$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f42e0ac-64a6-460a-a70e-e0253cec676c.roa File: 2f42e0ac-64a6-460a-a70e-e0253cec676c.roa (raw, json) Hash identifier: eQgJFiTdg+qxmPONNuMd28SUCBMf1eYBuUDYL5CRjCc= Subject key identifier: 60:85:CA:2C:0A:06:EB:74:A7:37:A4:EE:D8:28:83:89:71:B1:BF:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A7DAAE97A554B1B24176FA22BCC292A222BF532 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f42e0ac-64a6-460a-a70e-e0253cec676c.roa Signing time: Wed 23 Apr 2025 00:40:16 +0000 ROA not before: Wed 23 Apr 2025 00:40:16 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.193.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:7d:aa:e9:7a:55:4b:1b:24:17:6f:a2:2b:cc:29:2a:22:2b:f5:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:40:16 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=5851e9af401e365be1cf8e65cce2e62955609c738a0d58d01220bd721f6d7f8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:74:05:36:75:8e:ba:a8:67:67:5c:8f:f0:67: 35:d1:83:48:29:8a:fe:fd:ce:ad:d4:8f:d1:89:ba: cb:0a:45:05:73:93:c3:60:f3:92:23:d5:12:03:d8: 9c:11:46:38:8a:8e:6e:fc:eb:b4:69:09:2e:a4:03: e7:75:85:ea:b0:17:11:37:eb:23:f1:3b:80:cf:c9: 34:03:ea:53:4f:87:c6:ba:ee:de:ce:b4:a9:66:cb: b5:06:07:e2:eb:f8:d2:4c:44:e6:e6:c6:e1:9f:d6: 32:1d:4a:34:02:10:9a:05:9a:df:7a:ba:09:f2:54: 30:1f:37:7c:51:10:16:98:a3:cc:f4:71:42:93:5e: 50:d0:f3:1f:e6:92:8f:22:64:e2:c2:9d:53:b7:04: 26:d0:0f:ce:6c:9a:36:2c:d1:6d:f3:ed:be:f8:43: 8e:67:c1:67:a1:7a:73:4f:b1:8a:bb:6e:35:2d:f4: e3:ed:a2:0f:1d:04:47:8c:91:25:c6:1d:bd:b3:f0: e3:28:ce:07:af:1d:4e:b2:2c:40:ea:ff:cb:8c:d9: eb:f8:39:10:bb:84:ac:c2:ce:7d:a4:88:69:8f:cf: ae:4a:de:57:78:3e:9d:eb:8a:fe:40:03:79:56:c9: f1:2b:3b:54:75:2a:53:07:39:ee:23:2b:dc:66:fa: 2a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:85:CA:2C:0A:06:EB:74:A7:37:A4:EE:D8:28:83:89:71:B1:BF:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f42e0ac-64a6-460a-a70e-e0253cec676c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.32.0/19 Signature Algorithm: sha256WithRSAEncryption 7d:94:bd:be:2c:7c:13:88:45:0c:7e:06:f1:63:40:b6:52:2e: 35:e3:d1:93:6f:de:bf:4a:d4:14:35:0e:6f:d6:7c:57:1d:05: a7:6a:3e:e6:b5:05:01:28:91:15:74:a4:73:d5:c0:9a:64:05: 3b:8a:4a:72:86:f2:39:99:37:d6:e5:88:2e:52:42:2a:47:7e: df:24:88:f2:45:cd:8d:ee:24:15:2c:50:74:e3:04:00:98:fc: 5f:6a:e4:cc:9e:df:83:23:a1:f3:0e:37:7b:86:0f:eb:bf:21: 30:7a:4d:22:8c:47:b8:48:ec:bd:f6:e6:ea:75:49:ad:29:2c: 91:5c:0d:9c:9b:37:00:16:ef:45:5f:84:1e:c0:d9:94:0e:fc: a9:3c:fc:88:bb:7e:f8:ce:9d:cd:f1:51:61:17:5b:6f:60:d9: cc:1d:53:9f:ae:5f:01:44:6f:af:0a:13:0c:25:3d:65:69:f2: d6:49:18:72:eb:c8:3a:f3:49:62:4f:69:f1:fa:cf:7c:58:d8: 49:f5:67:0b:fb:86:ac:cb:2c:fa:fb:dc:fd:fe:f8:d6:1e:97: 33:3c:09:ba:2d:74:56:99:00:6e:53:15:12:0d:a3:e0:08:81: bb:8c:a1:f3:25:83:63:8f:6e:f4:b2:b1:e8:6b:64:20:e7:59: 7e:08:c7:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUen2q6XpVSxskF2+iK8wpKiIr9TIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA0MDE2WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODUxZTlhZjQwMWUzNjViZTFjZjhlNjVjY2UyZTYyOTU1 NjA5YzczOGEwZDU4ZDAxMjIwYmQ3MjFmNmQ3ZjhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXdAU2dY66qGdnXI/wZzXRg0gpiv79zq3Uj9GJussKRQVz k8Ng85Ij1RID2JwRRjiKjm7867RpCS6kA+d1heqwFxE36yPxO4DPyTQD6lNPh8a6 7t7OtKlmy7UGB+Lr+NJMRObmxuGf1jIdSjQCEJoFmt96ugnyVDAfN3xREBaYo8z0 cUKTXlDQ8x/mko8iZOLCnVO3BCbQD85smjYs0W3z7b74Q45nwWehenNPsYq7bjUt 9OPtog8dBEeMkSXGHb2z8OMozgevHU6yLEDq/8uM2ev4ORC7hKzCzn2kiGmPz65K 3ld4Pp3riv5AA3lWyfErO1R1KlMHOe4jK9xm+ipZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYIXKLAoG63SnN6Tu2CiDiXGxvwIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNDJlMGFjLTY0YTYtNDYwYS1hNzBlLWUwMjUzY2VjNjc2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhwSAwDQYJKoZIhvcNAQELBQADggEBAH2Uvb4sfBOIRQx+BvFjQLZSLjXj 0ZNv3r9K1BQ1Dm/WfFcdBadqPua1BQEokRV0pHPVwJpkBTuKSnKG8jmZN9bliC5S QipHft8kiPJFzY3uJBUsUHTjBACY/F9q5Mye34MjofMON3uGD+u/ITB6TSKMR7hI 7L325up1Sa0pLJFcDZybNwAW70VfhB7A2ZQO/Kk8/Ii7fvjOnc3xUWEXW29g2cwd U5+uXwFEb68KEwwlPWVp8tZJGHLryDrzSWJPafH6z3xY2En1Zwv7hqzLLPr73P3+ +NYelzM8CbotdFaZAG5TFRINo+AIgbuMofMlg2OPbvSysehrZCDnWX4IxwA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:03 2025 by rpki-client