$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa File: 48743620-d852-4c45-84d7-d4a7e3874270.roa (raw, json) Hash identifier: VqFGBYEZQ6rI1MAKmqkw0UeeC4b4oC7sp037rOL9vCA= Subject key identifier: 26:13:C9:8E:0B:07:69:47:27:59:EF:F4:9F:93:F2:55:A9:3F:00:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 468F01333A89811EC607E3E9AE4CE4F1554F53D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa Signing time: Fri 25 Apr 2025 00:10:29 +0000 ROA not before: Fri 25 Apr 2025 00:10:29 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.192.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:8f:01:33:3a:89:81:1e:c6:07:e3:e9:ae:4c:e4:f1:55:4f:53:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:29 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=637e2d1920ab7a6da4b0e2e39fed19138a607c7ce4093e31229e42efbd895549, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d0:7e:9e:66:65:5a:6e:90:c1:c0:a1:6b:11: 2f:f4:31:ae:41:27:e7:00:0a:cf:bc:1c:d6:c5:25: 3c:73:fe:cd:a9:8c:3a:c5:01:42:87:d1:ba:85:c0: fc:95:e2:4d:e1:6c:3c:ea:fc:16:1e:f1:66:18:64: fd:11:1d:be:eb:23:de:44:31:76:af:c5:1b:5e:92: 83:a5:e0:9a:0f:dd:f7:39:b2:c9:53:20:e0:d9:d8: 1c:6b:66:58:e0:29:1f:e8:9a:dd:cd:34:09:9b:63: 74:fa:1e:48:e2:8a:1e:ca:0a:56:4a:44:1d:e1:13: 2f:ac:80:3e:7a:77:f4:32:d6:43:ca:06:5b:bb:21: 9f:b6:b4:0e:6d:80:92:56:d9:01:62:a6:a6:ec:f7: a1:28:42:4a:ab:ac:f3:33:7a:f0:60:8b:c7:3b:8d: de:ca:f7:30:e9:a8:7f:44:ea:50:e3:2d:8e:1b:59: 17:be:9e:97:84:f0:fa:57:6f:10:1e:1c:cb:b9:27: e4:21:b3:06:bb:b0:67:99:43:c6:ac:2f:45:d6:43: a4:6d:8c:f7:55:70:d1:be:47:f3:97:4e:d8:15:12: 50:96:0d:2a:ee:5b:0c:22:4b:95:a8:19:18:ba:a4: 76:14:58:82:95:ae:89:d6:ab:3b:60:f1:29:f9:9d: 6e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:13:C9:8E:0B:07:69:47:27:59:EF:F4:9F:93:F2:55:A9:3F:00:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.192.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1c:ac:cb:35:ea:c6:84:b6:fa:ab:7d:73:1f:fc:4f:0d:33:3d: 67:87:d5:8c:c3:1d:a0:cf:a9:86:8f:3a:b9:11:75:3f:a8:7b: fb:16:2b:41:2a:04:c5:a9:6d:20:ea:d9:b6:95:b5:d6:04:9b: 94:f0:d8:a3:49:22:d0:75:7d:09:dc:f3:fa:bb:31:60:e6:ba: d2:c3:aa:1a:ac:1a:cc:d0:64:30:5d:6e:30:56:04:1e:11:4a: cd:96:7a:50:a5:7c:c1:26:ee:33:a2:29:f9:d0:57:78:0e:51: 1d:4b:48:f1:14:10:07:31:ad:bc:db:14:87:80:00:68:f9:d8: 98:30:90:9c:6b:74:26:10:65:80:fe:15:b5:41:1d:71:f8:7f: 5f:4c:33:cb:3d:3b:1b:a6:05:59:53:dd:16:d1:c4:cf:12:72: a8:8d:f6:1a:0b:0c:4d:d8:96:33:92:c0:30:bb:33:55:25:01: 70:83:bf:fd:ca:89:27:d6:b5:0a:ec:25:bf:60:55:31:5c:8c: cd:82:4b:40:94:36:b1:7c:56:ce:1c:17:52:36:2b:ce:f2:0c: 69:3c:03:2a:e7:8a:93:90:c3:30:ae:d3:af:f7:e3:47:4e:e7: 85:fe:19:65:e5:48:93:9d:94:a6:5e:cd:64:f0:80:da:cb:95: 2e:0a:d6:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURo8BMzqJgR7GB+Pprkzk8VVPU9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDI5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzdlMmQxOTIwYWI3YTZkYTRiMGUyZTM5ZmVkMTkxMzhh NjA3YzdjZTQwOTNlMzEyMjllNDJlZmJkODk1NTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk0H6eZmVabpDBwKFrES/0Ma5BJ+cACs+8HNbFJTxz/s2p jDrFAUKH0bqFwPyV4k3hbDzq/BYe8WYYZP0RHb7rI95EMXavxRtekoOl4JoP3fc5 sslTIODZ2BxrZljgKR/omt3NNAmbY3T6Hkjiih7KClZKRB3hEy+sgD56d/Qy1kPK Blu7IZ+2tA5tgJJW2QFipqbs96EoQkqrrPMzevBgi8c7jd7K9zDpqH9E6lDjLY4b WRe+npeE8PpXbxAeHMu5J+Qhswa7sGeZQ8asL0XWQ6RtjPdVcNG+R/OXTtgVElCW DSruWwwiS5WoGRi6pHYUWIKVronWqztg8Sn5nW5BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJhPJjgsHaUcnWe/0n5PyVak/AG0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NzQzNjIwLWQ4NTItNGM0NS04NGQ3LWQ0YTdlMzg3NDI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGowDANBgkqhkiG9w0BAQsFAAOCAQEAHKzLNerGhLb6q31zH/xPDTM9Z4fV jMMdoM+pho86uRF1P6h7+xYrQSoExaltIOrZtpW11gSblPDYo0ki0HV9Cdzz+rsx YOa60sOqGqwazNBkMF1uMFYEHhFKzZZ6UKV8wSbuM6Ip+dBXeA5RHUtI8RQQBzGt vNsUh4AAaPnYmDCQnGt0JhBlgP4VtUEdcfh/X0wzyz07G6YFWVPdFtHEzxJyqI32 GgsMTdiWM5LAMLszVSUBcIO//cqJJ9a1Cuwlv2BVMVyMzYJLQJQ2sXxWzhwXUjYr zvIMaTwDKueKk5DDMK7Tr/fjR07nhf4ZZeVIk52Upl7NZPCA2suVLgrW+g== -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:04 2025 by rpki-client