:b0:f5:c3:d2:05:b2:6c:ca:f5:d0:46:bb:56:72:f6:a8: da:c9:c6:34:bd:ac:84:1a:bb:30:cb:ca:ef:3b:e5:bc:32:30: 0a:6b:e6:56:44:a9:b5:f4:6f:7b:8a:7c:fd:f8:0f:a0:bc:73: 68:fc:93:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBcJd6rJShNqxFjaPonLjA2GMJAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUxMTAyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDgyYjQ0YTMzM2Q0NWMzNGEzNzU2MWZjMTMwNTczODQy YzA0N2EyODBiMmM3ZDg3YWFkZTQ3YTg2MDllNjkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaOlhshaBaq3fpHtkd9UNhol4poArRbE8nOjV+Z6kyn0NV yUXj2ZGXO4uzw1vIP9x7/QgwxGtzQ/rwkmJIaEwybmMw2myGY9lacxCEyH/RJvBh jTiHtiHShKAxU+QI2zSRyThnocYuHfy2yp2by4swHLLq9+ZAbNDBEn0bAsGRVTiz bRvfL2t9/CvJItQnAS0JAUxIxi9ZnjD4QodcFa+5HX70s191m5UMBlEdo076Fuhe 0cf2Kqi2TQlGb7o4F2C3GD0T2m8TO1dTO3PxQDF8PLQEE1HdkJ/Xydr+GcqTXQ4+ Zls6Wtk/ddA3okWeLRpxIdANrlIoH1cULRxVNZt9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkCUOEp3bAfyNUhUejvhwj4cOPpMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxMjI0NDczLTQzM2MtNGZhMi05NDkxLWUxNDFhZThlZmJlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLA4AwDQYJKoZIhvcNAQELBQADggEBAM6pHpgRwAU04iGbUgBQei3EAedh PpiBfz+zuAR1J8MWje1bUEWSRlcUMPmxBlCdO4L0IM2sZdFgpPZr29apXm4Ezdy4 zorTSSUj6lrpC82iM676MmtMU/3ESgpsgxCTjR/HwawevNsoz+NDDEtEjPnDcwwf CKS6c6YeJthwBra3JblPqaSluZjKvx5S8PdsHxVrGOg39weNbBvN+PtCoCaFUCc9 dmILQhntWM7hUBSi9VbmWoQ69ek0v9uWXoOC0LuvSqufgph7sPXD0gWybMr10Ea7 VnL2qNrJxjS9rIQauzDLyu875bwyMApr5lZEqbX0b3uKfP34D6C8c2j8k08= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:55 2025 by rpki-client