$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e7587b9-c93b-416e-8a96-b14448cc1bc1.roa File: 5e7587b9-c93b-416e-8a96-b14448cc1bc1.roa (raw, json) Hash identifier: 7ZTY9jFWgnrgvQrmW4+2pfLwomVzXrMKevb9A1qzH6w= Subject key identifier: A5:0F:30:5E:B5:1C:89:95:E5:46:89:75:42:90:28:B1:04:2B:72:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F70444426B72B0E6A0DE307E1A2229368F950EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e7587b9-c93b-416e-8a96-b14448cc1bc1.roa Signing time: Tue 08 Apr 2025 00:01:10 +0000 ROA not before: Tue 08 Apr 2025 00:01:10 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.213.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:70:44:44:26:b7:2b:0e:6a:0d:e3:07:e1:a2:22:93:68:f9:50:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:01:10 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=933143fa4d8e83fc8244e54385b0224e55a9faf82639b9baa5026c7bd984639c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:13:ff:35:37:a9:7f:27:0f:e0:c9:2f:d8:2f: 10:53:37:26:f9:71:7f:11:64:40:98:cc:ba:50:78: 23:71:35:0d:87:97:d0:57:1c:ec:9e:0a:af:88:3e: 52:c8:d6:d2:a4:4a:f8:cb:35:88:75:64:a8:2b:1b: 32:51:ba:84:32:6a:74:2a:de:22:aa:8e:4e:cb:79: 61:0f:31:fe:8a:af:44:fc:c7:4c:09:25:e2:b6:c3: a2:f5:bb:6e:ff:95:7d:25:89:bb:89:65:19:3c:26: 5e:51:58:83:9d:02:62:3f:d4:76:8b:10:0a:b3:23: 75:58:c2:b6:30:6b:6c:f5:dd:5b:5d:df:63:77:d9: 9e:98:74:05:19:99:31:a8:2d:d3:19:99:90:e6:ba: 22:40:47:d7:68:e0:fa:9d:c6:65:a1:bf:3f:30:10: 7f:e5:86:28:49:f7:fe:8d:5a:fc:b1:1a:9a:2c:d9: cf:b3:c9:1c:b5:19:16:50:48:36:33:6d:16:8d:df: 09:3b:c0:f7:0c:ad:ed:6f:35:48:57:07:0e:3c:a0: e9:42:75:53:17:4c:0a:60:39:ab:57:ee:e8:be:02: f2:63:65:e4:5a:79:9a:69:cf:36:5e:6b:0f:ce:27: cf:f4:ed:f1:ee:96:d0:56:97:ed:80:8e:24:58:33: 92:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0F:30:5E:B5:1C:89:95:E5:46:89:75:42:90:28:B1:04:2B:72:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e7587b9-c93b-416e-8a96-b14448cc1bc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.213.232.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:78:fc:2b:71:bb:2c:5b:e5:9b:35:fd:08:87:33:61:ca:fe: c4:56:94:83:92:eb:1b:ec:2a:07:61:68:88:c5:ca:b3:b7:3f: be:00:0b:fa:d4:89:bb:67:3c:21:8d:53:cc:e7:06:4b:e5:66: f4:ab:e1:f3:a7:e1:94:29:be:44:7c:4f:c0:81:dd:fa:66:b9: 1f:da:d2:29:e9:6a:1d:1e:05:33:f2:32:25:f6:52:b5:59:68: 3d:d7:b9:03:48:a6:36:27:4e:50:d2:ca:9e:c5:0e:a7:a1:b2: aa:22:ea:72:08:16:a7:d5:b5:b5:03:16:f0:32:44:d2:84:43: 49:f2:8e:da:fe:33:3d:2e:51:cd:22:ce:d3:d8:99:c9:7e:fc: 7d:bc:d6:c7:ce:6e:f1:81:00:69:e2:59:52:2e:f3:a4:00:6c: 9e:7e:27:89:74:ed:c4:88:08:aa:a2:54:51:77:9b:c9:8e:e1: 5b:48:78:4e:2a:06:60:6f:ae:67:0d:f0:b5:1f:e4:52:d0:ca: 17:98:c1:91:41:99:a2:00:ee:6c:d1:16:45:16:a2:93:e0:f0: a4:b8:7e:92:1f:80:f2:3b:9c:ff:a3:bd:20:56:22:8c:54:b9: 98:66:53:ef:ae:6e:d9:85:bf:16:3a:ba:6b:f4:09:fa:19:32: 89:51:e7:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT3BERCa3Kw5qDeMH4aIik2j5UOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAwMTEwWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzMxNDNmYTRkOGU4M2ZjODI0NGU1NDM4NWIwMjI0ZTU1 YTlmYWY4MjYzOWI5YmFhNTAyNmM3YmQ5ODQ2MzljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0E/81N6l/Jw/gyS/YLxBTNyb5cX8RZECYzLpQeCNxNQ2H l9BXHOyeCq+IPlLI1tKkSvjLNYh1ZKgrGzJRuoQyanQq3iKqjk7LeWEPMf6Kr0T8 x0wJJeK2w6L1u27/lX0libuJZRk8Jl5RWIOdAmI/1HaLEAqzI3VYwrYwa2z13Vtd 32N32Z6YdAUZmTGoLdMZmZDmuiJAR9do4PqdxmWhvz8wEH/lhihJ9/6NWvyxGpos 2c+zyRy1GRZQSDYzbRaN3wk7wPcMre1vNUhXBw48oOlCdVMXTApgOatX7ui+AvJj ZeRaeZppzzZeaw/OJ8/07fHultBWl+2AjiRYM5KtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpQ8wXrUciZXlRol1QpAosQQrcqcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlNzU4N2I5LWM5M2ItNDE2ZS04YTk2LWIxNDQ0OGNjMWJjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi1egwDQYJKoZIhvcNAQELBQADggEBAB14/Ctxuyxb5Zs1/QiHM2HK/sRW lIOS6xvsKgdhaIjFyrO3P74AC/rUibtnPCGNU8znBkvlZvSr4fOn4ZQpvkR8T8CB 3fpmuR/a0inpah0eBTPyMiX2UrVZaD3XuQNIpjYnTlDSyp7FDqehsqoi6nIIFqfV tbUDFvAyRNKEQ0nyjtr+Mz0uUc0iztPYmcl+/H281sfObvGBAGniWVIu86QAbJ5+ J4l07cSICKqiVFF3m8mO4VtIeE4qBmBvrmcN8LUf5FLQyheYwZFBmaIA7mzRFkUW opPg8KS4fpIfgPI7nP+jvSBWIoxUuZhmU++ubtmFvxY6umv0CfoZMolR57w= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:34 2025 by rpki-client