$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json) Hash identifier: 2h9m69rLoAtTBsKq7hruRomvdhJiRUqjjBMvqbZVD1o= Subject key identifier: 31:45:0C:99:D4:36:8A:85:80:A5:43:9D:2D:41:52:77:D9:6A:66:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0839695D0B1F1B61803DB141ECAA0E1801CC25C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa Signing time: Fri 11 Apr 2025 00:10:16 +0000 ROA not before: Fri 11 Apr 2025 00:10:16 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:39:69:5d:0b:1f:1b:61:80:3d:b1:41:ec:aa:0e:18:01:cc:25:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:16 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=5e48ee465b1cde97b2927cee373e8770ee895acf1c3dd9fa422a906e48454499, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:00:c2:3c:fb:b6:62:35:ae:1c:ea:8b:44: d6:bf:3a:4c:c4:9d:01:3b:5b:48:b9:63:be:64:70: d7:d1:1e:53:3a:df:cc:3b:89:ad:68:52:15:98:88: dd:52:7e:75:a8:e4:cf:b2:34:69:08:c5:ac:fc:f2: c0:15:ac:39:bc:5c:1d:67:97:0f:e0:da:01:d5:b0: 98:fc:67:b9:73:c0:2e:35:8a:27:03:a8:16:2e:ac: 27:e9:e7:59:6d:2d:c1:78:76:6b:c4:0a:5e:11:34: 78:5d:83:12:a7:4f:fe:7c:9e:8f:0a:ba:ad:79:78: 1a:d3:50:cd:09:da:8a:a0:9f:01:15:7f:ae:d2:7a: 5d:bc:27:73:da:f1:f5:31:93:7d:18:c2:54:5d:fd: b2:44:ed:b5:eb:54:bc:d8:02:37:06:f1:5a:0e:f7: 65:95:7b:7a:0b:f9:82:20:1c:72:20:ff:f9:06:4a: 73:34:90:f8:ba:2a:dd:95:f7:37:12:e0:02:17:3e: 15:3d:43:a1:42:4b:0a:92:a6:70:c9:93:71:e5:74: 67:a6:c8:2a:29:3c:1e:9b:a7:aa:85:e6:40:4a:cc: 9e:22:4d:e9:8a:50:a3:31:1d:ee:a8:d4:11:18:f3: 8b:ef:77:cd:29:42:62:b0:3d:43:1c:50:7e:2a:de: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:45:0C:99:D4:36:8A:85:80:A5:43:9D:2D:41:52:77:D9:6A:66:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption c0:d0:ff:dd:e1:9e:b3:74:1e:d1:de:6a:f8:47:ea:26:3f:a6: 6d:37:b1:42:66:4e:35:24:bc:4f:d0:91:0b:c1:4c:b6:75:1d: c9:4a:79:01:b8:47:08:0d:68:99:86:05:d3:a3:0a:cd:8d:0c: 2a:0b:1a:d2:bf:04:46:d0:28:01:09:dc:62:84:72:05:9d:f2: 1e:ae:6c:90:f3:fb:e9:5c:8f:a2:68:2a:54:16:34:44:3b:da: f8:c4:2e:2c:9a:b0:9e:d4:ff:67:ea:59:42:91:4b:79:b2:fd: 3e:31:be:4d:b7:b1:b2:bc:0f:f1:35:3b:36:a9:82:eb:97:1b: 37:81:10:3e:4e:ca:f0:80:9c:07:3e:e6:2d:df:3f:44:ef:d5: 93:e2:f3:c9:bf:4c:74:41:e8:c2:c2:ca:e6:2f:95:e8:d3:e1: cc:92:89:ce:70:aa:d7:d8:e8:ee:94:36:8b:d7:b2:5a:08:f6: 9c:41:27:51:f5:7e:94:56:04:ae:a2:f7:71:fd:3b:63:fe:8e: 59:3b:25:cd:50:45:0a:02:46:93:c7:44:ec:6a:e3:3c:e9:75: 7f:aa:66:29:9a:ec:bf:c2:81:60:18:d2:24:63:42:71:1a:04: 9d:da:a3:f1:ad:97:95:d7:23:96:e2:ce:ce:60:f6:55:8d:01: 89:ba:60:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCDlpXQsfG2GAPbFB7KoOGAHMJccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDE2WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTQ4ZWU0NjViMWNkZTk3YjI5MjdjZWUzNzNlODc3MGVl ODk1YWNmMWMzZGQ5ZmE0MjJhOTA2ZTQ4NDU0NDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyOQDCPPu2YjWuHOqLRNa/OkzEnQE7W0i5Y75kcNfRHlM6 38w7ia1oUhWYiN1SfnWo5M+yNGkIxaz88sAVrDm8XB1nlw/g2gHVsJj8Z7lzwC41 iicDqBYurCfp51ltLcF4dmvECl4RNHhdgxKnT/58no8Kuq15eBrTUM0J2oqgnwEV f67Sel28J3Pa8fUxk30YwlRd/bJE7bXrVLzYAjcG8VoO92WVe3oL+YIgHHIg//kG SnM0kPi6Kt2V9zcS4AIXPhU9Q6FCSwqSpnDJk3HldGemyCopPB6bp6qF5kBKzJ4i TemKUKMxHe6o1BEY84vvd80pQmKwPUMcUH4q3ggLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMUUMmdQ2ioWApUOdLUFSd9lqZtkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZTBjYWZkLTBkZTYtNDhiOC1iZDQzLWY4MWJkNDRmNmZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlBQwDQYJKoZIhvcNAQELBQADggEBAMDQ/93hnrN0HtHeavhH6iY/pm03 sUJmTjUkvE/QkQvBTLZ1HclKeQG4RwgNaJmGBdOjCs2NDCoLGtK/BEbQKAEJ3GKE cgWd8h6ubJDz++lcj6JoKlQWNEQ72vjELiyasJ7U/2fqWUKRS3my/T4xvk23sbK8 D/E1OzapguuXGzeBED5OyvCAnAc+5i3fP0Tv1ZPi88m/THRB6MLCyuYvlejT4cyS ic5wqtfY6O6UNovXsloI9pxBJ1H1fpRWBK6i93H9O2P+jlk7Jc1QRQoCRpPHROxq 4zzpdX+qZima7L/CgWAY0iRjQnEaBJ3ao/Gtl5XXI5bizs5g9lWNAYm6YEw= -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:49 2025 by rpki-client