$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f53e86e-9190-41c5-ad32-08c02983e9bd.roa File: 2f53e86e-9190-41c5-ad32-08c02983e9bd.roa (raw, json) Hash identifier: IXYq21gPFThbRamcLd06aMgXcL0PFR3eZmyd80BRoww= Subject key identifier: B7:40:68:EA:40:36:2C:BB:FD:E1:FB:E6:5D:29:BE:4B:3E:FE:9B:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A0B5B1C4E6CA679706A2D2A3607C460CBFADB4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f53e86e-9190-41c5-ad32-08c02983e9bd.roa Signing time: Wed 23 Apr 2025 00:31:33 +0000 ROA not before: Wed 23 Apr 2025 00:31:33 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.184.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:0b:5b:1c:4e:6c:a6:79:70:6a:2d:2a:36:07:c4:60:cb:fa:db:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:31:33 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=9b6a2d9e83dbce50649d03e079a3e1ed4fc0d8b0bab69f6f8010d88d9ae0423e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:57:9c:02:cf:b5:d9:22:b3:fa:1d:a4:a8:68: a6:a6:34:78:6c:c7:a2:28:f4:38:50:3e:f9:29:33: 2e:2c:fd:02:63:4f:dd:03:70:5e:e9:f4:03:3a:f5: 9f:23:53:2a:e4:ea:6c:9f:f4:85:1a:99:69:39:45: f8:15:3b:ed:ec:70:a3:7e:15:fb:2c:1e:d2:35:90: ec:c7:cf:c0:66:3a:ef:a1:78:d6:37:bd:4f:27:b4: ff:ab:b5:d1:37:13:0b:50:4f:35:19:81:af:2a:21: 21:21:41:3c:53:6c:7b:fa:59:53:97:37:52:5d:6c: 19:bf:8b:be:46:72:ae:08:1c:a3:af:ce:d7:19:e7: d7:7f:f9:76:43:85:8e:29:77:aa:db:a8:c4:02:ca: 18:3f:b1:63:4f:c8:02:60:eb:04:43:c2:65:b7:ff: cb:07:20:e7:fe:25:73:b6:6b:f4:aa:c1:6e:18:73: d8:6a:34:1f:f3:9d:21:30:91:14:b4:a8:73:2c:23: 47:9d:d8:8f:ea:f8:1e:f3:d5:4a:e9:df:a1:d6:d3: f6:19:9c:02:a9:d0:03:1d:6b:0e:ed:44:42:f8:9d: ab:fe:ce:53:2e:e0:8a:35:f1:4b:fa:ff:dd:73:8e: 02:88:48:08:10:91:55:7e:cd:1d:4b:90:08:83:95: 5d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:40:68:EA:40:36:2C:BB:FD:E1:FB:E6:5D:29:BE:4B:3E:FE:9B:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f53e86e-9190-41c5-ad32-08c02983e9bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.184.0.0/13 Signature Algorithm: sha256WithRSAEncryption c1:5c:5a:fb:78:2f:d3:1e:dd:f8:a7:4b:88:1f:fc:72:5b:5e: f3:7c:7c:93:24:05:b3:62:51:9b:5c:e7:da:72:48:21:1c:22: c8:c3:9d:30:c3:72:c9:db:5f:fd:f1:68:60:41:d9:df:7e:94: 40:cc:95:42:f6:d5:aa:8b:a7:3b:ed:cd:84:a2:fd:55:30:be: 23:2a:48:30:70:0e:b9:e8:30:59:0b:f5:b6:20:c1:66:df:da: f4:f3:ca:7b:da:1b:70:31:e8:51:02:ba:8a:06:1b:50:63:be: 2b:a2:54:92:c1:41:77:a9:5f:d5:60:d0:17:36:15:83:b7:72: 99:7c:05:18:41:b6:da:47:ca:f6:74:f4:a4:4b:01:2b:d3:02: ff:51:f4:98:0e:75:74:12:33:f7:96:2c:8c:4a:76:9b:1d:52: fa:ed:8b:49:2d:11:45:ab:7b:35:b4:8a:80:13:65:92:77:83: 36:7d:16:fc:45:2b:40:61:b4:8a:4e:41:d3:c8:53:d8:b8:56: 5d:8c:ab:98:06:e7:fa:c5:a5:b2:47:5b:03:8a:d7:c8:a2:10: 91:58:2d:30:49:85:cb:0c:8f:3a:53:5e:d3:f2:e8:b8:65:e6: 1a:97:6f:d5:e4:f5:51:73:6a:c9:f9:1c:5b:88:31:1c:99:0a: b5:85:90:11 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUagtbHE5spnlwai0qNgfEYMv6208wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMTMzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjZhMmQ5ZTgzZGJjZTUwNjQ5ZDAzZTA3OWEzZTFlZDRm YzBkOGIwYmFiNjlmNmY4MDEwZDg4ZDlhZTA0MjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0V5wCz7XZIrP6HaSoaKamNHhsx6Io9DhQPvkpMy4s/QJj T90DcF7p9AM69Z8jUyrk6myf9IUamWk5RfgVO+3scKN+FfssHtI1kOzHz8BmOu+h eNY3vU8ntP+rtdE3EwtQTzUZga8qISEhQTxTbHv6WVOXN1JdbBm/i75Gcq4IHKOv ztcZ59d/+XZDhY4pd6rbqMQCyhg/sWNPyAJg6wRDwmW3/8sHIOf+JXO2a/SqwW4Y c9hqNB/znSEwkRS0qHMsI0ed2I/q+B7z1Urp36HW0/YZnAKp0AMdaw7tREL4nav+ zlMu4Io18Uv6/91zjgKISAgQkVV+zR1LkAiDlV0lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUt0Bo6kA2LLv94fvmXSm+Sz7+m/cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNTNlODZlLTkxOTAtNDFjNS1hZDMyLTA4YzAyOTgzZTliZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMNuDANBgkqhkiG9w0BAQsFAAOCAQEAwVxa+3gv0x7d+KdLiB/8clte83x8 kyQFs2JRm1zn2nJIIRwiyMOdMMNyydtf/fFoYEHZ336UQMyVQvbVqounO+3NhKL9 VTC+IypIMHAOuegwWQv1tiDBZt/a9PPKe9obcDHoUQK6igYbUGO+K6JUksFBd6lf 1WDQFzYVg7dymXwFGEG22kfK9nT0pEsBK9MC/1H0mA51dBIz95YsjEp2mx1S+u2L SS0RRat7NbSKgBNlkneDNn0W/EUrQGG0ik5B08hT2LhWXYyrmAbn+sWlskdbA4rX yKIQkVgtMEmFywyPOlNe0/LouGXmGpdv1eT1UXNqyfkcW4gxHJkKtYWQEQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:20:07 2025 by rpki-client