$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7277d16f-0113-4390-ac5d-53d14d2d13ee.roa File: 7277d16f-0113-4390-ac5d-53d14d2d13ee.roa (raw, json) Hash identifier: BEOg9erQn/v2KsynVzdUQ+eD5Hs7NnO4F9IUlfOEGQ8= Subject key identifier: 1A:4E:3A:27:24:D4:B8:44:AD:32:0C:A1:EB:DD:D8:01:28:ED:54:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DF5B081FD7C9AC48548F592D40CE948E5354F3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7277d16f-0113-4390-ac5d-53d14d2d13ee.roa Signing time: Fri 25 Apr 2025 00:10:21 +0000 ROA not before: Fri 25 Apr 2025 00:10:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:f5:b0:81:fd:7c:9a:c4:85:48:f5:92:d4:0c:e9:48:e5:35:4f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=cbf30275df975c194eb8b2e50926fc51f5f02731bfd7b03d4b14c9bd0b31e19c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c5:c6:4f:ec:25:2e:39:e6:1a:14:fe:07:14: a3:5b:f7:42:95:69:10:5c:a6:2a:af:76:d2:c9:c1: 36:9c:fe:19:5a:d8:cf:83:eb:f1:7b:6b:fe:b6:22: ca:99:4f:e9:ab:90:da:e3:c0:70:70:ae:a5:5d:13: f0:08:e2:c3:1d:55:58:c2:23:1b:da:42:70:ec:ed: fd:66:17:79:20:c3:d3:18:f0:cb:3f:1a:07:2a:9d: 8d:d4:ea:c6:8c:15:20:5f:c7:29:7c:df:d8:20:80: 04:c0:69:63:89:cd:c0:15:e5:4a:9c:5a:86:bb:a8: 15:36:16:93:67:87:1c:b4:26:9d:3e:8a:d4:89:7c: e5:59:18:5b:32:3f:05:4f:f9:f7:32:b1:17:bf:db: 2d:db:22:d7:3d:16:dc:66:1b:12:7e:d5:5b:a5:6e: d6:6c:10:00:19:0c:93:a0:59:ba:b6:e7:3c:0e:fa: c4:df:a4:70:8d:78:de:3a:7d:68:a2:96:4f:f5:09: db:f3:cb:76:31:37:33:69:be:64:d1:80:6f:dc:39: d9:2e:cf:26:02:83:47:0d:a7:cb:0a:b8:67:d4:78: ec:64:17:50:b7:a4:a7:4f:dd:af:d4:14:3b:25:30: ab:a4:9c:a3:00:31:36:41:21:56:24:ca:cb:e6:46: ea:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4E:3A:27:24:D4:B8:44:AD:32:0C:A1:EB:DD:D8:01:28:ED:54:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7277d16f-0113-4390-ac5d-53d14d2d13ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.8.0/21 Signature Algorithm: sha256WithRSAEncryption 53:fc:5c:2d:af:22:e1:f5:e7:73:fb:3a:b1:3a:31:21:6a:6e: 0b:f8:17:6b:4c:f2:64:d6:86:45:8f:ad:92:b0:7d:2d:36:fd: e4:3d:eb:a1:39:70:3a:1a:de:d6:e1:9b:0b:5e:f0:2e:77:90: 8a:d7:ff:cf:38:0f:63:94:16:f9:93:74:b9:f1:31:95:9e:cf: 3c:34:42:46:51:15:2e:05:22:ad:9b:a8:20:cf:4c:4e:b1:67: e5:08:b0:95:ab:d5:f2:61:52:49:78:55:6d:1a:6c:d7:f1:84: af:0f:74:d0:8d:7e:49:f6:86:ef:7e:c8:8f:c2:b5:9f:35:b5: 34:db:ff:11:a5:2d:31:3d:10:56:5c:53:a0:b5:d1:a9:fc:c1: bd:a6:17:14:cc:e9:cc:9d:4b:52:60:8d:ff:4e:7d:d8:4b:d2: 6f:47:0a:b5:fc:02:32:4a:3b:f0:de:c9:ad:81:e3:d7:54:e6: f5:8f:80:10:5e:03:97:91:5c:f9:fa:ed:10:cc:69:ac:a9:db: 96:8a:be:8d:b9:08:68:4d:0a:a7:ac:4c:59:b6:03:1b:c2:41: 36:4a:8c:0c:26:2e:e4:a7:50:63:5e:5f:dc:13:75:d6:06:8e: 0a:0b:43:af:5c:ef:e4:c7:70:48:bb:28:5e:95:2b:a5:5a:2a: 71:41:6b:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXfWwgf18msSFSPWS1AzpSOU1TzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmYzMDI3NWRmOTc1YzE5NGViOGIyZTUwOTI2ZmM1MWY1 ZjAyNzMxYmZkN2IwM2Q0YjE0YzliZDBiMzFlMTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbxcZP7CUuOeYaFP4HFKNb90KVaRBcpiqvdtLJwTac/hla 2M+D6/F7a/62IsqZT+mrkNrjwHBwrqVdE/AI4sMdVVjCIxvaQnDs7f1mF3kgw9MY 8Ms/GgcqnY3U6saMFSBfxyl839gggATAaWOJzcAV5UqcWoa7qBU2FpNnhxy0Jp0+ itSJfOVZGFsyPwVP+fcysRe/2y3bItc9FtxmGxJ+1VulbtZsEAAZDJOgWbq25zwO +sTfpHCNeN46fWiilk/1Cdvzy3YxNzNpvmTRgG/cOdkuzyYCg0cNp8sKuGfUeOxk F1C3pKdP3a/UFDslMKuknKMAMTZBIVYkysvmRuprAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGk46JyTUuEStMgyh693YASjtVPIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyNzdkMTZmLTAxMTMtNDM5MC1hYzVkLTUzZDE0ZDJkMTNlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOXlAgwDQYJKoZIhvcNAQELBQADggEBAFP8XC2vIuH153P7OrE6MSFqbgv4 F2tM8mTWhkWPrZKwfS02/eQ966E5cDoa3tbhmwte8C53kIrX/884D2OUFvmTdLnx MZWezzw0QkZRFS4FIq2bqCDPTE6xZ+UIsJWr1fJhUkl4VW0abNfxhK8PdNCNfkn2 hu9+yI/CtZ81tTTb/xGlLTE9EFZcU6C10an8wb2mFxTM6cydS1Jgjf9OfdhL0m9H CrX8AjJKO/Deya2B49dU5vWPgBBeA5eRXPn67RDMaayp25aKvo25CGhNCqesTFm2 AxvCQTZKjAwmLuSnUGNeX9wTddYGjgoLQ69c7+THcEi7KF6VK6VaKnFBa90= -----END CERTIFICATE-----Generated at Sat Apr 26 16:08:15 2025 by rpki-client