$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa File: 37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa (raw, json) Hash identifier: XaED97GUYrY1qlsGrCYPvbl47yOFRTWgT7zz3uAE7Rw= Subject key identifier: 09:F8:FA:83:58:66:8D:79:4E:6A:79:49:DE:D6:9F:38:6D:36:15:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B4F7F508D437EA3A69B0020235C8029820BE748 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa Signing time: Mon 07 Apr 2025 15:00:13 +0000 ROA not before: Mon 07 Apr 2025 15:00:13 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.200.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4f:7f:50:8d:43:7e:a3:a6:9b:00:20:23:5c:80:29:82:0b:e7:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:00:13 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=4fdb568bb25c529d1a31e6e14846b6841b769244cf7e61bd96f87c045d871fb2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a8:45:df:9c:91:d5:af:e3:03:92:0c:33:a6: ec:13:c6:c9:62:f1:36:12:9f:57:fb:dd:6e:74:c9: a2:63:43:9a:e1:53:20:da:cf:6c:28:ff:d9:4c:70: 0c:91:38:ee:ad:c2:e7:a0:79:9b:90:19:a7:b4:f8: 1e:6d:ba:42:3d:ad:87:ab:e1:05:f7:37:03:4e:77: 03:6e:fc:e8:ae:40:67:c9:67:97:84:dc:0a:e2:55: f9:5c:80:83:a1:7c:8e:27:6c:0f:a8:5a:09:bc:67: 8a:23:38:b3:62:1c:3b:1e:2c:3d:91:14:8e:88:0f: 76:76:eb:5a:a0:4c:c6:a7:f9:aa:c7:dd:f5:53:6e: 6e:c2:e2:c6:d2:94:77:66:37:23:28:c6:a1:d9:5a: 21:ee:98:91:fa:04:61:e5:57:27:cf:07:1a:80:b0: 54:f5:7d:31:f8:28:22:18:02:11:67:8d:15:9a:3e: b2:83:69:3d:4c:a6:2f:0c:c2:3c:e4:bc:0b:58:90: e7:0c:70:e2:e3:2d:99:20:5e:34:f8:0d:a1:57:5c: 2f:ce:06:11:a3:5b:3d:c6:94:d6:b3:79:54:04:22: 72:a5:e8:c7:d9:1d:37:3a:0e:f4:62:38:fb:ae:bc: ff:df:e2:34:22:89:7e:c2:df:db:30:97:33:89:bc: 46:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F8:FA:83:58:66:8D:79:4E:6A:79:49:DE:D6:9F:38:6D:36:15:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37be519d-0e3d-49b8-b4fa-cb00f7a29ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.200.224.0/19 Signature Algorithm: sha256WithRSAEncryption 47:5b:b4:d9:5e:60:b4:f3:9b:b3:d6:12:57:46:59:aa:df:c7: cb:bd:7e:f4:d5:5b:41:b3:30:3c:32:73:2b:5c:27:e4:67:25: 33:54:04:cc:a6:3e:99:31:17:9e:8a:ec:1b:c2:8d:b6:05:79: 47:0f:6c:58:5c:4c:17:3a:8e:5d:14:b5:3c:eb:94:20:fa:19: 07:f3:ee:f9:e7:f5:82:fa:c4:99:0c:b1:46:9d:52:31:38:59: 1e:6a:82:bd:f2:68:43:06:6a:7e:a2:49:49:06:ec:e9:de:6e: 33:83:40:67:8c:c4:ca:29:e1:09:8f:10:b1:fd:fb:6b:06:d5: 2c:a3:3c:bf:de:2d:72:d0:54:89:6b:5e:e6:d7:3f:4a:67:79: 47:6f:f4:9a:d1:39:20:2a:b6:db:7d:19:98:06:0f:34:09:bc: 5e:3d:d5:27:d1:5c:11:53:d8:9a:dc:56:a2:e8:b4:9d:93:5f: fe:0a:25:6c:21:42:f5:9f:79:d8:ee:f7:d6:95:e1:b0:b4:0e: 81:13:03:14:d2:d3:c6:14:c4:a5:8a:3c:58:c4:91:f7:07:6f: 87:87:d1:9a:56:9b:e7:8b:ef:2e:af:8c:fe:c3:90:a2:44:a0: dd:58:a5:a5:fe:d9:ce:7c:bf:94:f3:9a:89:27:c0:a1:7a:c0: a6:a1:94:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa09/UI1DfqOmmwAgI1yAKYIL50gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMDEzWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmRiNTY4YmIyNWM1MjlkMWEzMWU2ZTE0ODQ2YjY4NDFi NzY5MjQ0Y2Y3ZTYxYmQ5NmY4N2MwNDVkODcxZmIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLqEXfnJHVr+MDkgwzpuwTxsli8TYSn1f73W50yaJjQ5rh UyDaz2wo/9lMcAyROO6twuegeZuQGae0+B5tukI9rYer4QX3NwNOdwNu/OiuQGfJ Z5eE3AriVflcgIOhfI4nbA+oWgm8Z4ojOLNiHDseLD2RFI6ID3Z261qgTMan+arH 3fVTbm7C4sbSlHdmNyMoxqHZWiHumJH6BGHlVyfPBxqAsFT1fTH4KCIYAhFnjRWa PrKDaT1Mpi8MwjzkvAtYkOcMcOLjLZkgXjT4DaFXXC/OBhGjWz3GlNazeVQEInKl 6MfZHTc6DvRiOPuuvP/f4jQiiX7C39swlzOJvEarAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCfj6g1hmjXlOanlJ3tafOG02FV4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3YmU1MTlkLTBlM2QtNDliOC1iNGZhLWNiMDBmN2EyOWFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVoyOAwDQYJKoZIhvcNAQELBQADggEBAEdbtNleYLTzm7PWEldGWarfx8u9 fvTVW0GzMDwycytcJ+RnJTNUBMymPpkxF56K7BvCjbYFeUcPbFhcTBc6jl0UtTzr lCD6GQfz7vnn9YL6xJkMsUadUjE4WR5qgr3yaEMGan6iSUkG7OnebjODQGeMxMop 4QmPELH9+2sG1SyjPL/eLXLQVIlrXubXP0pneUdv9JrROSAqttt9GZgGDzQJvF49 1SfRXBFT2JrcVqLotJ2TX/4KJWwhQvWfedju99aV4bC0DoETAxTS08YUxKWKPFjE kfcHb4eH0ZpWm+eL7y6vjP7DkKJEoN1YpaX+2c58v5TzmoknwKF6wKahlKQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:55 2025 by rpki-client