$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa File: 752845bf-4fad-4178-abc3-345e36b80c44.roa (raw, json) Hash identifier: 5BHTjvIwDd1J3kKjIu1HYYaegMcrVeGonGaVUir6008= Subject key identifier: 00:C9:A7:19:A1:41:1B:60:F5:4A:CE:8B:08:67:DF:9F:14:C8:D0:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 795019AEFBE8E61172E333F5B17BBA88D1BE0BB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa Signing time: Fri 18 Apr 2025 00:42:15 +0000 ROA not before: Fri 18 Apr 2025 00:42:15 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:50:19:ae:fb:e8:e6:11:72:e3:33:f5:b1:7b:ba:88:d1:be:0b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:42:15 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=8060fac54c5667023bd5480985adf94ff74981586bc0cfbab8028ac0e8213f43, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e1:a4:26:c6:32:c7:7f:65:42:b7:55:68:a6: 1f:fd:9c:80:1e:af:71:8e:8f:b7:5e:2a:83:ed:b6: bc:ee:c4:6f:72:2f:eb:8f:1c:8f:d8:b8:90:46:0c: 9e:c6:71:13:8f:88:ba:8d:a6:82:2a:f7:c0:a2:55: cd:5c:57:29:1a:ea:50:cb:ab:1f:8a:6c:b6:a7:f5: 9e:b4:39:89:17:f6:6d:ed:6d:20:16:a4:62:c7:36: 1e:da:8b:6b:67:bb:bd:3d:3e:01:bc:98:8b:49:ce: b5:1a:df:2a:c0:fa:df:da:ad:f8:53:8c:8f:1c:c8: 76:43:f3:c4:48:1e:f6:5d:86:c3:57:65:0c:94:11: 08:8f:9a:7d:c9:d5:35:2f:15:90:b8:0d:26:95:67: e8:86:15:5f:75:42:3c:25:b7:d0:8c:ca:f7:8f:4f: 98:cb:46:16:f3:50:b2:0e:f6:e9:5d:63:24:b7:a3: 36:3e:24:03:87:53:b3:cd:24:c4:e7:b4:ff:43:4c: c8:96:4d:1b:9a:08:92:a0:d3:9d:21:bf:e6:71:b4: ac:49:67:9d:34:9e:78:1c:93:ff:18:6d:2a:83:a0: 6e:6d:d8:bd:2a:7c:37:19:1d:3a:7d:e4:53:5a:35: 70:45:07:ca:6f:18:11:29:f9:3f:da:37:9f:bd:5f: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C9:A7:19:A1:41:1B:60:F5:4A:CE:8B:08:67:DF:9F:14:C8:D0:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.142.0/23 Signature Algorithm: sha256WithRSAEncryption ac:63:d7:16:3a:46:3d:92:3f:d7:46:b9:0a:cc:99:31:a8:7c: 91:47:84:f5:44:71:b5:4b:a2:11:05:ca:19:8c:67:9d:2d:4b: 4f:30:91:9b:e1:f8:9e:2b:a1:fb:c4:95:5a:68:a1:7a:b4:47: 77:8a:ad:46:7d:42:45:2f:f2:ef:cb:2d:83:92:d7:79:a1:97: e6:7c:df:55:3b:4f:d2:62:d4:16:24:74:54:e6:93:e0:50:a9: 5e:23:6b:8d:2f:c6:55:9a:a5:46:22:11:4b:2a:b6:2f:e8:25: 0c:d0:40:bb:bd:f8:bb:54:20:d1:61:06:07:e1:66:f3:f4:6c: 16:82:48:f3:a2:83:16:ff:c4:0d:39:d2:34:f8:64:f4:4a:b3: 03:3d:25:c5:42:28:19:4d:68:a2:ec:c0:7b:0d:a7:5c:0a:5a: ef:ae:80:2d:57:66:7c:5b:64:ce:e2:ff:6b:89:5b:0b:ad:27: 3f:f4:d5:4a:95:02:cd:c2:9a:fa:a7:8c:84:0b:cc:a8:e9:4e: e8:7d:c7:a6:46:de:02:92:f8:6a:14:e7:12:d0:66:a7:10:ae: 0e:1d:aa:21:48:84:49:a5:e4:b6:8e:a3:3d:70:4a:1a:b5:1d: c1:bf:59:b7:99:fc:7e:ed:61:18:09:d0:43:22:9e:2b:bd:b9: 45:22:b0:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeVAZrvvo5hFy4zP1sXu6iNG+C7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDA0MjE1WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDYwZmFjNTRjNTY2NzAyM2JkNTQ4MDk4NWFkZjk0ZmY3 NDk4MTU4NmJjMGNmYmFiODAyOGFjMGU4MjEzZjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr4aQmxjLHf2VCt1Voph/9nIAer3GOj7deKoPttrzuxG9y L+uPHI/YuJBGDJ7GcROPiLqNpoIq98CiVc1cVyka6lDLqx+KbLan9Z60OYkX9m3t bSAWpGLHNh7ai2tnu709PgG8mItJzrUa3yrA+t/arfhTjI8cyHZD88RIHvZdhsNX ZQyUEQiPmn3J1TUvFZC4DSaVZ+iGFV91Qjwlt9CMyvePT5jLRhbzULIO9uldYyS3 ozY+JAOHU7PNJMTntP9DTMiWTRuaCJKg050hv+ZxtKxJZ500nngck/8YbSqDoG5t 2L0qfDcZHTp95FNaNXBFB8pvGBEp+T/aN5+9XwBTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAMmnGaFBG2D1Ss6LCGffnxTI0EkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1Mjg0NWJmLTRmYWQtNDE3OC1hYmMzLTM0NWUzNmI4MGM0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAI4wDQYJKoZIhvcNAQELBQADggEBAKxj1xY6Rj2SP9dGuQrMmTGofJFH hPVEcbVLohEFyhmMZ50tS08wkZvh+J4rofvElVpooXq0R3eKrUZ9QkUv8u/LLYOS 13mhl+Z831U7T9Ji1BYkdFTmk+BQqV4ja40vxlWapUYiEUsqti/oJQzQQLu9+LtU INFhBgfhZvP0bBaCSPOigxb/xA050jT4ZPRKswM9JcVCKBlNaKLswHsNp1wKWu+u gC1XZnxbZM7i/2uJWwutJz/01UqVAs3CmvqnjIQLzKjpTuh9x6ZG3gKS+GoU5xLQ ZqcQrg4dqiFIhEml5LaOoz1wShq1HcG/WbeZ/H7tYRgJ0EMiniu9uUUisNc= -----END CERTIFICATE-----Generated at Sat Apr 26 16:49:44 2025 by rpki-client