$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa File: 4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa (raw, json) Hash identifier: Vn3DZ2eIj2avWsJGcVZzqwOBB/fjGJLE1C/g29Ws9ho= Subject key identifier: DD:95:6F:23:4B:AA:32:A8:7C:FF:D2:DC:ED:73:2E:64:34:DF:93:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39BF9676ABC8A1D5AB1B8B1C39737F3C7A97D697 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa Signing time: Wed 23 Apr 2025 00:21:02 +0000 ROA not before: Wed 23 Apr 2025 00:21:02 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:bf:96:76:ab:c8:a1:d5:ab:1b:8b:1c:39:73:7f:3c:7a:97:d6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:21:02 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=6db795ab36b9af9cad7038b29631b39fb8cc9662f23d9bd824db15a3df5707ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ac:81:c2:98:18:24:86:74:3f:8c:a9:bf:91: ef:6b:02:52:ad:a8:54:c8:b2:2f:af:7e:43:95:8a: e8:ee:a2:e1:09:75:cb:b3:35:3f:19:f0:8b:34:2d: bb:22:dc:14:2c:06:ab:b3:72:7f:fa:36:f2:f5:3e: 7b:fa:fb:2e:52:8b:e4:98:a4:70:1b:66:8c:d5:5d: d3:c4:d9:36:01:3f:76:af:64:5c:0f:7b:00:aa:46: 19:75:15:7f:57:b6:6b:a9:9f:d9:e6:2a:e7:7c:77: 8d:c0:b9:61:ae:96:56:49:05:0b:8a:8b:3a:d9:39: f7:28:8f:58:0a:e1:91:ae:76:e8:3a:00:55:f7:ef: cb:47:a3:82:85:b4:17:e8:9e:bf:c5:f0:7b:31:c6: 11:eb:b6:bc:a4:85:4a:c7:4d:61:4a:36:f5:a9:79: a8:ac:45:e9:c5:25:f0:c7:b6:71:8f:83:ca:46:f6: 68:16:40:70:b5:2c:42:be:ce:15:f8:50:cd:10:32: 7b:0f:b7:b9:7f:28:c3:73:17:bc:c3:2d:76:bb:eb: 08:75:ad:8c:20:cb:cb:fc:57:1f:76:4c:67:3a:cd: 49:f0:dd:91:b0:10:d1:d9:35:8e:08:0a:97:ec:92: 85:e0:07:ef:01:a7:df:f6:f8:03:0e:50:fd:85:bc: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:95:6F:23:4B:AA:32:A8:7C:FF:D2:DC:ED:73:2E:64:34:DF:93:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:e0:6a:9d:2a:23:c4:6b:ba:5a:61:79:84:ba:ea:00:6c:b8: 69:9d:19:bf:43:57:6e:2e:47:f6:71:4a:dc:8f:c1:96:de:f9: 15:5f:d2:4e:f7:73:38:c0:da:2b:59:d2:56:af:a1:91:55:c9: ed:11:70:af:44:d9:76:c3:ba:a1:1a:02:94:99:aa:af:de:9c: a8:81:07:c4:ed:b7:c9:6d:24:33:35:14:e2:b1:44:a8:74:8d: 97:0b:cb:77:85:0a:78:40:3e:52:dd:b2:a0:12:51:76:d5:c4: c4:7a:6d:23:23:80:92:b9:ad:fe:a0:a8:88:0c:d0:96:29:13: 0b:04:1f:64:eb:bd:dc:25:12:df:a4:ac:c4:92:65:3d:57:88: d7:d0:a4:d6:28:d9:cc:8f:ed:92:96:de:4a:01:5d:be:6b:4a: 4d:8f:e7:14:8f:77:0d:25:48:08:82:82:3a:1c:ce:25:a0:16: a5:6b:f2:0e:dc:9d:9c:a6:5b:2e:bc:d1:04:49:4c:f2:78:2d: 5f:52:92:21:a0:79:f7:88:79:e1:18:e9:e2:ce:72:9e:7c:73: c3:62:70:4a:f8:ad:c4:47:65:04:4c:93:27:79:3e:b5:e1:51: 39:b8:e8:0c:3b:01:01:54:9c:47:a5:93:80:8a:e1:89:19:cb: 0b:1d:38:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOb+WdqvIodWrG4scOXN/PHqX1pcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAyMTAyWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGI3OTVhYjM2YjlhZjljYWQ3MDM4YjI5NjMxYjM5ZmI4 Y2M5NjYyZjIzZDliZDgyNGRiMTVhM2RmNTcwN2ZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyrIHCmBgkhnQ/jKm/ke9rAlKtqFTIsi+vfkOViujuouEJ dcuzNT8Z8Is0Lbsi3BQsBquzcn/6NvL1Pnv6+y5Si+SYpHAbZozVXdPE2TYBP3av ZFwPewCqRhl1FX9Xtmupn9nmKud8d43AuWGullZJBQuKizrZOfcoj1gK4ZGudug6 AFX378tHo4KFtBfonr/F8HsxxhHrtrykhUrHTWFKNvWpeaisRenFJfDHtnGPg8pG 9mgWQHC1LEK+zhX4UM0QMnsPt7l/KMNzF7zDLXa76wh1rYwgy8v8Vx92TGc6zUnw 3ZGwENHZNY4ICpfskoXgB+8Bp9/2+AMOUP2FvAmpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3ZVvI0uqMqh8/9Lc7XMuZDTfk3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNGRlNzE2LTZlNjAtNDdhMS1iZDZmLWRkMWRmNDlmMDZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFMAwDQYJKoZIhvcNAQELBQADggEBAI/gap0qI8RrulpheYS66gBsuGmd Gb9DV24uR/ZxStyPwZbe+RVf0k73czjA2itZ0lavoZFVye0RcK9E2XbDuqEaApSZ qq/enKiBB8Ttt8ltJDM1FOKxRKh0jZcLy3eFCnhAPlLdsqASUXbVxMR6bSMjgJK5 rf6gqIgM0JYpEwsEH2TrvdwlEt+krMSSZT1XiNfQpNYo2cyP7ZKW3koBXb5rSk2P 5xSPdw0lSAiCgjocziWgFqVr8g7cnZymWy680QRJTPJ4LV9SkiGgefeIeeEY6eLO cp58c8NicEr4rcRHZQRMkyd5PrXhUTm46Aw7AQFUnEelk4CK4YkZywsdOAs= -----END CERTIFICATE-----Generated at Sat Apr 26 19:05:19 2025 by rpki-client