$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/329407c6-ade2-4e81-8e88-4118393e7f6a.roa File: 329407c6-ade2-4e81-8e88-4118393e7f6a.roa (raw, json) Hash identifier: Zn13+SCzDl9LJseOHyn7M9oVPF0+J8mkND2OF7F3qbI= Subject key identifier: 53:2B:93:88:64:A9:23:43:38:8C:6D:CF:AF:75:72:BC:B6:E9:F0:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F267186FF981FE890D2316E91400BC47570D9C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/329407c6-ade2-4e81-8e88-4118393e7f6a.roa Signing time: Fri 18 Apr 2025 00:31:11 +0000 ROA not before: Fri 18 Apr 2025 00:31:11 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.109.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:26:71:86:ff:98:1f:e8:90:d2:31:6e:91:40:0b:c4:75:70:d9:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:31:11 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=788a1d108f0be4c0ada7d4c6e67ba13a774b924966aa23b6cb3d26c1706d6479, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f9:cf:1c:da:e7:f9:8d:dc:00:e1:c3:6c:c7: eb:4b:d2:05:21:8a:3d:09:7c:1b:d8:2c:53:ac:69: 77:d6:46:21:10:a1:49:0c:c2:98:be:0c:e8:78:b9: 2b:e8:64:1a:7e:94:72:7f:45:c3:2c:8d:f5:23:9f: fe:e4:d0:ca:6b:e4:19:c0:06:5b:40:77:6c:85:93: c3:14:5d:e1:d6:05:32:5e:b5:20:c4:40:f8:77:6d: b2:1f:84:54:76:8a:fe:20:13:7f:59:01:30:21:48: be:69:de:ca:51:fb:76:f2:bd:d8:ba:4f:e8:d6:ba: e0:f6:d9:01:75:88:e3:eb:68:a7:e2:21:fc:01:32: 75:ad:b6:4e:a8:34:b9:4d:35:90:8a:d0:e7:2c:36: c7:6a:af:e5:0c:63:5c:bc:e9:53:01:3c:fe:0e:ea: 07:5b:d8:c8:5a:98:24:29:51:bf:ea:82:9e:0a:4e: e6:96:33:f5:bc:01:3b:03:a7:8d:be:6d:a0:fb:78: 4e:ad:45:41:ec:ac:7c:c6:94:ec:39:ef:9b:8f:de: 9a:4b:16:99:47:f7:e7:47:35:28:82:05:03:91:d2: d5:83:b2:f6:ff:3b:fd:af:fb:39:3e:69:62:33:7f: 28:f8:7a:0b:40:3d:14:6e:f1:78:dc:93:fd:0f:f5: dd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2B:93:88:64:A9:23:43:38:8C:6D:CF:AF:75:72:BC:B6:E9:F0:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/329407c6-ade2-4e81-8e88-4118393e7f6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.109.64.0/19 Signature Algorithm: sha256WithRSAEncryption 74:b3:ff:a2:65:3c:da:f2:56:60:0a:ab:49:ad:6d:99:72:67: 85:64:84:59:be:99:91:8a:a6:aa:fb:12:b2:5d:6d:f0:99:82: 21:d8:99:58:3b:5e:3b:8c:ac:ef:ec:1d:a1:94:59:c5:8d:f8: 42:3a:a6:f9:5b:91:ff:e2:ac:ce:7c:7c:65:78:dc:2b:b3:c9: 0b:10:95:f9:d2:62:96:d2:4f:da:ab:eb:62:b0:cc:f2:3c:6e: be:0a:11:ab:3b:10:fa:90:62:c9:b9:02:95:57:e3:ca:52:ce: d1:19:0e:a3:25:5b:17:93:f6:6a:48:e4:f4:16:7c:72:02:fe: 04:ab:9e:90:02:ef:97:74:e6:a0:f0:a8:9f:51:33:6a:4d:ea: 08:f2:ee:34:42:6d:60:b8:53:01:6d:65:1d:21:18:64:15:33: 40:6b:a6:52:a8:73:76:2d:56:1a:3a:9c:93:fa:7b:1a:df:a2: 31:22:b8:20:eb:08:a3:89:92:7d:32:05:05:28:24:05:f1:9e: 8d:43:00:cc:bc:fe:6e:4e:76:30:ea:9e:b6:3e:13:4d:37:ba: 07:ce:20:53:27:30:e8:dd:3b:2f:09:c7:bc:d3:e1:7e:9c:c2: dc:c1:a2:3a:63:0d:f0:69:54:8c:ab:02:5c:3f:11:67:83:5b: 9b:0b:03:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbyZxhv+YH+iQ0jFukUALxHVw2cUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAzMTExWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODhhMWQxMDhmMGJlNGMwYWRhN2Q0YzZlNjdiYTEzYTc3 NGI5MjQ5NjZhYTIzYjZjYjNkMjZjMTcwNmQ2NDc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh+c8c2uf5jdwA4cNsx+tL0gUhij0JfBvYLFOsaXfWRiEQ oUkMwpi+DOh4uSvoZBp+lHJ/RcMsjfUjn/7k0Mpr5BnABltAd2yFk8MUXeHWBTJe tSDEQPh3bbIfhFR2iv4gE39ZATAhSL5p3spR+3byvdi6T+jWuuD22QF1iOPraKfi IfwBMnWttk6oNLlNNZCK0OcsNsdqr+UMY1y86VMBPP4O6gdb2MhamCQpUb/qgp4K TuaWM/W8ATsDp42+baD7eE6tRUHsrHzGlOw575uP3ppLFplH9+dHNSiCBQOR0tWD svb/O/2v+zk+aWIzfyj4egtAPRRu8Xjck/0P9d0dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUyuTiGSpI0M4jG3Pr3VyvLbp8LowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyOTQwN2M2LWFkZTItNGU4MS04ZTg4LTQxMTgzOTNlN2Y2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRbUAwDQYJKoZIhvcNAQELBQADggEBAHSz/6JlPNryVmAKq0mtbZlyZ4Vk hFm+mZGKpqr7ErJdbfCZgiHYmVg7XjuMrO/sHaGUWcWN+EI6pvlbkf/irM58fGV4 3CuzyQsQlfnSYpbST9qr62KwzPI8br4KEas7EPqQYsm5ApVX48pSztEZDqMlWxeT 9mpI5PQWfHIC/gSrnpAC75d05qDwqJ9RM2pN6gjy7jRCbWC4UwFtZR0hGGQVM0Br plKoc3YtVho6nJP6exrfojEiuCDrCKOJkn0yBQUoJAXxno1DAMy8/m5OdjDqnrY+ E003ugfOIFMnMOjdOy8Jx7zT4X6cwtzBojpjDfBpVIyrAlw/EWeDW5sLA+Y= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:48 2025 by rpki-client