$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa File: 47f76ec9-1410-4f5f-930d-b1663472dcc6.roa (raw, json) Hash identifier: WKlKsw36Dm7YJpLEh5Dbkos2wlslCrMMjHotGuPqoBE= Subject key identifier: A0:AB:3C:F3:B8:B9:85:F2:31:7F:5F:00:1E:C6:2C:1F:72:81:E7:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17F148B7A3C610EF74CF0B42EECD038B375A2A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa Signing time: Fri 25 Apr 2025 00:41:23 +0000 ROA not before: Fri 25 Apr 2025 00:41:23 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f1:48:b7:a3:c6:10:ef:74:cf:0b:42:ee:cd:03:8b:37:5a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:23 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ebb8f73af6a14dbe7b3581c3d0eaad56d92f65718e954e48a8d327a149034264, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ca:0d:59:4d:6a:41:56:2c:c9:98:07:67:10: 2e:70:23:6b:30:29:c8:7f:4e:23:f3:fb:ea:33:3e: 37:4b:18:3f:b7:b7:a5:a0:6f:a9:34:1d:6a:7b:c4: 44:12:9b:81:d9:b6:d5:4e:18:81:e3:cc:f8:26:59: d6:42:0d:f0:1f:d5:9f:96:dd:af:cd:32:32:e0:97: ec:21:e5:f3:db:61:b7:2a:89:56:51:e8:7e:a5:d5: 64:df:54:5c:db:09:9f:59:99:ce:e3:a4:18:c3:60: bf:3b:b9:b7:11:27:94:c7:d7:11:7f:f5:8a:bd:4b: b3:72:6e:0b:52:ec:bb:4f:2e:1a:b2:08:b1:25:e4: 0f:0d:5a:b0:17:cc:72:88:65:0a:98:47:62:ed:36: c8:85:8d:9e:1d:90:7f:41:e9:a6:aa:7d:49:27:72: 77:7f:cc:45:bc:f9:e7:1f:56:07:c3:9f:9c:d6:c1: 38:71:68:b8:3e:2e:0e:9e:08:0f:84:06:a8:1e:29: fa:fe:a8:59:66:26:1d:a6:00:ff:09:1e:eb:3e:54: f8:4b:d8:4f:08:df:63:5e:f4:56:98:2f:a6:56:a1: c0:59:42:b7:76:76:0d:7e:1e:a3:e9:0f:61:45:9a: 72:e4:f3:ab:0d:bb:dd:a8:d7:16:11:e8:2c:44:42: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AB:3C:F3:B8:B9:85:F2:31:7F:5F:00:1E:C6:2C:1F:72:81:E7:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption d1:13:c2:2e:df:79:9b:4f:bc:2c:2c:1b:1b:b1:8d:91:12:2b: 8b:8a:a0:94:30:7e:17:06:57:c4:1a:be:dd:ae:4e:c4:7f:44: e0:f3:78:f3:b8:58:58:e5:bd:00:33:ad:d6:b1:28:ec:da:ba: 5b:55:ff:a5:dd:45:ed:59:d6:ee:b7:4a:f2:43:28:90:de:81: 3f:0e:15:78:cd:8b:64:34:a5:ec:a9:75:4f:1f:d9:05:9d:15: 53:f1:59:ad:c8:46:f5:46:8f:10:eb:ac:45:a9:7e:37:31:bb: 52:9e:11:23:bd:16:06:e5:60:7e:4c:ee:bd:1f:bf:e6:62:47: 7b:c3:52:b7:2b:07:90:f3:c9:0a:dd:c1:9b:a1:38:69:53:ab: 97:5e:3b:4f:a8:f2:ec:0b:8d:40:d3:07:62:4c:ef:95:4f:a7: bc:a2:17:c8:f0:1a:72:07:44:13:a5:2c:40:31:22:ec:8f:de: 03:34:f6:c7:a2:93:fd:a8:ae:55:22:29:8e:6b:61:59:d2:78: a1:fd:fc:9e:9c:22:5e:ef:41:04:6e:5c:86:79:3f:8f:ff:c2: b0:55:33:02:2d:e7:36:d0:0e:8a:51:28:6e:ed:29:f5:ec:de: da:e5:75:8a:b8:79:a9:0c:83:b6:0a:ac:90:88:f4:a2:e7:88: 6f:fe:2d:5c -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITF/FIt6PGEO90zwtC7s0DizdaKjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA0MjUwMDQxMjNaFw0yNTA1MzAyMzU5NTla MHoxSTBHBgNVBAUTQGViYjhmNzNhZjZhMTRkYmU3YjM1ODFjM2QwZWFhZDU2ZDky ZjY1NzE4ZTk1NGU0OGE4ZDMyN2ExNDkwMzQyNjQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALrKDVlNakFWLMmYB2cQLnAjazApyH9OI/P76jM+N0sYP7e3 paBvqTQdanvERBKbgdm21U4YgePM+CZZ1kIN8B/Vn5bdr80yMuCX7CHl89thtyqJ VlHofqXVZN9UXNsJn1mZzuOkGMNgvzu5txEnlMfXEX/1ir1Ls3JuC1Lsu08uGrII sSXkDw1asBfMcohlCphHYu02yIWNnh2Qf0Hppqp9SSdyd3/MRbz55x9WB8OfnNbB OHFouD4uDp4ID4QGqB4p+v6oWWYmHaYA/wke6z5U+EvYTwjfY170VpgvplahwFlC t3Z2DX4eo+kPYUWacuTzqw273ajXFhHoLERCITECAwEAAaOCArAwggKsMB0GA1Ud DgQWBBSgqzzzuLmF8jF/XwAexiwfcoHnFDAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNDdmNzZlYzktMTQxMC00ZjVmLTkzMGQtYjE2NjM0NzJkY2M2LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDACjWMA0GCSqGSIb3DQEBCwUAA4IBAQDRE8Iu33mbT7wsLBsbsY2REiuLiqCU MH4XBlfEGr7drk7Ef0Tg83jzuFhY5b0AM63WsSjs2rpbVf+l3UXtWdbut0ryQyiQ 3oE/DhV4zYtkNKXsqXVPH9kFnRVT8VmtyEb1Ro8Q66xFqX43MbtSnhEjvRYG5WB+ TO69H7/mYkd7w1K3KweQ88kK3cGboThpU6uXXjtPqPLsC41A0wdiTO+VT6e8ohfI 8BpyB0QTpSxAMSLsj94DNPbHopP9qK5VIimOa2FZ0nih/fyenCJe70EEblyGeT+P /8KwVTMCLec20A6KUShu7Sn17N7a5XWKuHmpDIO2CqyQiPSi54hv/i1c -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:03 2025 by rpki-client