$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa File: 63cb1e87-639b-487c-bdb6-3408ff537e1d.roa (raw, json) Hash identifier: BNAgozt/kTSyynW49MjOFNEYIslSK7GBqvln5bMKAbs= Subject key identifier: 94:27:1C:E1:5E:17:C0:11:4C:E0:32:28:6A:83:07:B0:9F:92:BD:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58026A075AF36BFCFF0F43FC4D53786AD2A17218 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa Signing time: Sat 26 Apr 2025 00:01:13 +0000 ROA not before: Sat 26 Apr 2025 00:01:13 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 148.94.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:02:6a:07:5a:f3:6b:fc:ff:0f:43:fc:4d:53:78:6a:d2:a1:72:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:01:13 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=0ca117d63d5aee454af5f8c0d8fa1c7a248db2bd301baac4327ec14186de5c17, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:9e:45:25:60:a4:75:97:db:e4:9f:24:85: 5b:7a:8e:0d:d1:92:d6:67:6a:6f:c3:a2:a8:dd:68: a4:2c:13:be:f6:48:35:d3:c0:f5:16:1a:4e:4e:c5: d2:4c:17:a8:2e:c7:26:e1:cb:53:48:2a:37:44:5e: 9e:85:8b:a6:70:11:29:26:43:8d:ea:a3:fe:6c:ea: bf:80:eb:8a:80:75:25:35:a8:a0:1d:49:f0:55:0c: e2:ba:e4:29:9c:1d:e6:5a:bc:9f:05:fc:5a:f4:93: 67:3f:9b:7e:88:9f:f2:5a:48:2b:0e:90:40:04:0d: ff:f6:c4:e8:15:22:69:26:43:9e:7c:86:3a:fc:61: 73:03:91:c4:2e:ec:85:1b:bb:67:aa:6c:86:c1:5e: fb:c1:44:35:c2:a1:a9:18:11:6d:1b:84:f5:e3:01: a0:13:bf:18:d4:3a:af:4e:4a:91:f8:c9:96:d1:fb: 5d:89:36:01:33:24:bc:fd:62:dd:1a:6b:1a:7d:3f: 97:54:13:13:e2:99:5e:79:d4:35:0c:8b:24:a1:09: 1a:23:85:02:64:0e:33:6d:dd:53:91:8d:a0:4c:e1: 14:22:43:9d:6f:b8:ce:00:00:43:c5:b0:73:00:c0: 3a:73:94:1b:b9:3e:19:f1:b1:13:d1:5d:ec:89:f0: d4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:27:1C:E1:5E:17:C0:11:4C:E0:32:28:6A:83:07:B0:9F:92:BD:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.94.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:45:3c:6a:de:4e:bb:48:81:0a:f0:7d:ed:89:c1:0a:5b:76: 8d:4a:25:7f:7b:18:16:ae:f4:e4:56:db:18:4d:de:c1:44:51: fe:fd:46:1a:9d:87:81:5c:0d:f2:a5:c5:99:13:f3:11:28:5a: a2:28:f1:80:04:00:0a:b2:1c:e3:fd:b7:2d:53:2f:4c:54:ed: c4:5a:99:4b:78:18:f6:83:44:5e:c4:e9:16:f4:1c:e2:fd:a9: b4:87:7d:2a:01:49:ad:07:4e:dd:3e:76:78:92:29:14:f7:0d: ef:33:0c:7b:0e:fb:b6:30:b3:ef:d5:69:f4:20:43:bd:0e:dd: 56:a1:8a:bb:e3:e3:d6:c2:88:8e:44:eb:f3:e7:45:dd:9d:4e: 1f:d1:24:46:90:62:53:53:13:dd:f2:03:e7:d0:8d:22:d9:76: 8a:e4:cc:47:15:28:a7:33:0b:f4:72:46:77:b4:7b:79:a8:7a: a2:10:c4:11:e8:eb:be:08:73:56:c9:1f:9a:06:bd:6b:95:08: 27:18:3f:4a:05:93:ad:13:39:80:d7:65:93:cc:3f:d9:71:2f: ff:22:31:0e:39:93:f3:50:4d:7b:e9:c8:73:1f:13:50:90:1c: 53:94:d2:85:85:dc:f9:d8:67:8a:c9:87:3b:7d:a0:73:98:59: 33:43:83:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWAJqB1rza/z/D0P8TVN4atKhchgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI2MDAwMTEzWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2ExMTdkNjNkNWFlZTQ1NGFmNWY4YzBkOGZhMWM3YTI0 OGRiMmJkMzAxYmFhYzQzMjdlYzE0MTg2ZGU1YzE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAkJ5FJWCkdZfb5J8khVt6jg3RktZnam/DoqjdaKQsE772 SDXTwPUWGk5OxdJMF6guxybhy1NIKjdEXp6Fi6ZwESkmQ43qo/5s6r+A64qAdSU1 qKAdSfBVDOK65CmcHeZavJ8F/Fr0k2c/m36In/JaSCsOkEAEDf/2xOgVImkmQ558 hjr8YXMDkcQu7IUbu2eqbIbBXvvBRDXCoakYEW0bhPXjAaATvxjUOq9OSpH4yZbR +12JNgEzJLz9Yt0aaxp9P5dUExPimV551DUMiyShCRojhQJkDjNt3VORjaBM4RQi Q51vuM4AAEPFsHMAwDpzlBu5PhnxsRPRXeyJ8NSFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlCcc4V4XwBFM4DIoaoMHsJ+SvWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzY2IxZTg3LTYzOWItNDg3Yy1iZGI2LTM0MDhmZjUzN2UxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUXjANBgkqhkiG9w0BAQsFAAOCAQEAt0U8at5Ou0iBCvB97YnBClt2jUol f3sYFq705FbbGE3ewURR/v1GGp2HgVwN8qXFmRPzEShaoijxgAQACrIc4/23LVMv TFTtxFqZS3gY9oNEXsTpFvQc4v2ptId9KgFJrQdO3T52eJIpFPcN7zMMew77tjCz 79Vp9CBDvQ7dVqGKu+Pj1sKIjkTr8+dF3Z1OH9EkRpBiU1MT3fID59CNItl2iuTM RxUopzML9HJGd7R7eah6ohDEEejrvghzVskfmga9a5UIJxg/SgWTrRM5gNdlk8w/ 2XEv/yIxDjmT81BNe+nIcx8TUJAcU5TShYXc+dhnismHO32gc5hZM0OD9w== -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:55 2025 by rpki-client