$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa File: 54dba2ae-fa55-448d-8286-0b2647236884.roa (raw, json) Hash identifier: DWHLZV2tSPgQX8YmT+xyOAPtpu2pWVTOVXbE+Z+5LiA= Subject key identifier: A4:58:B2:EE:C9:63:C5:3F:B2:DC:92:F6:FC:36:20:C4:F9:3B:D3:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C0CA6BCB6CDE9702B6BBA968573CBD0F528990C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa Signing time: Tue 22 Apr 2025 15:00:26 +0000 ROA not before: Tue 22 Apr 2025 15:00:26 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:0c:a6:bc:b6:cd:e9:70:2b:6b:ba:96:85:73:cb:d0:f5:28:99:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:00:26 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=18f462a9b12b475d4f4624b461e63788626f65fbd3298188a1d26d3fc307c424, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:dc:7f:6d:f9:85:a5:04:f0:07:fe:df:d7:81: 87:55:14:f3:db:f8:a4:71:aa:e7:fa:9c:4c:72:e7: 2d:64:94:81:0a:8f:2f:1f:fd:ea:1b:3b:a7:77:8d: 04:0e:1f:59:78:29:7b:c0:8c:7e:82:61:63:22:86: 78:32:6f:31:5e:ce:66:3d:93:11:4c:8d:53:bb:dd: 36:6c:75:ad:6f:34:21:5f:31:35:11:70:aa:6c:4a: d5:4e:af:d9:a1:42:78:80:32:82:78:bf:e8:9f:04: fd:76:58:2e:30:d1:52:ca:3c:33:c8:94:1c:85:09: f6:dd:53:35:e0:26:bc:db:d7:79:20:a3:7b:8d:fd: 3c:78:de:8e:d0:70:1a:88:ea:bc:fd:69:79:3e:fd: 9a:4d:9a:02:cb:40:83:b1:6e:ff:57:c4:40:0e:61: 6b:95:ec:2c:91:ab:10:c4:16:12:4b:87:0a:31:03: ca:f2:af:74:69:e3:df:39:54:c9:c2:ae:97:0a:09: 5f:ad:98:15:76:27:a0:9f:e1:1b:1d:ab:07:a2:61: f9:40:b2:17:53:fc:96:15:0a:9f:36:2c:c5:8d:fe: 2e:64:a7:b8:5c:eb:ce:79:ba:f8:92:de:f8:e0:31: 67:27:ff:05:9b:59:d1:42:0f:a0:05:65:c6:18:c9: e3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:58:B2:EE:C9:63:C5:3F:B2:DC:92:F6:FC:36:20:C4:F9:3B:D3:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.168.0/21 Signature Algorithm: sha256WithRSAEncryption bf:ce:2a:36:15:37:be:8f:4d:64:42:60:c9:3a:36:c5:51:b2: f6:be:61:ce:24:a4:94:0e:db:e4:e4:99:b1:87:17:d8:67:8a: 1a:5c:60:78:d1:d7:f6:63:ce:7e:13:73:d6:f9:b8:fe:85:4c: 87:e3:b6:16:41:08:62:f5:9c:d6:78:78:2a:0d:6d:f5:ad:7b: ee:f0:d6:26:43:b9:43:43:7c:af:15:ff:ff:ba:b0:18:b5:58: 8a:11:8d:a1:ea:c4:01:19:75:82:a2:21:52:df:f6:44:c3:1a: 58:e9:7f:b4:0a:ee:15:7f:3a:81:d6:2a:d9:fd:00:e3:5b:cd: d2:f6:ce:cd:6e:85:18:97:a8:eb:a7:92:ca:81:b5:07:1e:28: 7d:a7:ff:af:cc:f4:64:d8:33:97:f2:52:91:c1:6e:7b:ce:ca: ff:3d:43:d7:47:09:8c:c3:d2:99:76:5a:ba:a3:aa:14:45:ee: b3:41:0a:0e:44:9c:b5:9b:7d:39:24:2f:ef:bb:32:4d:e2:4a: e2:fe:3d:71:bd:54:7a:c9:2b:f6:04:a9:66:3a:fb:68:32:eb: 87:c4:3c:31:39:41:08:cc:b1:51:ce:c8:05:3c:2c:bf:48:5e: 38:4b:be:ca:77:ad:f8:64:db:5f:7d:f6:bb:9d:c2:26:2e:b8: 0a:c8:a0:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPAymvLbN6XAra7qWhXPL0PUomQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMDI2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGY0NjJhOWIxMmI0NzVkNGY0NjI0YjQ2MWU2Mzc4ODYy NmY2NWZiZDMyOTgxODhhMWQyNmQzZmMzMDdjNDI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDg3H9t+YWlBPAH/t/XgYdVFPPb+KRxquf6nExy5y1klIEK jy8f/eobO6d3jQQOH1l4KXvAjH6CYWMihngybzFezmY9kxFMjVO73TZsda1vNCFf MTURcKpsStVOr9mhQniAMoJ4v+ifBP12WC4w0VLKPDPIlByFCfbdUzXgJrzb13kg o3uN/Tx43o7QcBqI6rz9aXk+/ZpNmgLLQIOxbv9XxEAOYWuV7CyRqxDEFhJLhwox A8ryr3Rp4985VMnCrpcKCV+tmBV2J6Cf4RsdqweiYflAshdT/JYVCp82LMWN/i5k p7hc6855uviS3vjgMWcn/wWbWdFCD6AFZcYYyePrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpFiy7sljxT+y3JL2/DYgxPk70yQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZGJhMmFlLWZhNTUtNDQ4ZC04Mjg2LTBiMjY0NzIzNjg4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOkmKgwDQYJKoZIhvcNAQELBQADggEBAL/OKjYVN76PTWRCYMk6NsVRsva+ Yc4kpJQO2+TkmbGHF9hnihpcYHjR1/Zjzn4Tc9b5uP6FTIfjthZBCGL1nNZ4eCoN bfWte+7w1iZDuUNDfK8V//+6sBi1WIoRjaHqxAEZdYKiIVLf9kTDGljpf7QK7hV/ OoHWKtn9AONbzdL2zs1uhRiXqOunksqBtQceKH2n/6/M9GTYM5fyUpHBbnvOyv89 Q9dHCYzD0pl2WrqjqhRF7rNBCg5EnLWbfTkkL++7Mk3iSuL+PXG9VHrJK/YEqWY6 +2gy64fEPDE5QQjMsVHOyAU8LL9IXjhLvsp3rfhk21999rudwiYuuArIoK8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:30:15 2025 by rpki-client