$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa File: 26191af3-5d36-4e52-a2b7-00dda51fdbff.roa (raw, json) Hash identifier: 24GWxXMEpj/BK4OQX5a3fzWKY2bD2NBqYHc5jnDCSIs= Subject key identifier: 66:EA:C8:1E:9C:72:FF:37:10:15:8D:ED:5C:73:38:42:45:3B:6C:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A8453F1392E0D74EFAD12722A9F175743E148C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa Signing time: Fri 04 Apr 2025 00:00:29 +0000 ROA not before: Fri 04 Apr 2025 00:00:29 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 6167 IP address blocks: 162.208.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:84:53:f1:39:2e:0d:74:ef:ad:12:72:2a:9f:17:57:43:e1:48:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:00:29 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=8d625a7a667948c51069c5055e6f673031d332ab21e3c5f64377ca42672e56e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:81:19:2b:66:94:b4:8d:24:c1:62:67:89:29: d7:06:0f:3c:ba:73:27:34:14:77:55:31:70:ae:0c: b0:d8:61:ea:93:a6:10:04:50:8d:f4:b4:d7:44:04: f6:a9:ca:99:f0:c9:16:98:35:29:14:97:2f:ac:c5: 2b:ba:9d:86:ff:21:45:44:66:06:3c:b6:f7:52:d6: 47:f9:26:38:75:f2:84:80:53:65:00:70:3c:90:bc: 33:49:54:ab:85:fa:fd:9e:6b:79:85:27:19:fb:c2: db:89:99:0c:28:12:88:5a:ce:a7:55:e7:7b:54:b0: d1:37:35:da:6c:f0:a3:31:7a:bc:9f:bd:e7:a0:fc: fc:67:0c:46:44:51:8c:68:97:e5:34:f2:43:31:4a: 4c:25:b9:06:5c:8b:ee:89:69:8e:a4:00:aa:9f:a2: 09:47:22:cc:48:be:fc:d9:2d:af:85:53:06:0d:e1: 35:fa:f4:38:89:65:5d:d3:d3:80:72:c3:10:5b:04: 0f:ff:e1:1e:4a:4b:9d:a8:23:0b:f3:c5:92:d5:3f: 82:9c:bf:6d:ed:8b:8a:5e:3d:b1:81:ee:de:38:b0: fa:5a:04:c9:9f:24:04:40:64:c3:2f:34:e4:4c:b2: c3:47:38:bf:ae:51:9d:b3:21:e8:53:96:8e:2a:e3: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EA:C8:1E:9C:72:FF:37:10:15:8D:ED:5C:73:38:42:45:3B:6C:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.122.0/24 Signature Algorithm: sha256WithRSAEncryption 84:5b:15:e2:4e:77:ae:8a:8b:d9:f6:91:c7:73:f1:00:bb:87: e6:71:32:08:82:c8:db:44:e8:6e:38:bc:b3:dd:a0:63:4d:a6: 5b:4a:3a:00:fe:6f:2f:30:31:b4:72:7e:56:c0:10:dc:7c:75: 69:36:74:69:8e:d7:bc:bc:90:b0:ef:c3:01:e3:41:e6:f1:cf: ba:c7:2c:a9:d5:00:32:d0:bb:dc:de:f9:eb:de:ae:4e:d3:1c: 53:b9:6f:4c:09:bf:99:8d:71:63:84:87:6d:bd:b6:82:ac:40: 14:57:a9:b7:09:0b:1d:8e:c4:7f:5e:e5:25:52:c4:27:0d:11: 4c:08:db:14:e0:09:72:55:ea:ca:99:e3:56:3a:c9:61:cd:8a: 09:de:13:16:3f:05:64:a8:6f:b1:83:09:0a:44:03:96:72:82: af:d7:b9:aa:7e:13:ee:e5:a9:56:81:88:8d:4c:20:fc:8d:ef: b1:0f:9d:01:ef:59:75:65:06:0d:5a:85:54:62:41:f6:3f:b1: ae:26:0d:76:8d:7e:eb:5a:4d:ed:1b:48:fe:b4:f4:fe:2b:24: 73:56:a9:71:d3:30:49:a7:02:b5:27:cc:2d:d0:b7:c4:2a:7b: fb:03:6f:d2:b8:f7:95:37:1d:c2:b7:91:eb:d4:80:1d:36:01: 1f:91:44:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCoRT8TkuDXTvrRJyKp8XV0PhSMIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMDI5WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDYyNWE3YTY2Nzk0OGM1MTA2OWM1MDU1ZTZmNjczMDMx ZDMzMmFiMjFlM2M1ZjY0Mzc3Y2E0MjY3MmU1NmUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0gRkrZpS0jSTBYmeJKdcGDzy6cyc0FHdVMXCuDLDYYeqT phAEUI30tNdEBPapypnwyRaYNSkUly+sxSu6nYb/IUVEZgY8tvdS1kf5Jjh18oSA U2UAcDyQvDNJVKuF+v2ea3mFJxn7wtuJmQwoEohazqdV53tUsNE3Ndps8KMxeryf veeg/PxnDEZEUYxol+U08kMxSkwluQZci+6JaY6kAKqfoglHIsxIvvzZLa+FUwYN 4TX69DiJZV3T04BywxBbBA//4R5KS52oIwvzxZLVP4Kcv23ti4pePbGB7t44sPpa BMmfJARAZMMvNORMssNHOL+uUZ2zIehTlo4q4+9fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZurIHpxy/zcQFY3tXHM4QkU7bD0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2MTkxYWYzLTVkMzYtNGU1Mi1hMmI3LTAwZGRhNTFmZGJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HowDQYJKoZIhvcNAQELBQADggEBAIRbFeJOd66Ki9n2kcdz8QC7h+Zx MgiCyNtE6G44vLPdoGNNpltKOgD+by8wMbRyflbAENx8dWk2dGmO17y8kLDvwwHj Qebxz7rHLKnVADLQu9ze+everk7THFO5b0wJv5mNcWOEh229toKsQBRXqbcJCx2O xH9e5SVSxCcNEUwI2xTgCXJV6sqZ41Y6yWHNigneExY/BWSob7GDCQpEA5Zygq/X uap+E+7lqVaBiI1MIPyN77EPnQHvWXVlBg1ahVRiQfY/sa4mDXaNfutaTe0bSP60 9P4rJHNWqXHTMEmnArUnzC3Qt8Qqe/sDb9K495U3HcK3kevUgB02AR+RROA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:34:52 2025 by rpki-client