$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aedaf-9d2c-46eb-992e-0ed3d3a82c66.roa File: 475aedaf-9d2c-46eb-992e-0ed3d3a82c66.roa (raw, json) Hash identifier: 7/lVg3RFdRzcjcrCTfCq47fKgC3t4EDJRDtsEAUeFE4= Subject key identifier: 63:9A:0A:18:A2:D4:6F:0C:F3:32:4E:4B:DD:7A:CC:98:16:BC:41:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30FDF3DED2468220CA4DDC00CEC49336D7B5B077 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aedaf-9d2c-46eb-992e-0ed3d3a82c66.roa Signing time: Mon 07 Apr 2025 15:01:41 +0000 ROA not before: Mon 07 Apr 2025 15:01:41 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fd:f3:de:d2:46:82:20:ca:4d:dc:00:ce:c4:93:36:d7:b5:b0:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:01:41 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=414e6e84e91f06618042d2e2205d49de5119c3d8eee4cc0aa1b9aa866a21c6fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6c:9e:6a:75:47:14:1d:72:b3:b2:9f:73:3c: f8:b7:ee:17:c5:29:e5:c8:7b:a8:6e:be:02:97:fb: 95:92:25:ea:4c:ab:a5:a8:bc:8d:67:a0:02:33:bb: 85:ea:24:cb:7a:70:f2:e9:60:d7:26:d4:2e:99:d9: a3:9f:0c:72:da:a0:bc:82:55:db:a7:99:14:65:33: fb:9d:2a:f5:14:40:b9:f2:7b:03:d8:f3:3e:56:5d: 22:91:9c:ae:d1:1e:d1:0b:43:d2:75:bd:40:02:64: b6:c6:29:38:b2:ce:b5:ce:cc:36:e4:04:55:0d:39: 43:b4:f6:53:f2:97:3c:bf:75:7d:52:fa:11:9a:d8: 3c:b9:5e:14:10:bc:ea:51:49:bc:63:ea:90:e1:f9: 81:a3:0d:db:18:02:6f:df:06:45:c2:b9:fc:a6:87: 9b:07:e8:16:0d:5a:af:39:17:b2:43:9d:b4:d7:b8: 8b:bb:d8:d7:08:dd:b3:a2:cd:da:7e:b1:18:0a:1b: e5:9a:f2:8f:46:49:1c:fc:da:a5:4a:14:cd:62:37: f9:1b:58:3e:88:cb:8d:b7:e1:bc:d7:8a:3f:80:93: 1a:16:07:df:7f:b9:a6:b4:61:99:67:50:fe:df:d5: 9a:14:42:6f:fe:db:50:ff:c2:0d:63:33:08:87:f0: 7a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9A:0A:18:A2:D4:6F:0C:F3:32:4E:4B:DD:7A:CC:98:16:BC:41:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aedaf-9d2c-46eb-992e-0ed3d3a82c66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:d0:ad:3d:d0:28:c5:21:09:14:72:2b:b1:e0:72:0b:e5:20: 2c:28:91:6d:92:b4:80:e0:2a:ea:90:5f:4c:f7:00:f6:77:fb: b4:ab:ff:0e:71:04:27:a3:44:f9:14:fb:13:b1:9e:29:c9:c2: 1f:bd:1f:b2:f6:3d:3d:fe:4d:ba:a8:33:b4:fe:73:d8:fc:8e: bd:c2:1e:40:10:23:15:ee:ab:5e:c1:c2:76:4d:bd:35:e5:21: ff:29:ec:7a:62:81:4a:24:36:ab:a2:29:10:b2:a5:38:7e:a2: bb:ac:84:eb:c5:ac:3a:d4:99:1c:68:a7:21:19:e0:84:7b:f3: 6b:b7:f6:62:6e:92:6a:ad:65:b6:66:1e:b6:be:1f:35:51:72: ae:61:3b:81:ca:ae:ce:eb:a0:d0:5f:00:19:a8:06:f2:57:2d: f2:2c:d8:81:6e:ea:70:c6:e2:1c:08:52:f5:18:14:21:0e:1d: 42:87:3a:59:cd:4e:ed:e8:15:cb:64:93:2e:8a:f5:83:da:7d: 11:db:30:8f:7f:a4:ef:98:1c:a8:81:91:d5:cf:d5:83:47:47: 15:f2:a1:c9:5b:0c:4d:2d:84:74:1e:30:19:d9:a6:ac:85:89: ea:d9:37:69:60:74:0a:e9:7c:87:24:0c:d4:1d:9b:aa:08:1f: 73:c3:ee:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMP3z3tJGgiDKTdwAzsSTNte1sHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMTQxWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTRlNmU4NGU5MWYwNjYxODA0MmQyZTIyMDVkNDlkZTUx MTljM2Q4ZWVlNGNjMGFhMWI5YWE4NjZhMjFjNmZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCebJ5qdUcUHXKzsp9zPPi37hfFKeXIe6huvgKX+5WSJepM q6WovI1noAIzu4XqJMt6cPLpYNcm1C6Z2aOfDHLaoLyCVdunmRRlM/udKvUUQLny ewPY8z5WXSKRnK7RHtELQ9J1vUACZLbGKTiyzrXOzDbkBFUNOUO09lPylzy/dX1S +hGa2Dy5XhQQvOpRSbxj6pDh+YGjDdsYAm/fBkXCufymh5sH6BYNWq85F7JDnbTX uIu72NcI3bOizdp+sRgKG+Wa8o9GSRz82qVKFM1iN/kbWD6Iy4234bzXij+AkxoW B99/uaa0YZlnUP7f1ZoUQm/+21D/wg1jMwiH8HoDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUY5oKGKLUbwzzMk5L3XrMmBa8QfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3NWFlZGFmLTlkMmMtNDZlYi05OTJlLTBlZDNkM2E4MmM2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPnzANBgkqhkiG9w0BAQsFAAOCAQEAh9CtPdAoxSEJFHIrseByC+UgLCiR bZK0gOAq6pBfTPcA9nf7tKv/DnEEJ6NE+RT7E7GeKcnCH70fsvY9Pf5NuqgztP5z 2PyOvcIeQBAjFe6rXsHCdk29NeUh/ynsemKBSiQ2q6IpELKlOH6iu6yE68WsOtSZ HGinIRnghHvza7f2Ym6Saq1ltmYetr4fNVFyrmE7gcquzuug0F8AGagG8lct8izY gW7qcMbiHAhS9RgUIQ4dQoc6Wc1O7egVy2STLor1g9p9Edswj3+k75gcqIGR1c/V g0dHFfKhyVsMTS2EdB4wGdmmrIWJ6tk3aWB0Cul8hyQM1B2bqggfc8PulQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:47 2025 by rpki-client