$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e989a3c-6316-412a-a304-1a759390ec3b.roa File: 5e989a3c-6316-412a-a304-1a759390ec3b.roa (raw, json) Hash identifier: Ny2kSM3so96tqfutrLJkGKXyKAaImY3fnpcR9LejC9Q= Subject key identifier: 72:40:F0:CE:50:06:1C:B2:B2:63:1F:77:90:39:8C:BF:31:39:22:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2378FD12F46BB0A5C1C01D8636598D1C6321C206 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e989a3c-6316-412a-a304-1a759390ec3b.roa Signing time: Tue 22 Apr 2025 00:00:55 +0000 ROA not before: Tue 22 Apr 2025 00:00:55 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.26.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:78:fd:12:f4:6b:b0:a5:c1:c0:1d:86:36:59:8d:1c:63:21:c2:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:00:55 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=26cbac66740d5813e21d9b82d1d019ad653ff4ebf9aeedb47a8e22e91dcc0002, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:33:f6:b8:88:a7:98:b1:7b:80:d7:06:00:9b: 12:1f:25:57:e5:ba:bb:81:c9:f3:1c:eb:c9:4b:cf: 9d:d0:f4:66:37:48:d1:18:04:38:b8:06:80:d7:b0: bd:ff:d4:f2:33:1c:40:5c:46:1d:a9:f4:2f:2b:7b: 9e:41:4c:fa:97:15:3c:13:25:78:92:67:a8:60:09: b5:23:f7:77:87:91:a2:01:c8:7d:52:cf:52:b9:00: a6:ac:b8:6f:22:aa:db:e4:bf:d3:42:40:b3:12:f3: c2:ab:e0:f9:77:30:df:07:bc:48:74:0f:40:4d:2b: c2:59:a1:bc:2e:b8:05:88:27:69:c1:79:11:a4:b0: 89:c7:08:eb:31:ad:5b:0a:5a:95:cc:39:bb:a5:b4: 36:5b:e7:a8:43:65:70:e1:03:60:21:ed:1d:64:10: 02:a1:54:24:a6:74:64:b8:c6:4d:5c:77:50:38:df: 5f:57:57:bd:23:06:33:d8:e7:25:8e:e5:1a:1a:a5: a8:ca:93:20:66:25:55:f4:dc:cb:8a:fc:67:63:07: 81:1a:2b:de:f1:f0:6f:44:84:bb:7e:17:44:c1:1f: 62:35:4d:de:30:d4:d5:35:b7:0a:e0:7c:ee:16:7a: cf:83:a7:a4:aa:3c:0d:ac:1a:da:9c:ce:8a:a5:d3: d3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:40:F0:CE:50:06:1C:B2:B2:63:1F:77:90:39:8C:BF:31:39:22:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e989a3c-6316-412a-a304-1a759390ec3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.26.0.0/16 Signature Algorithm: sha256WithRSAEncryption ce:07:73:53:d0:7e:2f:78:37:5d:42:fd:8b:a5:cb:1e:f2:f6: c1:ca:42:9e:34:22:08:2e:ce:94:d3:b6:d3:db:83:7a:f6:c4: f9:89:73:79:bd:e7:48:5e:0e:81:2f:47:77:34:c0:2b:33:ae: 66:31:71:6a:ff:d8:33:51:8e:a4:97:e6:2d:63:3d:12:e4:e5: 11:b1:a3:43:cd:87:bb:54:bd:2c:10:6b:40:7b:51:b6:20:23: af:cb:26:c3:c5:be:f9:bb:ce:59:35:ec:1c:67:c5:ac:7c:e9: 25:3e:df:9b:24:6c:2b:1d:b8:d1:36:ec:d1:b8:a7:9f:33:da: 3f:39:69:a4:8c:a4:d5:56:34:98:57:7e:4d:99:3c:db:ac:62: 8b:c8:31:c0:d5:e7:29:bc:ad:d5:9e:48:44:1f:1a:9d:47:c0: 5c:69:77:1e:25:03:ad:13:3d:c5:7a:3c:28:c2:43:c7:59:ab: b6:32:3d:75:29:99:9b:b9:75:92:2c:ac:63:be:7a:56:4b:94: d1:26:47:c3:a6:a3:1f:a0:bc:66:61:4a:94:8c:74:7a:fc:0b: 9f:2e:b2:24:49:f3:3e:e5:3e:9e:65:10:ca:5e:36:88:e8:f3: 97:bf:04:71:78:20:32:e5:a8:2b:51:ed:fe:cf:21:95:18:0d: aa:b4:ac:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI3j9EvRrsKXBwB2GNlmNHGMhwgYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMDU1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmNiYWM2Njc0MGQ1ODEzZTIxZDliODJkMWQwMTlhZDY1 M2ZmNGViZjlhZWVkYjQ3YThlMjJlOTFkY2MwMDAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDM/a4iKeYsXuA1wYAmxIfJVfluruByfMc68lLz53Q9GY3 SNEYBDi4BoDXsL3/1PIzHEBcRh2p9C8re55BTPqXFTwTJXiSZ6hgCbUj93eHkaIB yH1Sz1K5AKasuG8iqtvkv9NCQLMS88Kr4Pl3MN8HvEh0D0BNK8JZobwuuAWIJ2nB eRGksInHCOsxrVsKWpXMObultDZb56hDZXDhA2Ah7R1kEAKhVCSmdGS4xk1cd1A4 319XV70jBjPY5yWO5RoapajKkyBmJVX03MuK/GdjB4EaK97x8G9EhLt+F0TBH2I1 Td4w1NU1twrgfO4Wes+Dp6SqPA2sGtqczoql09OjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUckDwzlAGHLKyYx93kDmMvzE5IuwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlOTg5YTNjLTYzMTYtNDEyYS1hMzA0LTFhNzU5MzkwZWMzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCqGjANBgkqhkiG9w0BAQsFAAOCAQEAzgdzU9B+L3g3XUL9i6XLHvL2wcpC njQiCC7OlNO209uDevbE+Ylzeb3nSF4OgS9HdzTAKzOuZjFxav/YM1GOpJfmLWM9 EuTlEbGjQ82Hu1S9LBBrQHtRtiAjr8smw8W++bvOWTXsHGfFrHzpJT7fmyRsKx24 0Tbs0binnzPaPzlppIyk1VY0mFd+TZk826xii8gxwNXnKbyt1Z5IRB8anUfAXGl3 HiUDrRM9xXo8KMJDx1mrtjI9dSmZm7l1kiysY756VkuU0SZHw6ajH6C8ZmFKlIx0 evwLny6yJEnzPuU+nmUQyl42iOjzl78EcXggMuWoK1Ht/s8hlRgNqrSsWQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:51:01 2025 by rpki-client