$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa File: 59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa (raw, json) Hash identifier: 7hJr2GqfswoJgfaXo+eq/9BYZH+Hc0mDAZ+S00n5GFg= Subject key identifier: C0:AD:2E:D1:97:E7:B1:0A:D6:64:59:F6:2A:51:45:70:EE:33:AC:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D81CBB5774ABEFCF67C113DCD8217976AA614A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa Signing time: Fri 18 Apr 2025 00:42:01 +0000 ROA not before: Fri 18 Apr 2025 00:42:01 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.226.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:81:cb:b5:77:4a:be:fc:f6:7c:11:3d:cd:82:17:97:6a:a6:14:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:42:01 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=7fe4646ba9ccc6293e2794906c7662f0cc7c0057bc49c4e3141857cefd033680, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:2c:b2:cd:c6:5e:a1:6a:49:c7:49:51:fe: 1c:ff:a6:fe:8a:89:60:8f:4f:4d:af:73:68:b2:a4: 77:fa:20:6c:c2:38:7e:44:95:fb:c2:99:40:99:f4: b3:ed:99:d9:a4:6e:01:6f:40:3e:e0:45:3e:34:3c: a7:88:fc:28:67:02:c4:72:98:b4:04:07:07:fa:a5: 0d:20:b4:bb:28:8a:ed:9d:86:6f:81:7f:c7:a4:80: 77:10:c6:02:39:9b:12:79:56:ad:22:4f:8c:f4:cc: 1e:04:bd:49:6c:9c:0d:72:f5:bc:33:ed:3a:2b:cf: 5a:c1:b7:da:80:92:ca:44:49:ac:04:e3:e2:43:fa: 56:2d:95:e2:1b:b6:47:86:0a:6b:d0:fc:01:b9:97: 60:1a:2b:fc:1e:83:70:1e:7b:5e:35:6d:69:cf:1d: 92:b4:48:de:a4:fe:e5:d3:3d:b1:23:13:2e:5d:65: a9:21:ce:16:ce:d8:38:02:4f:ca:61:1f:fe:b3:e2: da:3d:2f:d1:76:39:29:29:08:c1:6b:2d:21:b0:82: 16:d9:49:f4:8e:af:1e:0a:61:36:28:c4:a8:e3:a5: 9f:02:2c:4c:40:e6:52:64:6f:63:7e:f6:5a:a7:9b: d0:3d:f2:4a:78:6a:f6:b8:df:a3:68:20:45:10:f4: 15:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AD:2E:D1:97:E7:B1:0A:D6:64:59:F6:2A:51:45:70:EE:33:AC:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.226.216.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:0f:71:cd:eb:2d:72:03:2c:cf:fc:ea:46:90:b4:38:c2:5c: f6:e2:78:b4:75:82:be:c7:39:18:e2:69:93:8e:76:92:3d:bf: a9:10:a1:e9:c1:cd:99:00:61:50:1c:01:22:3d:5e:4b:d9:cc: e7:ac:bb:fd:40:1f:ce:16:43:28:2b:2a:ef:13:2a:f8:62:98: 6c:f2:71:d4:d1:5c:d4:41:18:ed:c3:c6:d7:27:af:0f:8f:98: 93:b2:7b:87:55:c7:09:8e:21:0d:21:8e:d6:8d:7a:88:ea:07: f4:15:23:4e:a6:75:65:e8:cb:cd:0a:ba:eb:58:e0:8b:99:b0: f6:be:27:95:fc:f1:62:8e:12:5d:56:74:10:35:d2:c5:75:a3: 39:65:da:c7:1a:49:4c:f3:01:65:1f:36:51:e8:c8:49:eb:ec: e1:47:00:bc:de:c7:14:eb:ef:a7:b1:53:6d:6a:9f:f7:49:ee: 28:96:63:48:dd:a4:7f:5a:4c:a8:3e:21:4a:17:76:00:64:b6: 64:1a:a8:ef:30:6c:0a:ba:13:a6:4b:d6:e9:5b:c6:b9:68:97: 87:52:cc:8c:e3:7f:40:88:7d:4a:8b:79:c5:e5:8c:47:86:e4: 3c:40:17:82:3d:93:46:07:b1:0a:7d:94:30:0f:45:c2:66:9a: b0:d8:10:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULYHLtXdKvvz2fBE9zYIXl2qmFKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDA0MjAxWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmU0NjQ2YmE5Y2NjNjI5M2UyNzk0OTA2Yzc2NjJmMGNj N2MwMDU3YmM0OWM0ZTMxNDE4NTdjZWZkMDMzNjgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvSCyyzcZeoWpJx0lR/hz/pv6KiWCPT02vc2iypHf6IGzC OH5ElfvCmUCZ9LPtmdmkbgFvQD7gRT40PKeI/ChnAsRymLQEBwf6pQ0gtLsoiu2d hm+Bf8ekgHcQxgI5mxJ5Vq0iT4z0zB4EvUlsnA1y9bwz7Torz1rBt9qAkspESawE 4+JD+lYtleIbtkeGCmvQ/AG5l2AaK/weg3Aee141bWnPHZK0SN6k/uXTPbEjEy5d ZakhzhbO2DgCT8phH/6z4to9L9F2OSkpCMFrLSGwghbZSfSOrx4KYTYoxKjjpZ8C LExA5lJkb2N+9lqnm9A98kp4ava436NoIEUQ9BWbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwK0u0ZfnsQrWZFn2KlFFcO4zrMgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OTY1ZWI5LWE2NDUtNGZiNy1hNmQ5LWJkZGU5ZTcyNmQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJA4tgwDQYJKoZIhvcNAQELBQADggEBAAoPcc3rLXIDLM/86kaQtDjCXPbi eLR1gr7HORjiaZOOdpI9v6kQoenBzZkAYVAcASI9XkvZzOesu/1AH84WQygrKu8T KvhimGzycdTRXNRBGO3Dxtcnrw+PmJOye4dVxwmOIQ0hjtaNeojqB/QVI06mdWXo y80KuutY4IuZsPa+J5X88WKOEl1WdBA10sV1ozll2scaSUzzAWUfNlHoyEnr7OFH ALzexxTr76exU21qn/dJ7iiWY0jdpH9aTKg+IUoXdgBktmQaqO8wbAq6E6ZL1ulb xrlol4dSzIzjf0CIfUqLecXljEeG5DxAF4I9k0YHsQp9lDAPRcJmmrDYEMY= -----END CERTIFICATE-----Generated at Sat Apr 26 20:20:49 2025 by rpki-client