$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a7362-e583-47b6-a477-44ef54138188.roa File: 672a7362-e583-47b6-a477-44ef54138188.roa (raw, json) Hash identifier: dkFm52JUsYyHxghYuTamoH6GU+GUsAg4Payz1MXb4v0= Subject key identifier: DE:5E:F5:42:23:6D:2C:82:C3:82:A5:5E:95:EB:73:F2:46:30:95:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01CDFE3AB54A98C71327D11F980A90D1664E4CB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a7362-e583-47b6-a477-44ef54138188.roa Signing time: Fri 04 Apr 2025 00:11:46 +0000 ROA not before: Fri 04 Apr 2025 00:11:46 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.26.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:cd:fe:3a:b5:4a:98:c7:13:27:d1:1f:98:0a:90:d1:66:4e:4c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:46 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=7ce8c235412bc3ee7b3a81114ace8b1265230d866b5fcaeac1b7753bfb329cee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:72:85:9e:31:02:4e:c0:9a:2b:cb:86:c0:2b: 6b:b9:d6:fe:4c:cb:c4:bd:91:b5:cb:ba:50:79:3c: d5:92:a0:2c:6e:b3:f9:9c:bc:c2:b1:6f:29:5d:bc: 94:41:57:18:50:3a:aa:1f:60:a8:9a:ee:61:67:29: 41:bf:d9:35:b9:fe:5c:e6:96:fd:14:2e:a7:54:66: 34:7b:3a:45:61:d3:87:b7:d0:a7:5c:2c:2c:0d:b3: a8:d0:ff:01:f6:75:7d:63:ba:4e:27:18:a8:a4:2c: 3e:f5:96:49:a8:7b:50:3e:cf:2b:4d:76:9d:d8:5d: a0:63:fa:5d:10:e3:1d:cf:75:79:6e:dd:e0:50:99: 54:ee:6c:34:d0:e1:c6:f0:d1:d1:b9:7f:86:8f:49: 3f:96:eb:44:ca:84:c7:a2:11:11:78:f5:1e:25:7f: d8:a7:32:ee:11:ee:07:e0:01:dd:42:a2:91:91:be: cb:ec:f2:21:0e:e2:95:aa:2c:50:4d:b6:ab:0b:d9: 6c:31:b2:6e:f7:1a:41:d3:7a:cc:67:7e:5d:f7:3f: 7f:9d:89:21:3a:bc:78:31:75:54:47:45:4c:47:dc: 1e:90:10:74:6b:53:61:9e:cf:00:c3:87:0d:9b:9f: be:22:8d:f5:84:14:84:69:7a:32:af:00:44:e7:c4: 62:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:5E:F5:42:23:6D:2C:82:C3:82:A5:5E:95:EB:73:F2:46:30:95:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a7362-e583-47b6-a477-44ef54138188.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6f:96:b3:fe:d0:9b:8b:61:5f:b0:62:09:bd:44:1b:d1:fb:c6: fa:dd:d1:62:c1:e9:00:f4:cc:7b:c5:d5:60:61:e0:e3:1b:69: c8:64:d0:04:29:32:ef:9c:fe:11:04:64:21:c6:fd:c1:d8:1f: a6:bf:be:18:dc:06:3e:d9:2b:e6:75:eb:ef:19:73:56:c8:68: 36:02:ed:ba:ca:68:1d:e0:7a:77:42:46:f5:15:b9:19:10:20: 7b:8d:7e:54:56:3c:b3:93:ac:fd:5c:de:3d:03:02:f1:93:7c: 6b:35:87:6c:4a:4a:07:80:86:59:ce:37:cc:e8:27:e1:72:c3: 6a:20:40:3f:ea:0c:40:ce:e8:7a:d0:26:fc:2c:b4:c4:8b:9e: 6a:d7:89:5f:2f:16:b3:b9:3d:cb:21:93:7c:d1:92:d5:4a:1d: 83:ef:09:da:6f:98:c1:d5:38:72:be:88:06:88:fa:98:07:eb: 69:fd:cc:cc:78:4d:e0:b5:e5:d9:41:1c:6d:26:b4:4f:51:d4: 5a:9d:e8:a4:78:82:8a:2b:0d:08:2d:dc:c8:f2:84:46:0f:70: b1:e2:2f:ed:26:1f:3e:14:66:8c:30:2a:ac:3f:6a:ef:78:8b: 7d:cd:29:2e:7b:f8:a9:60:e4:51:94:11:b9:a5:b3:5f:b3:aa: 99:27:f0:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAc3+OrVKmMcTJ9EfmAqQ0WZOTLUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTQ2WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2U4YzIzNTQxMmJjM2VlN2IzYTgxMTE0YWNlOGIxMjY1 MjMwZDg2NmI1ZmNhZWFjMWI3NzUzYmZiMzI5Y2VlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXcoWeMQJOwJory4bAK2u51v5My8S9kbXLulB5PNWSoCxu s/mcvMKxbyldvJRBVxhQOqofYKia7mFnKUG/2TW5/lzmlv0ULqdUZjR7OkVh04e3 0KdcLCwNs6jQ/wH2dX1juk4nGKikLD71lkmoe1A+zytNdp3YXaBj+l0Q4x3PdXlu 3eBQmVTubDTQ4cbw0dG5f4aPST+W60TKhMeiERF49R4lf9inMu4R7gfgAd1CopGR vsvs8iEO4pWqLFBNtqsL2Wwxsm73GkHTesxnfl33P3+diSE6vHgxdVRHRUxH3B6Q EHRrU2GezwDDhw2bn74ijfWEFIRpejKvAETnxGJ/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3l71QiNtLILDgqVeletz8kYwleEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3MmE3MzYyLWU1ODMtNDdiNi1hNDc3LTQ0ZWY1NDEzODE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjGjANBgkqhkiG9w0BAQsFAAOCAQEAb5az/tCbi2FfsGIJvUQb0fvG+t3R YsHpAPTMe8XVYGHg4xtpyGTQBCky75z+EQRkIcb9wdgfpr++GNwGPtkr5nXr7xlz VshoNgLtuspoHeB6d0JG9RW5GRAge41+VFY8s5Os/VzePQMC8ZN8azWHbEpKB4CG Wc43zOgn4XLDaiBAP+oMQM7oetAm/Cy0xIueateJXy8Ws7k9yyGTfNGS1Uodg+8J 2m+YwdU4cr6IBoj6mAfraf3MzHhN4LXl2UEcbSa0T1HUWp3opHiCiisNCC3cyPKE Rg9wseIv7SYfPhRmjDAqrD9q73iLfc0pLnv4qWDkUZQRuaWzX7OqmSfw9w== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:25 2025 by rpki-client