$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa File: 3803ed73-f0b7-4d1e-a251-bcf48df08162.roa (raw, json) Hash identifier: nfdwlQ6ywVh5ur+s1lFC7Wq3YffdSTGxd9g3avGiNRg= Subject key identifier: 48:3F:30:40:24:C6:AC:93:1C:23:30:27:67:C9:F7:23:EC:AE:89:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1000FD91EA940E3E9558A80107198F71B446C3CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa Signing time: Wed 23 Apr 2025 00:20:55 +0000 ROA not before: Wed 23 Apr 2025 00:20:55 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:00:fd:91:ea:94:0e:3e:95:58:a8:01:07:19:8f:71:b4:46:c3:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:20:55 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=e52ebb7383cc83695f6c3087e47a21e5f16c0b8c55881e8bd30250c3ce78a9b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f8:b7:5c:6f:c4:ae:02:2b:1d:6b:56:e1:78: 33:a8:f3:ea:e7:d7:22:36:94:88:c1:c5:65:f1:8e: 0f:84:61:40:36:7c:aa:eb:9a:a1:f8:c9:9e:0e:88: 29:f7:20:8a:be:0e:47:21:b6:a6:1f:4c:e8:35:08: 93:84:cd:73:4e:22:45:03:a2:da:79:eb:17:6f:83: 86:dc:7d:18:83:39:98:73:fd:76:de:c6:8e:d1:ed: 16:c0:41:72:8b:37:2a:a3:6e:2c:51:fe:7d:04:dd: be:48:41:84:64:d2:f6:3d:fd:57:e7:b0:4b:9b:b1: bc:35:bb:48:a7:e3:56:68:d8:a8:97:72:70:a7:0d: 91:68:43:c2:e8:33:cd:26:59:c2:96:4d:06:7d:2a: ef:7c:7e:5f:a6:b8:40:fd:16:85:f8:4d:70:61:24: 70:7f:b6:76:49:5d:d6:5f:15:96:dc:34:34:a6:c6: c5:4e:29:d8:63:40:57:d4:17:64:db:23:aa:fe:0c: b7:42:d2:cc:26:1a:3d:7b:46:b8:b5:3d:92:08:1b: 16:08:6c:38:98:2b:8c:cd:02:54:b1:b0:13:33:67: c6:f9:7e:69:ba:bf:09:f9:44:ff:29:b5:06:c9:5c: 27:a1:19:20:a1:cc:92:ad:e9:42:9b:f9:84:07:31: 0f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3F:30:40:24:C6:AC:93:1C:23:30:27:67:C9:F7:23:EC:AE:89:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.192.0/18 Signature Algorithm: sha256WithRSAEncryption 6a:f5:ff:63:35:42:c1:3a:7f:fe:57:aa:16:59:fc:e0:de:cd: 1b:8e:a8:20:78:3c:5c:f6:9e:fc:3d:1d:ca:ab:08:cf:de:af: a9:3e:8f:2c:96:0c:88:42:99:66:24:ab:66:32:f7:e9:94:9a: d2:e3:66:6c:f6:fb:8e:96:8d:67:1e:22:8e:d3:6b:c9:9a:91: bc:03:c7:88:79:88:72:55:c4:fd:6e:63:ef:60:8b:c4:11:6d: be:2f:0f:fa:2f:46:ec:5d:d4:93:33:4e:e2:89:cd:55:95:60: 02:4e:f0:63:90:70:02:fe:98:5f:ed:9c:29:84:b8:f6:51:c9: cb:55:a9:3e:51:76:a0:f1:20:9f:ff:2a:d4:45:36:4b:9c:80: 2f:45:e2:4d:f6:05:71:97:81:8c:4e:52:99:0c:91:66:fe:7f: 8c:34:7a:c8:33:2e:d1:ba:2f:6d:96:87:30:a9:4f:55:f6:27: 8b:e6:88:0e:7c:ce:fe:5a:a8:07:a0:94:f6:df:15:b0:c8:fa: 01:73:46:cf:f8:1d:f2:ae:84:59:81:9f:38:ec:76:8c:25:f2: ae:0b:75:1c:e2:e2:0a:8c:f4:7f:cc:c9:ce:78:4b:45:3f:a9: 35:b3:d4:17:c4:8c:d0:df:ee:28:1f:d0:38:8b:67:21:01:ec: 09:4d:ce:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEAD9keqUDj6VWKgBBxmPcbRGw8swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAyMDU1WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTJlYmI3MzgzY2M4MzY5NWY2YzMwODdlNDdhMjFlNWYx NmMwYjhjNTU4ODFlOGJkMzAyNTBjM2NlNzhhOWIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH+Ldcb8SuAisda1bheDOo8+rn1yI2lIjBxWXxjg+EYUA2 fKrrmqH4yZ4OiCn3IIq+DkchtqYfTOg1CJOEzXNOIkUDotp56xdvg4bcfRiDOZhz /Xbexo7R7RbAQXKLNyqjbixR/n0E3b5IQYRk0vY9/VfnsEubsbw1u0in41Zo2KiX cnCnDZFoQ8LoM80mWcKWTQZ9Ku98fl+muED9FoX4TXBhJHB/tnZJXdZfFZbcNDSm xsVOKdhjQFfUF2TbI6r+DLdC0swmGj17Rri1PZIIGxYIbDiYK4zNAlSxsBMzZ8b5 fmm6vwn5RP8ptQbJXCehGSChzJKt6UKb+YQHMQ/LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSD8wQCTGrJMcIzAnZ8n3I+yuiZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MDNlZDczLWYwYjctNGQxZS1hMjUxLWJjZjQ4ZGYwODE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFsAwDQYJKoZIhvcNAQELBQADggEBAGr1/2M1QsE6f/5XqhZZ/ODezRuO qCB4PFz2nvw9HcqrCM/er6k+jyyWDIhCmWYkq2Yy9+mUmtLjZmz2+46WjWceIo7T a8makbwDx4h5iHJVxP1uY+9gi8QRbb4vD/ovRuxd1JMzTuKJzVWVYAJO8GOQcAL+ mF/tnCmEuPZRyctVqT5RdqDxIJ//KtRFNkucgC9F4k32BXGXgYxOUpkMkWb+f4w0 esgzLtG6L22WhzCpT1X2J4vmiA58zv5aqAeglPbfFbDI+gFzRs/4HfKuhFmBnzjs dowl8q4LdRzi4gqM9H/Myc54S0U/qTWz1BfEjNDf7igf0DiLZyEB7AlNzqU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:28 2025 by rpki-client