$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa File: 3dbee296-ec09-48ec-b119-3d727f285355.roa (raw, json) Hash identifier: fyes3NKfiRtLJgcYoI41EEIPjt2E8OeZl+O+gH9GeRQ= Subject key identifier: 24:10:06:EE:DB:4C:02:3A:0C:F5:21:7C:A5:AB:21:3F:0E:C2:40:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58BB2C94359A6E20FDB4146033F6B6C143D6BF63 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa Signing time: Fri 11 Apr 2025 00:11:11 +0000 ROA not before: Fri 11 Apr 2025 00:11:11 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:bb:2c:94:35:9a:6e:20:fd:b4:14:60:33:f6:b6:c1:43:d6:bf:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:11:11 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=d5dbd53e45730a4d5b72a858f411db6af75c0778474f4d307810674bb664fb64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:79:94:82:10:21:cb:15:d4:e8:02:5f:66: a8:bc:e7:c9:b4:86:ee:8c:c2:23:9f:ba:9c:b8:65: 11:b7:3d:d0:30:a0:ec:e5:a7:4e:04:d8:fd:52:cd: 50:2a:96:de:b9:2b:f5:d4:32:68:c1:c4:99:52:83: 3c:cb:32:d4:0b:f4:a1:37:ea:be:7d:e6:66:af:94: 96:4d:ff:24:47:53:16:8e:5e:75:53:c7:c1:59:dc: bc:3f:01:d6:60:07:2e:be:68:51:74:6f:c8:32:35: 41:fe:81:de:72:ed:a7:55:a0:85:ce:0e:74:90:e9: ab:df:13:fb:39:a7:3b:b2:c6:12:5a:eb:88:82:e0: 3c:73:41:be:04:39:96:21:8e:c5:63:a3:5e:00:33: 0b:9c:d4:32:d7:d3:71:aa:9f:e2:3d:7d:bf:f6:ae: 4f:d2:0a:63:c9:b0:43:1e:6f:9b:f4:ea:3b:be:1d: fa:64:d9:01:67:46:e8:bd:f6:f0:6f:58:23:ee:44: 3c:e3:54:11:1c:69:1a:dd:83:c4:72:a6:4c:a3:6f: 1b:7e:9f:80:24:7c:be:6b:1a:d4:3a:24:7e:63:98: 99:58:ef:13:7c:dc:64:f8:f7:35:db:63:f9:02:be: d6:ac:d2:b0:23:7a:b2:87:37:5d:ac:ba:32:c0:90: 8d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:10:06:EE:DB:4C:02:3A:0C:F5:21:7C:A5:AB:21:3F:0E:C2:40:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:3b:09:a1:05:da:af:97:58:38:b8:6d:02:25:92:da:cc:36: 97:56:1d:57:99:c4:fd:56:8a:f9:57:06:64:7c:75:f5:af:ad: 1a:96:4a:0a:cf:30:72:9e:4e:7d:83:22:0b:22:47:e3:a2:6b: 7e:84:72:83:9c:1e:48:03:25:1b:9b:b8:51:d8:1d:e3:ad:d8: ae:71:fd:10:02:5a:42:f4:bb:34:42:36:59:d1:a1:f5:55:59: 4a:c6:cf:b7:9f:a5:d3:15:b7:83:73:4c:8d:40:8e:d4:11:70: 5e:b6:24:79:a0:96:ae:b3:f0:7d:9b:5b:64:f1:a7:46:b8:22: 3a:fc:50:17:b1:aa:12:3f:37:cb:72:a8:70:e4:b7:4d:ae:16: f6:fe:4a:78:1e:71:a5:10:3a:89:a2:12:15:3b:06:a2:97:2d: f4:af:7c:5e:bf:d5:52:57:ed:01:78:3d:9c:a9:f0:26:ca:82: 0a:ce:7c:94:fb:71:13:ad:86:3b:9a:74:4f:06:cd:36:d7:db: c0:4b:56:16:11:05:dc:6e:b4:2a:14:8b:8e:56:84:12:bc:a0: 67:9a:58:25:7e:d9:3c:00:b0:3d:1f:cd:35:30:c0:85:dc:4f: c5:5d:70:ab:51:03:23:6c:03:4f:c6:32:7e:15:92:3e:de:7c: cb:27:09:ab -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWLsslDWabiD9tBRgM/a2wUPWv2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMTExWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWRiZDUzZTQ1NzMwYTRkNWI3MmE4NThmNDExZGI2YWY3 NWMwNzc4NDc0ZjRkMzA3ODEwNjc0YmI2NjRmYjY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu+XmUghAhyxXU6AJfZqi858m0hu6MwiOfupy4ZRG3PdAw oOzlp04E2P1SzVAqlt65K/XUMmjBxJlSgzzLMtQL9KE36r595mavlJZN/yRHUxaO XnVTx8FZ3Lw/AdZgBy6+aFF0b8gyNUH+gd5y7adVoIXODnSQ6avfE/s5pzuyxhJa 64iC4DxzQb4EOZYhjsVjo14AMwuc1DLX03Gqn+I9fb/2rk/SCmPJsEMeb5v06ju+ Hfpk2QFnRui99vBvWCPuRDzjVBEcaRrdg8Rypkyjbxt+n4AkfL5rGtQ6JH5jmJlY 7xN83GT49zXbY/kCvtas0rAjerKHN12sujLAkI27AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJBAG7ttMAjoM9SF8pashPw7CQPEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYmVlMjk2LWVjMDktNDhlYy1iMTE5LTNkNzI3ZjI4NTM1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoljANBgkqhkiG9w0BAQsFAAOCAQEAJjsJoQXar5dYOLhtAiWS2sw2l1Yd V5nE/VaK+VcGZHx19a+tGpZKCs8wcp5OfYMiCyJH46JrfoRyg5weSAMlG5u4Udgd 463YrnH9EAJaQvS7NEI2WdGh9VVZSsbPt5+l0xW3g3NMjUCO1BFwXrYkeaCWrrPw fZtbZPGnRrgiOvxQF7GqEj83y3KocOS3Ta4W9v5KeB5xpRA6iaISFTsGopct9K98 Xr/VUlftAXg9nKnwJsqCCs58lPtxE62GO5p0TwbNNtfbwEtWFhEF3G60KhSLjlaE ErygZ5pYJX7ZPACwPR/NNTDAhdxPxV1wq1EDI2wDT8YyfhWSPt58yycJqw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:37 2025 by rpki-client