$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa File: 3118f1f1-38c4-427e-acff-1282cc7cb367.roa (raw, json) Hash identifier: XU4nE0MwUMNMbCCUwJjdl2hGSpFMTSFNAKIh2NcF7LM= Subject key identifier: 85:85:3B:38:87:03:26:13:C1:F8:8B:4A:9C:88:BE:08:52:6C:75:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FBDF8FF10EAC08E75D78B8C7233A0EBC3234DDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa Signing time: Fri 25 Apr 2025 15:01:25 +0000 ROA not before: Fri 25 Apr 2025 15:01:25 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:bd:f8:ff:10:ea:c0:8e:75:d7:8b:8c:72:33:a0:eb:c3:23:4d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:01:25 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5eb37880d2a9ba1eb0745032d8ff3a947fc9a446b566cb3f1c510055d9186e10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c9:8c:c9:b2:41:8d:97:a4:c7:af:6c:72:2a: 0d:05:27:af:07:d9:fa:f5:92:43:d4:ba:bb:ba:6d: e6:73:cb:57:93:9d:6c:ab:e9:ac:18:ec:5b:40:d6: d9:f1:32:64:71:dc:49:d7:a1:68:69:44:17:43:5d: 7c:14:ee:2f:ad:34:08:3e:56:57:4a:e7:36:6e:be: f3:49:c4:5b:90:cb:03:7c:22:32:71:10:bb:2d:a7: e3:db:7d:46:25:08:30:f5:98:21:5f:4e:e6:c3:76: 33:c3:ba:24:45:9e:a0:93:22:b1:0f:5d:58:3b:42: 66:85:98:e3:94:52:8a:34:1c:ca:c5:df:fb:72:ca: 9d:6d:d1:c5:1c:f2:d2:6d:96:92:c3:74:ba:07:b5: e5:77:eb:68:de:78:bc:db:4f:76:0d:26:e2:88:10: b0:a6:21:14:34:a5:99:8f:e1:a4:6e:05:4c:03:b7: 38:5a:23:cb:ab:57:80:e2:52:cf:03:25:ff:c2:c0: d3:9e:96:b9:85:7e:ed:95:54:1f:5b:3f:75:05:dd: 0c:ac:4f:d5:df:68:38:6e:cc:95:73:9d:af:26:ff: a8:2b:b4:91:f8:81:d9:41:02:0d:f3:e3:4b:14:b0: bc:da:7f:1b:26:d0:3d:53:8a:7c:4c:42:ee:88:07: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:85:3B:38:87:03:26:13:C1:F8:8B:4A:9C:88:BE:08:52:6C:75:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.168.0/21 Signature Algorithm: sha256WithRSAEncryption af:5d:81:ff:27:d9:35:fe:86:1d:f5:e7:42:33:e2:1d:92:2e: c2:67:74:2b:d1:76:d4:d2:22:34:82:fb:13:ea:15:5f:60:f3: 8d:c0:35:b1:06:09:92:45:69:4d:de:b3:29:fa:99:e9:7d:a8: e1:4b:94:f8:04:a3:3a:eb:25:66:82:2b:be:dd:da:c0:f9:10: c0:8c:37:e7:a2:e3:46:0d:f6:eb:51:47:32:67:1d:26:41:16: c9:2f:7f:01:d6:d0:a4:f6:f4:e1:ce:6c:bd:be:b2:73:e6:3f: 0d:4f:cd:18:6b:26:5e:44:11:86:c3:d4:93:b6:52:29:cb:22: b1:de:54:bc:8f:52:5a:c9:f4:0c:bd:bd:eb:1f:6d:b6:4f:b9: 31:90:1d:c7:81:02:55:26:e7:b5:d0:b8:7f:da:99:a8:05:8d: 24:a3:b8:41:fe:37:8d:db:38:fb:60:1c:d5:93:c4:31:ef:a6: 53:5a:f8:79:39:ac:a7:20:d3:93:2a:4f:0c:d0:09:a6:d2:11: 4d:f0:cf:48:d4:e0:91:5d:ce:84:77:4b:e4:0b:e4:31:41:7d: 55:b4:b6:af:e6:32:13:7a:7a:bc:e7:f7:eb:0a:17:ae:8a:3e: f2:f9:f9:ec:7d:df:fc:bd:8d:56:8c:12:93:d3:b2:da:99:ea: ce:b3:93:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL734/xDqwI5114uMcjOg68MjTdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMTI1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWIzNzg4MGQyYTliYTFlYjA3NDUwMzJkOGZmM2E5NDdm YzlhNDQ2YjU2NmNiM2YxYzUxMDA1NWQ5MTg2ZTEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4yYzJskGNl6THr2xyKg0FJ68H2fr1kkPUuru6beZzy1eT nWyr6awY7FtA1tnxMmRx3EnXoWhpRBdDXXwU7i+tNAg+VldK5zZuvvNJxFuQywN8 IjJxELstp+PbfUYlCDD1mCFfTubDdjPDuiRFnqCTIrEPXVg7QmaFmOOUUoo0HMrF 3/tyyp1t0cUc8tJtlpLDdLoHteV362jeeLzbT3YNJuKIELCmIRQ0pZmP4aRuBUwD tzhaI8urV4DiUs8DJf/CwNOelrmFfu2VVB9bP3UF3QysT9XfaDhuzJVzna8m/6gr tJH4gdlBAg3z40sUsLzafxsm0D1TinxMQu6IB7dlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhYU7OIcDJhPB+ItKnIi+CFJsdWEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMThmMWYxLTM4YzQtNDI3ZS1hY2ZmLTEyODJjYzdjYjM2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANLZagwDQYJKoZIhvcNAQELBQADggEBAK9dgf8n2TX+hh3150Iz4h2SLsJn dCvRdtTSIjSC+xPqFV9g843ANbEGCZJFaU3esyn6mel9qOFLlPgEozrrJWaCK77d 2sD5EMCMN+ei40YN9utRRzJnHSZBFskvfwHW0KT29OHObL2+snPmPw1PzRhrJl5E EYbD1JO2UinLIrHeVLyPUlrJ9Ay9vesfbbZPuTGQHceBAlUm57XQuH/amagFjSSj uEH+N43bOPtgHNWTxDHvplNa+Hk5rKcg05MqTwzQCabSEU3wz0jU4JFdzoR3S+QL 5DFBfVW0tq/mMhN6erzn9+sKF66KPvL5+ex93/y9jVaMEpPTstqZ6s6zk2I= -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:16 2025 by rpki-client