$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46758e19-83f6-44fe-b34a-46b023902f4e.roa File: 46758e19-83f6-44fe-b34a-46b023902f4e.roa (raw, json) Hash identifier: 3Yu6aSRcPOSsuT1XVQ3a8uuBsEAr6E/8LkdDSwUU0VM= Subject key identifier: 4A:5B:8A:DD:98:CB:D8:AB:9D:23:0E:79:AC:B7:8E:FA:4B:F7:9C:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 529DD9AA40F715A7F5A58F401925DA0ABBAECFA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46758e19-83f6-44fe-b34a-46b023902f4e.roa Signing time: Mon 14 Apr 2025 15:20:32 +0000 ROA not before: Mon 14 Apr 2025 15:20:32 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.8.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9d:d9:aa:40:f7:15:a7:f5:a5:8f:40:19:25:da:0a:bb:ae:cf:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:20:32 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=89d6cead379aadc0e28871ae8d919e0b34939f01fd0f6f22037d792f44fca009, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:1d:70:51:33:35:8b:18:00:71:b5:33:6b: 3a:90:9c:cd:d2:6a:88:10:00:69:20:5e:55:fb:2a: 4a:1d:30:3c:6f:9c:fc:28:c2:af:98:58:b3:cb:e7: 4d:ba:a4:f2:74:11:fd:ca:7f:99:3f:20:55:94:a1: 1e:04:b9:f8:d8:2e:05:ec:b1:ac:32:8c:a1:83:c6: 11:f5:49:98:f7:0d:70:50:34:95:cd:17:2b:f5:cc: 26:89:d6:99:f1:87:d8:4b:2b:85:c2:00:9d:38:69: 43:39:bc:ef:20:30:c1:27:b5:8f:07:85:7e:78:7c: 60:bd:6c:7c:58:36:ce:8e:89:19:23:0d:e6:f8:fa: 51:38:66:e2:90:ea:01:80:39:71:ed:6b:4f:34:18: ee:33:11:63:cf:68:83:4a:fc:24:e7:8a:da:bb:3d: 64:1e:6c:43:ac:bc:e7:a1:4d:55:2e:53:d9:e6:98: 56:d7:b6:21:89:f1:42:5e:37:9a:6a:c1:b2:58:4a: 7e:05:4d:f4:65:f6:4e:19:9b:8d:80:cf:16:9d:45: 0c:f7:69:e6:41:3a:bf:e2:11:33:d9:c0:01:b2:af: b2:cc:0b:ea:a6:fb:db:83:31:4d:e6:c6:2b:a4:a1: 52:4a:f9:04:0c:9a:62:cd:b9:bd:5d:de:46:3b:f0: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5B:8A:DD:98:CB:D8:AB:9D:23:0E:79:AC:B7:8E:FA:4B:F7:9C:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46758e19-83f6-44fe-b34a-46b023902f4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.8.224.0/20 Signature Algorithm: sha256WithRSAEncryption 81:72:1f:d6:61:4d:a5:7b:14:6f:58:52:56:88:da:96:37:19: 13:6a:96:f8:86:f3:22:d2:e3:fe:8d:d4:09:8b:5e:91:9b:d8: 81:a3:43:ec:4c:3a:bd:23:c8:0e:23:32:cd:7f:a4:72:22:cf: e9:c1:9e:2a:cf:0c:06:7b:b4:bc:05:14:37:ee:8e:89:4e:3c: cb:c3:2a:9f:1f:28:9d:e5:cd:78:44:11:59:ef:1d:68:2d:a8: e5:04:fa:bf:61:64:56:58:f0:d6:ea:94:ba:d9:36:b6:8e:0b: f8:0f:30:c8:2e:94:1a:0d:7f:57:df:a2:8b:ab:e6:6a:11:28: 99:6d:df:21:10:a5:e4:bd:da:40:1a:68:6f:a6:b8:f0:75:1b: af:03:4a:32:39:3c:e9:a4:a7:1a:14:57:b3:dc:33:07:17:3c: c1:02:37:87:5a:84:5f:d9:8d:b8:92:bd:0c:9f:a4:72:04:d8: 33:38:98:0c:46:03:c1:1c:1f:f9:55:b5:76:45:0d:3a:1a:fe: d7:69:8a:2f:ef:80:54:ef:2f:c1:2f:42:66:80:22:97:05:7a: 75:8f:27:96:5c:de:0e:13:77:e6:69:23:5e:09:7d:26:3b:2a: 04:2e:f5:d7:b1:f6:e4:cb:71:b2:a4:70:55:3a:3d:bc:2a:55: 75:cc:75:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUp3ZqkD3Faf1pY9AGSXaCruuz6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMDMyWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWQ2Y2VhZDM3OWFhZGMwZTI4ODcxYWU4ZDkxOWUwYjM0 OTM5ZjAxZmQwZjZmMjIwMzdkNzkyZjQ0ZmNhMDA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/rh1wUTM1ixgAcbUzazqQnM3SaogQAGkgXlX7KkodMDxv nPwowq+YWLPL5026pPJ0Ef3Kf5k/IFWUoR4EufjYLgXssawyjKGDxhH1SZj3DXBQ NJXNFyv1zCaJ1pnxh9hLK4XCAJ04aUM5vO8gMMEntY8HhX54fGC9bHxYNs6OiRkj Deb4+lE4ZuKQ6gGAOXHta080GO4zEWPPaINK/CTnitq7PWQebEOsvOehTVUuU9nm mFbXtiGJ8UJeN5pqwbJYSn4FTfRl9k4Zm42AzxadRQz3aeZBOr/iETPZwAGyr7LM C+qm+9uDMU3mxiukoVJK+QQMmmLNub1d3kY78Dq9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSluK3ZjL2KudIw55rLeO+kv3nMowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2NzU4ZTE5LTgzZjYtNDRmZS1iMzRhLTQ2YjAyMzkwMmY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPCOAwDQYJKoZIhvcNAQELBQADggEBAIFyH9ZhTaV7FG9YUlaI2pY3GRNq lviG8yLS4/6N1AmLXpGb2IGjQ+xMOr0jyA4jMs1/pHIiz+nBnirPDAZ7tLwFFDfu jolOPMvDKp8fKJ3lzXhEEVnvHWgtqOUE+r9hZFZY8NbqlLrZNraOC/gPMMgulBoN f1ffoour5moRKJlt3yEQpeS92kAaaG+muPB1G68DSjI5POmkpxoUV7PcMwcXPMEC N4dahF/ZjbiSvQyfpHIE2DM4mAxGA8EcH/lVtXZFDToa/tdpii/vgFTvL8EvQmaA IpcFenWPJ5Zc3g4Td+ZpI14JfSY7KgQu9dex9uTLcbKkcFU6PbwqVXXMdS0= -----END CERTIFICATE-----Generated at Sat Apr 26 20:24:24 2025 by rpki-client