$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa File: 71e4dd76-d0a5-4298-b47e-b983c7943d01.roa (raw, json) Hash identifier: rCVhF6GGf1LhHuJUv82HBlpnhIiIwZ5yndYvkOcry4o= Subject key identifier: 38:0F:5F:71:19:E0:E6:AA:22:82:E2:7C:FE:76:CD:BC:D8:8F:57:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C030919021496469EDEEF062A6CCA22C046E7AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa Signing time: Wed 23 Apr 2025 00:10:34 +0000 ROA not before: Wed 23 Apr 2025 00:10:34 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:03:09:19:02:14:96:46:9e:de:ef:06:2a:6c:ca:22:c0:46:e7:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:10:34 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=86946ebff13d14c675d3ee276d1b6a5ad7de0edcbefec08041cc2ffb6238306a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:71:36:82:f4:08:dd:ed:0e:a0:fa:5a:bc:89: 01:71:31:7d:2b:41:1a:1d:f9:37:fc:68:9f:1d:03: 73:8f:f4:08:17:eb:57:78:9e:00:05:6a:f0:90:2c: 78:b8:e6:d9:0b:25:09:54:6d:ba:76:67:78:e7:d4: f1:4b:e6:ed:10:bc:6e:04:a1:46:f2:8d:18:ec:b6: 48:eb:de:4e:50:9b:47:13:2c:a9:1a:79:0c:25:b9: f9:47:07:66:e5:3f:47:be:37:bb:7b:d5:58:53:46: 48:f2:45:c3:f0:66:10:da:ea:e2:b9:bc:39:13:b2: 3d:fa:5a:6e:49:26:d1:b5:eb:a3:0c:a7:33:80:e7: d9:a9:4a:a9:ee:92:6a:87:79:16:e9:5b:21:88:45: a0:f7:b9:22:be:b0:4f:81:f2:9e:09:94:9e:e8:fa: 8c:87:cf:47:df:fa:9f:9b:da:cf:95:77:2f:d7:93: 5d:f6:59:51:08:2f:41:32:e5:84:68:74:3e:67:cd: e1:04:c7:2a:1c:e0:e0:95:2d:8b:a1:74:11:68:14: c4:99:82:fd:4e:30:50:ac:e3:c7:73:b2:82:6b:45: 4d:bf:aa:4a:ef:a1:de:f9:36:23:db:44:4a:7b:3a: 7a:d6:9c:05:fd:ff:d2:8c:d6:9e:38:cb:32:81:0f: a6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0F:5F:71:19:E0:E6:AA:22:82:E2:7C:FE:76:CD:BC:D8:8F:57:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption 12:04:15:e0:75:08:e0:54:57:00:11:24:8a:90:ed:5c:2f:22: 39:ce:7a:dc:9a:c7:0f:b9:2f:8d:33:46:b9:08:2c:55:f5:c2: a6:e3:ed:25:8c:39:33:2d:94:ae:47:95:71:f7:87:43:d8:c8: a2:91:e7:42:a0:29:92:37:75:ee:a6:1e:da:ad:80:f8:93:21: c1:da:6d:df:78:b1:cd:dc:f1:b9:31:a7:39:6e:e5:b6:ad:65: 01:55:04:0a:bd:76:32:97:99:cc:32:4f:f3:0a:f1:b4:6a:93: d0:d0:20:d2:95:56:b2:b8:a6:80:22:47:5a:0f:69:4b:d5:57: 7d:03:41:56:ca:f7:4a:41:b8:bc:b8:fa:ad:69:95:eb:41:cd: 4a:b2:cb:6e:e0:ab:83:15:d9:cd:38:7e:7e:d1:65:10:3d:4c: 2d:f0:d8:2e:c7:a4:f0:84:77:4a:32:c0:8f:12:69:05:c1:fe: 1e:30:90:71:5b:bb:b3:71:bb:ae:be:cb:b6:e0:9d:5b:c8:7e: 69:c2:a8:1f:68:f8:3c:e0:6a:a8:7c:b0:d1:91:ae:f6:68:c9: a7:92:b3:2c:22:da:aa:5f:ad:04:8f:00:fa:a2:05:01:6d:d1: 33:6d:f1:5d:7d:63:64:cf:37:42:71:65:13:f9:86:8c:1b:bd: d6:c7:67:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTAMJGQIUlkae3u8GKmzKIsBG56wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAxMDM0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Njk0NmViZmYxM2QxNGM2NzVkM2VlMjc2ZDFiNmE1YWQ3 ZGUwZWRjYmVmZWMwODA0MWNjMmZmYjYyMzgzMDZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+cTaC9Ajd7Q6g+lq8iQFxMX0rQRod+Tf8aJ8dA3OP9AgX 61d4ngAFavCQLHi45tkLJQlUbbp2Z3jn1PFL5u0QvG4EoUbyjRjstkjr3k5Qm0cT LKkaeQwluflHB2blP0e+N7t71VhTRkjyRcPwZhDa6uK5vDkTsj36Wm5JJtG166MM pzOA59mpSqnukmqHeRbpWyGIRaD3uSK+sE+B8p4JlJ7o+oyHz0ff+p+b2s+Vdy/X k132WVEIL0Ey5YRodD5nzeEExyoc4OCVLYuhdBFoFMSZgv1OMFCs48dzsoJrRU2/ qkrvod75NiPbREp7OnrWnAX9/9KM1p44yzKBD6YhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOA9fcRng5qoiguJ8/nbNvNiPV1owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxZTRkZDc2LWQwYTUtNDI5OC1iNDdlLWI5ODNjNzk0M2QwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBABIEFeB1COBUVwARJIqQ7VwvIjnO etyaxw+5L40zRrkILFX1wqbj7SWMOTMtlK5HlXH3h0PYyKKR50KgKZI3de6mHtqt gPiTIcHabd94sc3c8bkxpzlu5batZQFVBAq9djKXmcwyT/MK8bRqk9DQINKVVrK4 poAiR1oPaUvVV30DQVbK90pBuLy4+q1pletBzUqyy27gq4MV2c04fn7RZRA9TC3w 2C7HpPCEd0oywI8SaQXB/h4wkHFbu7Nxu66+y7bgnVvIfmnCqB9o+Dzgaqh8sNGR rvZoyaeSsywi2qpfrQSPAPqiBQFt0TNt8V19Y2TPN0JxZRP5howbvdbHZ7k= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:53 2025 by rpki-client