$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa File: 6177c01a-062c-4ee0-a13a-c6306967b6d0.roa (raw, json) Hash identifier: edKpXh7fNe3ZxthwMA8ablGPsjHec29YSMuu/Ljzc34= Subject key identifier: 4E:F5:81:F9:0B:C5:F8:2D:65:D5:75:D4:4E:E8:7A:03:85:EE:84:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A2FC9A0F9EA4FD26380647B57F7AA769A810792 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa Signing time: Wed 23 Apr 2025 00:51:35 +0000 ROA not before: Wed 23 Apr 2025 00:51:35 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:2f:c9:a0:f9:ea:4f:d2:63:80:64:7b:57:f7:aa:76:9a:81:07:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:35 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=d77bedaf6fd8bc7b89c57914b8ebf0f38b9e1ef88c68d63a8ebf707dee3a9873, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:58:db:20:e0:05:d0:e7:ba:54:24:c7:88:c8: 2b:ca:a0:62:ba:07:2e:a1:b4:da:8b:0a:ba:e6:bb: 6c:f4:2b:0e:de:d9:4a:cf:a6:2f:67:1a:4e:93:91: e6:14:ed:72:60:16:37:e8:6d:66:a6:ed:5a:67:20: b3:b5:48:4d:43:4d:41:94:d8:85:2e:9b:57:95:f9: 7a:c5:07:37:d4:f9:83:a1:33:c0:b7:ae:89:10:04: 13:59:3f:0d:6b:d7:16:53:51:cc:6c:d3:40:02:f1: 6c:51:08:10:18:b5:d2:59:5e:1c:24:93:c7:9c:17: 24:41:5d:ff:2d:3c:74:61:1c:8e:fd:02:0c:36:d5: e7:22:cc:89:76:01:ed:82:15:05:6d:0a:27:7c:e0: f4:d9:57:69:dd:c4:0f:0d:44:f0:ea:33:ef:7b:f5: 44:df:fc:39:52:54:6b:15:b2:b7:82:32:2e:68:24: db:82:5f:22:86:5d:53:5b:88:50:15:c4:21:b2:9d: e2:d2:b9:c8:06:3f:39:db:44:bb:df:6c:87:d2:27: 66:f5:66:f5:d4:62:ab:62:b8:65:d4:5d:7b:4d:34: b9:26:31:5c:c7:9b:54:a9:c9:73:40:64:40:17:de: ff:99:46:50:95:6f:84:47:61:d5:c9:68:b8:b2:f3: 2a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F5:81:F9:0B:C5:F8:2D:65:D5:75:D4:4E:E8:7A:03:85:EE:84:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:8d:1a:56:7f:fd:23:d9:61:cc:50:83:99:51:5e:cc:4c:64: 3f:8c:c3:d4:3c:40:69:25:2f:90:6d:d0:66:4a:2a:8c:58:bf: bb:f7:7c:a4:b2:df:3e:cf:48:16:56:7c:02:70:45:bc:63:eb: 59:4a:06:11:ab:59:77:0e:4a:48:a7:42:b4:b3:87:62:cc:76: 7b:1e:a1:e1:85:ec:a6:05:cb:00:39:94:7e:27:77:33:44:f7: 52:19:05:53:b2:84:ca:96:8f:9f:bb:b6:96:e3:18:f7:2b:8d: 72:76:92:e4:43:29:ab:24:7c:5d:00:4d:f2:8a:56:59:c6:56: 23:29:e7:fe:00:66:8d:7e:d7:d0:41:4c:34:cf:27:0e:6b:ea: 78:e1:d8:95:a5:e8:8d:ed:4f:ec:6e:34:73:a5:3d:66:53:82: 45:af:d0:15:ef:c2:85:85:eb:c5:69:ad:6a:47:69:31:12:bc: e7:c8:d7:c3:65:b7:f0:b3:71:a4:e4:00:d7:6b:31:20:12:e4: 68:88:b0:c0:45:ee:0d:3c:6d:a2:23:ec:83:3f:66:05:26:63: 5a:8e:68:35:4c:0e:12:d9:e7:25:81:5f:a8:b6:39:8e:37:a6: 55:67:8f:d9:81:61:a5:63:22:f8:ef:ba:db:4a:25:50:4c:0c: 20:7d:48:c0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUai/JoPnqT9JjgGR7V/eqdpqBB5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTM1WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzdiZWRhZjZmZDhiYzdiODljNTc5MTRiOGViZjBmMzhi OWUxZWY4OGM2OGQ2M2E4ZWJmNzA3ZGVlM2E5ODczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFWNsg4AXQ57pUJMeIyCvKoGK6By6htNqLCrrmu2z0Kw7e 2UrPpi9nGk6TkeYU7XJgFjfobWam7VpnILO1SE1DTUGU2IUum1eV+XrFBzfU+YOh M8C3rokQBBNZPw1r1xZTUcxs00AC8WxRCBAYtdJZXhwkk8ecFyRBXf8tPHRhHI79 Agw21ecizIl2Ae2CFQVtCid84PTZV2ndxA8NRPDqM+979UTf/DlSVGsVsreCMi5o JNuCXyKGXVNbiFAVxCGyneLSucgGPznbRLvfbIfSJ2b1ZvXUYqtiuGXUXXtNNLkm MVzHm1SpyXNAZEAX3v+ZRlCVb4RHYdXJaLiy8yobAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTvWB+QvF+C1l1XXUTuh6A4XuhAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNzdjMDFhLTA2MmMtNGVlMC1hMTNhLWM2MzA2OTY3YjZkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCugTANBgkqhkiG9w0BAQsFAAOCAQEADo0aVn/9I9lhzFCDmVFezExkP4zD 1DxAaSUvkG3QZkoqjFi/u/d8pLLfPs9IFlZ8AnBFvGPrWUoGEatZdw5KSKdCtLOH Ysx2ex6h4YXspgXLADmUfid3M0T3UhkFU7KEypaPn7u2luMY9yuNcnaS5EMpqyR8 XQBN8opWWcZWIynn/gBmjX7X0EFMNM8nDmvqeOHYlaXoje1P7G40c6U9ZlOCRa/Q Fe/ChYXrxWmtakdpMRK858jXw2W38LNxpOQA12sxIBLkaIiwwEXuDTxtoiPsgz9m BSZjWo5oNUwOEtnnJYFfqLY5jjemVWeP2YFhpWMi+O+620olUEwMIH1IwA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:27 2025 by rpki-client