$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa File: 3c6db0b0-0f4a-438a-88fc-504de02997a3.roa (raw, json) Hash identifier: x3Qw8dxGIw8enzrSwweg5UfPkShcSAKpMHAeRvNrwwA= Subject key identifier: 0B:FF:93:E0:B7:86:8D:59:39:12:C9:0F:E3:99:B3:F7:12:C9:A0:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CD6AD1E0FA9852A54BD248BAD1A8287386BBD3E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa Signing time: Wed 23 Apr 2025 00:51:07 +0000 ROA not before: Wed 23 Apr 2025 00:51:07 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d6:ad:1e:0f:a9:85:2a:54:bd:24:8b:ad:1a:82:87:38:6b:bd:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:07 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=499f2addbfde9b570574f5cf570adc952c84e5c2695850685f8942abf38329f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:cd:32:6c:91:eb:c1:52:62:49:a3:6e:79: 86:11:3e:31:fa:db:9c:a1:5c:da:53:17:26:69:eb: 20:95:83:f1:3d:9c:b4:37:bd:05:dd:47:0f:dc:6f: 90:40:90:d7:3b:86:46:3a:36:b0:82:03:fa:77:ff: de:d0:e6:28:94:7c:31:e4:99:8c:43:85:53:a5:0a: f7:f7:07:ad:68:c9:e8:54:0d:6c:ef:b1:df:20:09: f7:27:d3:08:6b:2a:87:d9:e6:ec:d0:cc:49:73:52: 0b:35:3d:69:1b:47:57:33:9f:03:bc:36:04:0a:3a: cb:f5:6a:7e:20:ad:68:c7:29:c7:1f:ce:f9:7c:f8: a4:33:48:c3:09:6b:6b:ec:14:9e:e8:f3:08:a0:da: 0d:32:00:c0:10:f6:90:5d:dc:f4:26:95:a0:ed:c9: 26:1a:46:b7:bd:de:78:46:3c:c7:4d:dc:6e:34:07: 6c:c9:a0:e1:15:9c:6f:e0:cc:2c:71:e6:02:90:6c: 61:b3:d2:b2:80:64:e0:57:35:d7:22:f1:9d:8b:65: 27:25:1a:09:22:45:c3:dd:ef:af:2b:23:ed:9e:a6: b2:6a:13:ad:d8:64:a8:11:33:20:ff:38:17:ff:43: a9:3e:a1:9f:c1:03:bb:62:7f:cf:09:0b:ce:54:fa: ef:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FF:93:E0:B7:86:8D:59:39:12:C9:0F:E3:99:B3:F7:12:C9:A0:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.240.0/20 Signature Algorithm: sha256WithRSAEncryption 56:20:4a:97:f2:22:3a:3f:7d:09:5f:ec:6d:74:af:a9:ad:1c: ff:4e:97:99:fe:b3:58:c7:72:63:1a:4b:ee:e9:cf:8e:67:61: f5:6b:9c:cc:56:a7:c6:28:a5:bb:ed:31:be:dd:ff:3e:ec:5f: c7:9b:29:73:f6:62:03:01:84:cf:aa:c1:62:3c:e8:a0:81:4a: 32:9c:ec:d2:8e:54:07:e0:fb:ff:b1:4e:df:91:15:a2:b6:77: d0:9b:da:92:2e:f4:c9:fe:66:ce:dd:59:ff:c4:81:56:12:d8: e6:0b:11:1b:e9:c3:49:c6:b7:e9:5d:2b:58:ea:e6:e4:f1:04: 5d:fa:1a:68:ae:18:46:2d:ae:7c:d6:1f:50:a8:3b:0f:9a:cc: 7c:d3:f3:ea:4d:4f:90:5d:4e:7f:d4:39:31:af:2c:a4:56:98: 58:96:2f:d4:f6:a8:3b:17:53:bf:43:b2:53:6e:34:43:db:fc: 55:8e:96:f0:63:52:bc:11:e5:46:cf:26:6d:cc:2c:ab:1a:22: 17:e5:c6:76:3c:d2:d7:61:18:3d:7a:4f:ba:3e:6b:76:79:a1: f6:9c:27:bb:a0:58:92:e4:35:c5:6e:21:6d:3c:ec:ca:0f:2e: 55:22:aa:68:5a:c7:f1:3c:ef:f7:13:6a:00:f8:cd:1b:32:3e: 79:23:f7:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfNatHg+phSpUvSSLrRqChzhrvT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTA3WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTlmMmFkZGJmZGU5YjU3MDU3NGY1Y2Y1NzBhZGM5NTJj ODRlNWMyNjk1ODUwNjg1Zjg5NDJhYmYzODMyOWY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKQc0ybJHrwVJiSaNueYYRPjH625yhXNpTFyZp6yCVg/E9 nLQ3vQXdRw/cb5BAkNc7hkY6NrCCA/p3/97Q5iiUfDHkmYxDhVOlCvf3B61oyehU DWzvsd8gCfcn0whrKofZ5uzQzElzUgs1PWkbR1cznwO8NgQKOsv1an4grWjHKccf zvl8+KQzSMMJa2vsFJ7o8wig2g0yAMAQ9pBd3PQmlaDtySYaRre93nhGPMdN3G40 B2zJoOEVnG/gzCxx5gKQbGGz0rKAZOBXNdci8Z2LZSclGgkiRcPd768rI+2eprJq E63YZKgRMyD/OBf/Q6k+oZ/BA7tif88JC85U+u89AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC/+T4LeGjVk5EskP45mz9xLJoEAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNmRiMGIwLTBmNGEtNDM4YS04OGZjLTUwNGRlMDI5OTdhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7PAwDQYJKoZIhvcNAQELBQADggEBAFYgSpfyIjo/fQlf7G10r6mtHP9O l5n+s1jHcmMaS+7pz45nYfVrnMxWp8YopbvtMb7d/z7sX8ebKXP2YgMBhM+qwWI8 6KCBSjKc7NKOVAfg+/+xTt+RFaK2d9Cb2pIu9Mn+Zs7dWf/EgVYS2OYLERvpw0nG t+ldK1jq5uTxBF36GmiuGEYtrnzWH1CoOw+azHzT8+pNT5BdTn/UOTGvLKRWmFiW L9T2qDsXU79DslNuNEPb/FWOlvBjUrwR5UbPJm3MLKsaIhflxnY80tdhGD16T7o+ a3Z5ofacJ7ugWJLkNcVuIW087MoPLlUiqmhax/E87/cTagD4zRsyPnkj9zc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:11 2025 by rpki-client