$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa File: 3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa (raw, json) Hash identifier: BlMXjRt6U8FcKt1kWKn2EELp4zZ1lAmwLPwUWdQBMAk= Subject key identifier: 91:EE:D4:A8:80:B9:F7:8F:37:FC:6B:58:BF:B0:E9:EA:41:93:41:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68130065CF02F030281F108A45D646B8C0673E7C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa Signing time: Sat 12 Apr 2025 00:11:29 +0000 ROA not before: Sat 12 Apr 2025 00:11:29 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 37.203.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:13:00:65:cf:02:f0:30:28:1f:10:8a:45:d6:46:b8:c0:67:3e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:11:29 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=9c240ef515a6650638377487211af1ac32138f09ca5792cad1053e9e9d29153f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:f2:d3:a3:3f:2d:3a:04:34:63:18:cd:49: b2:f9:51:8d:98:5a:de:8d:9d:58:64:1f:d4:c7:8c: a2:e5:17:c8:10:88:ac:ae:11:17:40:30:39:36:20: 68:80:a0:27:c9:0c:8e:37:9f:f2:e8:40:e2:77:12: 29:9b:44:3f:6d:e7:0f:aa:b0:ae:91:e2:3a:49:21: 3e:34:62:87:4f:45:60:f6:09:32:81:dc:ab:eb:30: 9a:6d:35:1d:d4:94:d3:34:ce:cc:eb:79:13:0a:d2: 4b:3c:e3:60:eb:6d:a2:5e:99:6a:5e:70:df:b5:51: 2d:dc:95:89:7f:24:55:2d:47:47:a3:14:85:66:a4: 2a:42:c4:77:44:bd:4a:89:e1:9d:f7:e7:5f:0f:c6: af:24:c5:4c:f7:22:54:31:08:b9:83:fe:7c:18:f8: 84:87:ec:a1:fd:9f:24:a1:09:50:f1:29:0e:8a:ad: f2:da:ea:bc:5f:ef:3d:ec:52:8d:03:72:88:00:93: 66:cb:72:d1:dd:d9:42:ec:8f:19:84:a7:b0:6e:55: b1:82:9f:44:b7:26:49:c1:52:9c:d1:f3:08:ac:a1: f3:b0:d3:8a:ab:ea:91:c8:6f:27:8a:a9:d0:ed:b2: 3e:f5:95:ec:51:5f:f8:ef:fb:20:79:57:1b:47:54: d6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:EE:D4:A8:80:B9:F7:8F:37:FC:6B:58:BF:B0:E9:EA:41:93:41:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.203.157.0/24 Signature Algorithm: sha256WithRSAEncryption 69:df:db:ae:fb:63:6e:0e:06:b9:f4:0a:c1:4e:f6:e4:fd:65: 56:c8:03:1d:b2:bb:5a:8b:3e:f2:dc:6a:c8:6d:3b:66:bf:d1: 2a:55:49:44:07:cd:4f:ae:81:e8:39:e7:e1:0f:92:d7:f4:ee: e1:f5:4c:13:fd:4f:b0:55:7b:82:55:1c:94:b4:9f:4c:bb:2b: 6e:90:e0:ea:14:65:34:57:e3:d4:e6:dd:f3:1f:98:c6:18:48: 7e:3b:d4:f2:b2:12:eb:68:5d:99:f7:4b:6d:27:53:31:61:d9: 40:79:a1:30:1a:ce:87:05:0c:74:f7:66:d8:78:30:3d:97:82: 65:01:f1:7d:ba:e7:4f:c9:01:9b:8d:2e:e6:ea:46:f9:b6:8c: 05:c3:82:4b:42:c0:3a:b8:7d:9f:da:f6:b3:48:e5:25:75:f4: 28:00:81:57:89:6c:29:4d:05:73:84:fc:33:5b:44:e2:f8:12: a0:4f:83:18:cd:81:1c:57:5d:30:24:ad:92:8f:3a:b9:2e:fa: 1d:0b:e9:70:52:08:dc:a5:d1:83:a6:d9:0b:4b:36:29:99:c8: c5:80:a3:40:d9:44:08:1f:c1:3d:ed:1f:eb:1e:d2:3d:f6:9e: 09:3d:ea:04:ec:f4:a0:41:21:cf:da:b4:18:3f:d5:ad:39:55: 54:1b:8a:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaBMAZc8C8DAoHxCKRdZGuMBnPnwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAxMTI5WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzI0MGVmNTE1YTY2NTA2MzgzNzc0ODcyMTFhZjFhYzMy MTM4ZjA5Y2E1NzkyY2FkMTA1M2U5ZTlkMjkxNTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyE/LToz8tOgQ0YxjNSbL5UY2YWt6NnVhkH9THjKLlF8gQ iKyuERdAMDk2IGiAoCfJDI43n/LoQOJ3EimbRD9t5w+qsK6R4jpJIT40YodPRWD2 CTKB3KvrMJptNR3UlNM0zszreRMK0ks842DrbaJemWpecN+1US3clYl/JFUtR0ej FIVmpCpCxHdEvUqJ4Z33518Pxq8kxUz3IlQxCLmD/nwY+ISH7KH9nyShCVDxKQ6K rfLa6rxf7z3sUo0DcogAk2bLctHd2ULsjxmEp7BuVbGCn0S3JknBUpzR8wisofOw 04qr6pHIbyeKqdDtsj71lexRX/jv+yB5VxtHVNb5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUke7UqIC59483/GtYv7Dp6kGTQdYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMTExY2FiLWIzNzMtNDI0Yi1hM2E5LThjOGZjN2Y3MWUxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAly50wDQYJKoZIhvcNAQELBQADggEBAGnf2677Y24OBrn0CsFO9uT9ZVbI Ax2yu1qLPvLcashtO2a/0SpVSUQHzU+ugeg55+EPktf07uH1TBP9T7BVe4JVHJS0 n0y7K26Q4OoUZTRX49Tm3fMfmMYYSH471PKyEutoXZn3S20nUzFh2UB5oTAazocF DHT3Zth4MD2XgmUB8X2650/JAZuNLubqRvm2jAXDgktCwDq4fZ/a9rNI5SV19CgA gVeJbClNBXOE/DNbROL4EqBPgxjNgRxXXTAkrZKPOrku+h0L6XBSCNyl0YOm2QtL NimZyMWAo0DZRAgfwT3tH+se0j32ngk96gTs9KBBIc/atBg/1a05VVQbijQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:13 2025 by rpki-client