$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b7d941-1ac7-43d4-b920-75a6c88d6532.roa File: 22b7d941-1ac7-43d4-b920-75a6c88d6532.roa (raw, json) Hash identifier: 3QRaDz7GCmc3oJYpgh2QTzpmdSFefsEjsN1GzLyHVng= Subject key identifier: AD:3E:A8:80:82:DC:15:71:D9:83:CC:1B:FA:C8:F1:0D:DB:46:4F:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BA9115AA53F6949550824CA227D7C387A31664C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b7d941-1ac7-43d4-b920-75a6c88d6532.roa Signing time: Fri 18 Apr 2025 19:07:12 +0000 ROA not before: Fri 18 Apr 2025 19:07:12 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a9:11:5a:a5:3f:69:49:55:08:24:ca:22:7d:7c:38:7a:31:66:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 19:07:12 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=1d73790826f84bd5e96e03c724edb8cd345a05bbcf6d162541e00aa7a85b80f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5f:5a:ec:84:d0:62:89:0e:ba:96:24:be:55: 02:58:f4:9c:9c:59:c9:c7:19:1e:37:28:3c:b9:05: d0:2c:c9:c6:81:ed:1e:14:cd:86:3b:c4:f4:d7:9a: d3:27:db:40:d3:99:d0:cb:c9:46:91:24:6f:a8:66: a6:77:1f:5c:fe:90:e3:f1:78:11:1a:63:60:aa:7b: b8:84:4e:0f:b0:0b:28:f3:17:a0:a2:16:38:ff:27: a4:4c:02:d6:2b:6a:36:7b:d6:2a:17:1a:1d:ee:37: 8a:b4:57:10:f9:2f:82:15:1c:a6:07:5b:c7:11:63: fa:ad:09:4e:a5:eb:f7:1a:a3:5f:81:b0:ba:64:ad: 02:d2:31:5b:19:51:33:c3:20:33:10:7e:cd:90:ef: ca:f6:eb:f1:f5:25:aa:e9:cd:bc:eb:72:42:b3:a9: 78:de:7e:93:06:10:d3:ee:c5:4a:20:b4:c8:7f:48: 32:c5:1f:76:6d:5a:9e:32:47:eb:c0:d1:91:1f:3e: ac:c3:83:34:62:c3:6e:a1:ea:f1:e9:f6:1d:97:6b: a0:9f:81:a6:b0:e0:de:c8:d5:2c:c3:f1:6d:89:89: 40:18:e2:1c:7e:90:1c:b0:89:a7:87:35:11:58:e2: f0:e8:f1:91:3c:1d:ec:c9:38:fd:b0:fd:6b:3e:84: ec:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3E:A8:80:82:DC:15:71:D9:83:CC:1B:FA:C8:F1:0D:DB:46:4F:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b7d941-1ac7-43d4-b920-75a6c88d6532.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption a8:31:06:93:7b:a7:8d:4e:5c:1f:bd:5a:47:5b:53:00:ca:e1: 13:58:19:f7:d4:44:17:3f:d9:4c:7f:8a:3b:fe:87:91:34:cf: 88:11:06:9f:ee:dc:8a:62:33:d8:d3:fd:bd:55:fa:62:ea:36: e9:fa:eb:54:a9:d1:69:71:f8:58:98:a0:9d:93:78:80:86:48: a5:78:0b:99:eb:5f:eb:3d:ad:15:31:97:97:fa:72:94:73:a1: 65:68:16:11:07:8d:89:03:6b:83:d7:17:58:3f:69:86:49:1f: 64:65:70:15:2c:20:d8:bd:dc:d3:81:e3:04:08:5e:f3:24:a4: 4d:6c:15:d6:a8:2b:e3:e5:04:bc:4c:bf:e9:05:1a:53:7b:f7: 17:3d:19:88:e7:aa:76:28:3f:29:94:3a:75:1a:c5:0d:05:b5: d7:94:fb:5a:4e:b0:f8:74:07:7a:cb:2e:3a:20:c1:01:a0:47: 83:e0:4e:50:81:51:eb:db:4e:13:cb:d5:87:bc:7e:ad:48:e6: 41:99:3b:21:bc:99:83:55:32:be:ba:02:80:05:7c:cf:37:e9: c6:fb:2e:75:23:ab:a9:f6:d8:3e:6c:d1:89:e0:f1:45:79:57: 0a:17:6e:ca:6a:a9:8b:43:b3:a8:d5:ee:6f:38:7c:1a:2a:90: 51:88:62:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa6kRWqU/aUlVCCTKIn18OHoxZkwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MTkwNzEyWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDczNzkwODI2Zjg0YmQ1ZTk2ZTAzYzcyNGVkYjhjZDM0 NWEwNWJiY2Y2ZDE2MjU0MWUwMGFhN2E4NWI4MGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOX1rshNBiiQ66liS+VQJY9JycWcnHGR43KDy5BdAsycaB 7R4UzYY7xPTXmtMn20DTmdDLyUaRJG+oZqZ3H1z+kOPxeBEaY2Cqe7iETg+wCyjz F6CiFjj/J6RMAtYrajZ71ioXGh3uN4q0VxD5L4IVHKYHW8cRY/qtCU6l6/cao1+B sLpkrQLSMVsZUTPDIDMQfs2Q78r26/H1JarpzbzrckKzqXjefpMGENPuxUogtMh/ SDLFH3ZtWp4yR+vA0ZEfPqzDgzRiw26h6vHp9h2Xa6Cfgaaw4N7I1SzD8W2JiUAY 4hx+kBywiaeHNRFY4vDo8ZE8HezJOP2w/Ws+hOyLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrT6ogILcFXHZg8wb+sjxDdtGT7YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyYjdkOTQxLTFhYzctNDNkNC1iOTIwLTc1YTZjODhkNjUzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAKgxBpN7p41OXB+9WkdbUwDK4RNY GffURBc/2Ux/ijv+h5E0z4gRBp/u3IpiM9jT/b1V+mLqNun661Sp0Wlx+FiYoJ2T eICGSKV4C5nrX+s9rRUxl5f6cpRzoWVoFhEHjYkDa4PXF1g/aYZJH2RlcBUsINi9 3NOB4wQIXvMkpE1sFdaoK+PlBLxMv+kFGlN79xc9GYjnqnYoPymUOnUaxQ0FtdeU +1pOsPh0B3rLLjogwQGgR4PgTlCBUevbThPL1Ye8fq1I5kGZOyG8mYNVMr66AoAF fM836cb7LnUjq6n22D5s0Yng8UV5VwoXbspqqYtDs6jV7m84fBoqkFGIYhA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:35 2025 by rpki-client