$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa File: 2753f989-5094-40f6-9952-e005b9c4f0d6.roa (raw, json) Hash identifier: nrvVqnq33Zkj9njnr1yUa7/mWvGK0/ISOn7wCk1MSdA= Subject key identifier: F4:40:7B:B0:F6:C8:F6:FC:AC:5E:3E:59:F7:D1:53:27:71:36:95:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6580C7831781A0F28F0D19CDD5F821E603AC93E2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa Signing time: Sat 12 Apr 2025 00:20:57 +0000 ROA not before: Sat 12 Apr 2025 00:20:57 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.192.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:80:c7:83:17:81:a0:f2:8f:0d:19:cd:d5:f8:21:e6:03:ac:93:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:20:57 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=bec19d90d32eae2eff3811962eccad8a88e1edeead673e9d5e22a5b180d2d883, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:64:ef:f2:af:b0:69:0d:00:c6:ec:bd:b9:2c: 82:79:d1:0b:f0:9c:cc:5f:39:b4:15:1a:ff:e9:ae: 74:25:c9:0e:ed:59:42:02:bf:89:52:ea:b5:c2:ca: 3a:b4:69:b2:a0:14:4f:38:05:41:51:5b:7f:da:d2: de:0f:fc:da:8e:a4:aa:2f:15:23:80:fe:a2:20:6e: 18:41:71:58:4c:de:da:a4:d7:b6:af:09:f7:f4:df: 02:b6:5e:b0:59:13:0b:d6:76:81:a4:ba:9f:93:40: c6:f2:56:11:df:3e:b5:db:91:b3:d8:18:63:26:ba: e0:08:e5:0e:cb:b4:ac:f5:46:7e:01:f6:61:a8:7b: b0:5a:ce:65:eb:10:ab:23:13:40:b5:e2:5f:2c:07: 4c:08:04:55:33:e2:63:fe:c4:05:48:fc:f0:54:01: db:27:88:35:56:94:83:9c:3d:c0:ca:60:51:18:d4: 54:04:70:33:30:95:38:1c:02:69:ab:13:04:bf:b3: 62:40:18:0f:b4:cd:e1:e4:e2:41:fb:cd:0a:fb:fe: 31:d6:48:fd:2e:32:d3:90:d3:72:17:23:ed:c4:9f: a2:37:bf:d8:2b:58:16:6f:c3:43:d0:ad:95:d9:51: f5:8b:c4:8c:b4:49:f9:a4:92:51:d7:dc:d8:bc:29: 0e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:40:7B:B0:F6:C8:F6:FC:AC:5E:3E:59:F7:D1:53:27:71:36:95:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/11 Signature Algorithm: sha256WithRSAEncryption 33:28:09:92:cb:09:50:24:74:4d:ca:5c:3d:44:3d:9d:4f:22: ca:b8:5d:dd:d2:8f:91:5d:ce:70:24:dc:25:0f:2e:61:64:ca: bb:d6:60:ed:18:8d:af:29:d3:71:5a:80:bb:b2:20:17:b4:f4: 7d:a0:9b:c2:d8:a2:d9:55:ef:8b:a5:98:f1:d7:38:93:67:19: f0:f2:59:01:27:66:78:8b:cb:f5:f1:8c:5e:ab:f3:23:38:3e: da:62:d4:fd:36:dc:f1:8c:81:d2:f2:6c:cd:b9:c5:70:5e:ca: 63:93:2a:85:b2:ab:b1:d4:c7:11:17:2d:e3:73:de:c9:47:41: fa:e3:9d:3e:0e:9c:d2:a6:c4:da:90:d4:fa:bb:07:17:ab:b1: e8:e0:79:6b:bb:98:2f:7e:65:6c:7b:b9:26:a5:d0:d2:e1:c8: f0:db:09:72:02:bc:24:37:57:4f:55:cb:ca:64:9d:bb:2e:ac: 0c:be:64:48:3b:10:6b:18:86:9c:dc:6f:e7:71:55:b0:72:04: 7b:cf:b0:e0:a3:46:c2:8c:b2:bf:49:ab:aa:fb:3c:20:18:dc: 46:49:4b:30:15:72:b0:17:ce:71:71:24:3f:85:aa:fa:93:29: 3e:0a:64:c7:60:e7:0e:90:c0:13:70:5f:ad:1e:fb:e0:67:50: 2c:bd:24:d4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZYDHgxeBoPKPDRnN1fgh5gOsk+IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAyMDU3WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWMxOWQ5MGQzMmVhZTJlZmYzODExOTYyZWNjYWQ4YTg4 ZTFlZGVlYWQ2NzNlOWQ1ZTIyYTViMTgwZDJkODgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaZO/yr7BpDQDG7L25LIJ50QvwnMxfObQVGv/prnQlyQ7t WUICv4lS6rXCyjq0abKgFE84BUFRW3/a0t4P/NqOpKovFSOA/qIgbhhBcVhM3tqk 17avCff03wK2XrBZEwvWdoGkup+TQMbyVhHfPrXbkbPYGGMmuuAI5Q7LtKz1Rn4B 9mGoe7BazmXrEKsjE0C14l8sB0wIBFUz4mP+xAVI/PBUAdsniDVWlIOcPcDKYFEY 1FQEcDMwlTgcAmmrEwS/s2JAGA+0zeHk4kH7zQr7/jHWSP0uMtOQ03IXI+3En6I3 v9grWBZvw0PQrZXZUfWLxIy0SfmkklHX3Ni8KQ6HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9EB7sPbI9vysXj5Z99FTJ3E2lccwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3NTNmOTg5LTUwOTQtNDBmNi05OTUyLWUwMDViOWM0ZjBkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUswDANBgkqhkiG9w0BAQsFAAOCAQEAMygJkssJUCR0TcpcPUQ9nU8iyrhd 3dKPkV3OcCTcJQ8uYWTKu9Zg7RiNrynTcVqAu7IgF7T0faCbwtii2VXvi6WY8dc4 k2cZ8PJZASdmeIvL9fGMXqvzIzg+2mLU/Tbc8YyB0vJszbnFcF7KY5MqhbKrsdTH ERct43PeyUdB+uOdPg6c0qbE2pDU+rsHF6ux6OB5a7uYL35lbHu5JqXQ0uHI8NsJ cgK8JDdXT1XLymSduy6sDL5kSDsQaxiGnNxv53FVsHIEe8+w4KNGwoyyv0mrqvs8 IBjcRklLMBVysBfOcXEkP4Wq+pMpPgpkx2DnDpDAE3BfrR774GdQLL0k1A== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:19 2025 by rpki-client