$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa File: 225a370b-b7ff-4d29-8cc6-b57287923a22.roa (raw, json) Hash identifier: /KZU9xn1bUye5IgQkckKLDBZazMHF445HbUi6XgHaXU= Subject key identifier: 91:F9:59:35:E1:9D:B4:1A:22:36:B4:70:4A:D4:C8:D4:C5:4F:C1:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BF5D376372FE09B06D4816EBEE57E2AFF6F7901 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa Signing time: Tue 22 Apr 2025 00:01:23 +0000 ROA not before: Tue 22 Apr 2025 00:01:23 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f5:d3:76:37:2f:e0:9b:06:d4:81:6e:be:e5:7e:2a:ff:6f:79:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:01:23 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=9c263f6ab5926919c7ecefc4eeb4f4ec9b8c46c2671ece1fbb38e3a7978ab896, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ce:19:f5:a7:0c:3e:2d:62:f2:23:19:62:d2: 3a:60:28:cf:1e:f8:ec:6c:ee:f9:92:a7:c2:5b:ce: 03:e5:df:cc:0a:3a:8a:60:a6:16:5c:e9:9f:a8:ed: 39:83:4c:8f:50:ef:96:1d:11:5d:f1:ed:9e:85:d8: d0:65:fe:c9:08:9e:8b:55:67:7d:59:15:d7:45:58: 72:da:b4:ca:cd:80:ac:87:3c:a7:6f:07:42:ac:35: e6:50:dc:aa:45:ff:34:64:f9:14:4c:16:bf:42:a6: 39:3a:dc:23:c5:45:58:6c:cc:d5:e3:c0:9a:2c:72: 41:5b:ed:55:45:dd:7b:d4:3f:d2:25:45:28:4d:0b: 83:cc:13:13:38:3f:ef:31:7d:50:21:4a:bf:51:26: 6b:a4:bc:d7:0f:4b:d7:c5:ff:ce:2c:91:7b:8d:41: 33:34:6f:f7:0d:db:ac:8c:d4:46:ea:36:c5:75:ad: 08:d1:6f:6e:12:07:7b:7e:7a:a3:13:1e:19:13:ea: e1:32:ed:4f:47:57:42:b6:84:fb:5d:79:d9:2b:e0: ba:72:4a:9c:c4:88:39:ce:6e:78:cb:8a:da:60:07: f1:b2:d3:f3:53:6a:5e:59:ea:e8:49:68:4f:78:24: 88:89:ba:45:ea:9a:e8:b4:8e:9f:31:65:63:8b:1f: cc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F9:59:35:E1:9D:B4:1A:22:36:B4:70:4A:D4:C8:D4:C5:4F:C1:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.4.0/22 Signature Algorithm: sha256WithRSAEncryption 25:3f:a0:3f:bf:71:28:ad:f9:87:01:e9:4e:79:88:10:e1:d0: 98:b9:94:2e:aa:bc:53:fe:15:9d:47:71:af:8f:5a:a8:3d:6b: 51:13:ca:40:5d:6e:dd:9a:7e:9e:9c:58:d9:89:46:5e:9b:5e: 4a:ea:ff:68:e2:1b:33:e3:1e:29:ff:20:b3:c5:84:4e:dd:78: 78:8c:10:c3:8c:c8:17:81:38:59:4b:20:2b:7e:85:07:ad:e3: 47:0a:38:b8:7a:4f:ae:45:e8:75:b3:96:a1:a1:38:44:c7:1c: e2:70:53:b0:4a:ec:b0:dc:9f:d9:86:61:bc:b1:69:7c:d8:c0: c2:98:b7:ca:1f:d5:b1:1d:0b:76:f2:f7:04:ee:93:79:ba:a3: b1:1a:a5:ee:12:91:be:2e:86:d3:ae:da:4d:26:e5:c5:33:b0: d6:1f:69:b3:96:08:35:92:30:91:8e:6d:53:5f:14:a1:8b:32: d1:3b:3d:6c:a4:3d:78:7a:e4:c2:ae:01:ce:f0:80:63:6e:01: 08:e4:e0:60:a3:81:ac:e3:22:b8:92:5b:8e:5e:24:9f:37:ff: a3:3c:21:e1:79:3b:c2:44:74:bd:82:55:8e:51:33:b0:4c:84: 51:b1:4b:09:5e:99:ea:b2:63:1e:01:d3:29:50:95:a1:7a:9c: 24:d4:83:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe/XTdjcv4JsG1IFuvuV+Kv9veQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMTIzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzI2M2Y2YWI1OTI2OTE5YzdlY2VmYzRlZWI0ZjRlYzli OGM0NmMyNjcxZWNlMWZiYjM4ZTNhNzk3OGFiODk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhzhn1pww+LWLyIxli0jpgKM8e+Oxs7vmSp8JbzgPl38wK OopgphZc6Z+o7TmDTI9Q75YdEV3x7Z6F2NBl/skInotVZ31ZFddFWHLatMrNgKyH PKdvB0KsNeZQ3KpF/zRk+RRMFr9Cpjk63CPFRVhszNXjwJosckFb7VVF3XvUP9Il RShNC4PMExM4P+8xfVAhSr9RJmukvNcPS9fF/84skXuNQTM0b/cN26yM1EbqNsV1 rQjRb24SB3t+eqMTHhkT6uEy7U9HV0K2hPtdedkr4LpySpzEiDnObnjLitpgB/Gy 0/NTal5Z6uhJaE94JIiJukXqmui0jp8xZWOLH8yrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkflZNeGdtBoiNrRwStTI1MVPwSIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWEzNzBiLWI3ZmYtNGQyOS04Y2M2LWI1NzI4NzkyM2EyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsgQwDQYJKoZIhvcNAQELBQADggEBACU/oD+/cSit+YcB6U55iBDh0Ji5 lC6qvFP+FZ1Hca+PWqg9a1ETykBdbt2afp6cWNmJRl6bXkrq/2jiGzPjHin/ILPF hE7deHiMEMOMyBeBOFlLICt+hQet40cKOLh6T65F6HWzlqGhOETHHOJwU7BK7LDc n9mGYbyxaXzYwMKYt8of1bEdC3by9wTuk3m6o7Eape4Skb4uhtOu2k0m5cUzsNYf abOWCDWSMJGObVNfFKGLMtE7PWykPXh65MKuAc7wgGNuAQjk4GCjgazjIriSW45e JJ83/6M8IeF5O8JEdL2CVY5RM7BMhFGxSwlemeqyYx4B0ylQlaF6nCTUg+I= -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:42 2025 by rpki-client