$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa File: 515d6f04-3964-43a0-97b1-51850a0bc0eb.roa (raw, json) Hash identifier: Pg9Qex3flZ/8O8ZJeCk5hmrCKKvpfXaW3dnsSIRcCLQ= Subject key identifier: 52:3C:D8:F1:75:CB:46:77:A5:37:0C:4C:E7:39:E5:81:F8:6E:7F:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12375C36DB245EE4DB32118D0BC5CCFD6D468FB0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa Signing time: Mon 07 Apr 2025 15:11:43 +0000 ROA not before: Mon 07 Apr 2025 15:11:43 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.250.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:37:5c:36:db:24:5e:e4:db:32:11:8d:0b:c5:cc:fd:6d:46:8f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:11:43 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=c8894a66010e8952ac7025187f6b21a8e3e91b6d88cc6d09eb870c446db5d572, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0e:27:e0:5d:82:1f:09:af:9f:0f:ef:e6:09: ef:9b:7a:10:03:f2:6a:e2:ac:80:2f:05:c2:b1:04: 7f:84:10:19:53:40:60:fb:91:51:fb:9f:11:36:2d: 0e:86:a1:d6:99:a0:21:e9:b6:01:e2:6d:42:cb:62: fa:c0:ca:69:34:77:2a:26:fa:9f:2d:88:10:a6:89: e0:71:b4:1e:bb:d8:78:00:9c:72:f7:33:47:b5:db: 81:95:aa:32:09:79:b3:a8:b4:ac:cd:38:34:34:c6: 88:9d:61:4f:d2:d6:5a:78:bb:f0:4a:7b:95:4f:99: 6a:b4:8e:e0:44:b6:85:49:4a:9b:da:09:59:2a:cb: bf:49:55:a8:de:74:5b:1c:4d:ec:b5:41:35:92:85: 90:4b:de:15:0f:d4:c9:15:cd:d5:31:37:54:ec:46: 03:59:3f:ae:c8:c3:a9:2c:e9:8e:c1:82:22:ca:64: 2b:60:82:dd:82:fa:47:51:8a:77:53:e5:2d:2b:01: 9a:9f:39:9f:a9:3f:28:b3:e9:73:7e:a9:2d:db:42: 25:67:79:58:63:17:3f:ca:c5:4a:67:83:a0:de:3a: b4:c6:61:fb:5a:62:d3:76:14:e5:b3:79:ee:e4:f1: a3:70:65:b7:42:a5:df:cc:21:60:c8:b3:6e:04:15: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:3C:D8:F1:75:CB:46:77:A5:37:0C:4C:E7:39:E5:81:F8:6E:7F:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.250.237.0/24 Signature Algorithm: sha256WithRSAEncryption ba:65:5c:83:04:61:9e:f9:23:66:b6:97:7e:14:19:9d:5b:09: a4:6c:08:ec:40:91:dd:d6:90:24:42:aa:a1:69:80:1d:49:34: 34:da:04:2a:7e:8c:f6:61:ca:31:b0:c7:e5:e1:a4:f8:78:29: 81:63:52:04:12:e2:80:0f:dc:b4:dd:f4:aa:d2:22:d8:7d:a8: 83:b6:67:0b:b8:61:7a:c7:4e:19:ec:bf:b1:74:5a:ba:17:df: 15:27:af:76:e6:c5:d4:f5:43:c0:6f:b1:7d:6e:bd:40:cb:2a: 14:af:b9:aa:50:df:f9:c3:2c:29:d5:61:da:a2:a4:cc:9c:44: 1e:68:a8:0e:23:e8:8f:9b:ba:81:d1:64:10:6a:27:f3:5d:f8: 70:0e:54:f3:50:4c:bd:5b:30:11:ad:01:ab:4c:39:9b:de:13: 98:65:30:ab:e4:95:03:50:12:50:e8:43:a8:a2:1b:ae:d8:18: 53:d0:98:90:b5:07:17:f9:f9:94:36:73:5c:59:b1:f9:d6:a5: 6f:0c:c5:b1:e5:43:8b:6e:1d:b1:85:61:34:b1:0b:07:f8:cf: 82:df:e8:89:8f:4d:e4:20:86:f7:24:31:e1:c8:6f:5b:ca:08: eb:06:cf:4e:42:8b:18:59:55:e1:33:97:81:6b:a5:34:d7:cd: 89:79:ea:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEjdcNtskXuTbMhGNC8XM/W1Gj7AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUxMTQzWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODg5NGE2NjAxMGU4OTUyYWM3MDI1MTg3ZjZiMjFhOGUz ZTkxYjZkODhjYzZkMDllYjg3MGM0NDZkYjVkNTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzDifgXYIfCa+fD+/mCe+behAD8mrirIAvBcKxBH+EEBlT QGD7kVH7nxE2LQ6GodaZoCHptgHibULLYvrAymk0dyom+p8tiBCmieBxtB672HgA nHL3M0e124GVqjIJebOotKzNODQ0xoidYU/S1lp4u/BKe5VPmWq0juBEtoVJSpva CVkqy79JVajedFscTey1QTWShZBL3hUP1MkVzdUxN1TsRgNZP67Iw6ks6Y7BgiLK ZCtggt2C+kdRindT5S0rAZqfOZ+pPyiz6XN+qS3bQiVneVhjFz/KxUpng6DeOrTG YftaYtN2FOWzee7k8aNwZbdCpd/MIWDIs24EFSfzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUjzY8XXLRnelNwxM5znlgfhuf5MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxNWQ2ZjA0LTM5NjQtNDNhMC05N2IxLTUxODUwYTBiYzBlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi+u0wDQYJKoZIhvcNAQELBQADggEBALplXIMEYZ75I2a2l34UGZ1bCaRs COxAkd3WkCRCqqFpgB1JNDTaBCp+jPZhyjGwx+XhpPh4KYFjUgQS4oAP3LTd9KrS Ith9qIO2Zwu4YXrHThnsv7F0WroX3xUnr3bmxdT1Q8BvsX1uvUDLKhSvuapQ3/nD LCnVYdqipMycRB5oqA4j6I+buoHRZBBqJ/Nd+HAOVPNQTL1bMBGtAatMOZveE5hl MKvklQNQElDoQ6iiG67YGFPQmJC1Bxf5+ZQ2c1xZsfnWpW8MxbHlQ4tuHbGFYTSx Cwf4z4Lf6ImPTeQghvckMeHIb1vKCOsGz05CixhZVeEzl4FrpTTXzYl56uY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:21 2025 by rpki-client