$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa File: 7c03fcda-0ad1-41fc-8c42-94116582146a.roa (raw, json) Hash identifier: UTKNUkdKcHnzezuZ8dmymwdnuvZWv+9NJkCqg9PsGHk= Subject key identifier: E9:18:A7:3C:F3:A6:4D:81:50:ED:9B:D8:81:A8:CB:4E:1B:0E:3B:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 107FFC3DE7F1841AC40BC92B51A21E9B50775612 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa Signing time: Mon 07 Apr 2025 15:00:23 +0000 ROA not before: Mon 07 Apr 2025 15:00:23 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.150.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:7f:fc:3d:e7:f1:84:1a:c4:0b:c9:2b:51:a2:1e:9b:50:77:56:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:00:23 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=559c63cd9674525ec37bdfc1c9df99434c44ec59c93f93208150f944ac799abe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:89:35:be:56:aa:1f:f8:46:a1:9b:b7:bd: fd:fd:e2:b9:07:ff:b3:c8:b1:b8:14:6a:d4:d2:e6: ca:20:01:2a:a3:b7:d7:f4:fe:a7:fa:65:b3:a2:cb: e2:24:4e:a7:ae:9d:7f:1a:b3:31:09:5d:17:d0:fa: fb:3b:dd:fa:23:30:f2:8a:23:4b:79:64:86:01:85: 35:95:fe:8d:f7:db:f0:77:cd:3d:ba:9e:65:41:a3: ae:fc:68:3a:f7:db:d1:dc:c8:9e:33:58:5c:38:6b: a7:90:2d:87:77:4d:a7:de:f4:dd:93:fa:43:b7:ac: 0b:a9:47:ce:df:a3:a8:a2:87:f2:1a:60:4e:1c:14: 7c:f8:8e:4d:ce:d1:8a:cc:8e:04:a7:36:07:05:ff: a3:27:8f:85:10:5d:95:1c:88:7d:38:0c:7d:3a:a9: 94:a3:7e:be:8d:7d:6d:ab:d6:8f:57:ba:0e:07:8a: 75:13:50:ff:ae:1b:72:04:a9:42:60:a3:f1:bc:80: b4:89:6b:f5:7e:1d:e7:a3:4e:58:68:d7:cb:20:19: e3:aa:b5:55:32:81:9e:5d:e7:4f:70:e8:4c:fa:5f: 1c:e4:d9:58:7f:44:55:21:54:84:93:87:f3:23:cc: d4:e4:a4:e2:4c:7a:78:f1:5a:ea:25:d3:83:4d:a7: d4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:18:A7:3C:F3:A6:4D:81:50:ED:9B:D8:81:A8:CB:4E:1B:0E:3B:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.150.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6d:48:c7:11:d2:46:0e:43:a3:c3:10:06:34:14:75:79:10:cf: f5:89:e5:a8:16:93:23:d4:1e:bd:ef:80:44:6a:29:7b:cb:f6: e9:3d:a6:d3:36:5b:28:7c:e8:5e:1e:4b:d2:99:82:15:bb:ec: de:ff:41:ed:86:be:fc:3b:e4:eb:5c:6e:81:6a:a4:e0:89:7f: 2e:df:a1:0d:16:e3:a0:2a:09:79:e9:76:3a:5b:86:14:65:60: 5b:ce:02:61:1a:9b:62:1a:f2:18:35:96:4d:ab:c5:44:eb:8f: 4d:5c:2c:39:09:5c:99:4b:c3:db:81:02:ba:5a:ab:66:71:9c: 74:fb:2b:74:5a:b2:25:81:9f:56:ed:7e:ac:50:09:3e:65:e3: 3d:87:c6:80:cb:7b:4f:17:4f:28:76:78:04:c4:74:46:e8:b1: ba:8e:89:8e:12:0d:fe:44:51:70:a9:ce:d7:67:66:99:95:d8: 44:d5:6b:63:e9:41:59:dc:2f:85:c3:a0:a3:99:5b:00:3b:32: 4b:5c:fc:32:bf:01:38:b2:5e:81:d4:b7:2a:ea:77:7a:f4:22: f3:7a:42:62:3a:33:e3:66:a9:64:4f:6b:ad:36:b8:22:3f:c7: d6:aa:00:12:d7:6d:1e:56:52:86:86:c5:49:bd:1a:fe:d1:7d: a3:92:e6:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEH/8PefxhBrEC8krUaIem1B3VhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMDIzWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTljNjNjZDk2NzQ1MjVlYzM3YmRmYzFjOWRmOTk0MzRj NDRlYzU5YzkzZjkzMjA4MTUwZjk0NGFjNzk5YWJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM4Yk1vlaqH/hGoZu3vf394rkH/7PIsbgUatTS5sogASqj t9f0/qf6ZbOiy+IkTqeunX8aszEJXRfQ+vs73fojMPKKI0t5ZIYBhTWV/o332/B3 zT26nmVBo678aDr329HcyJ4zWFw4a6eQLYd3Tafe9N2T+kO3rAupR87fo6iih/Ia YE4cFHz4jk3O0YrMjgSnNgcF/6Mnj4UQXZUciH04DH06qZSjfr6NfW2r1o9Xug4H inUTUP+uG3IEqUJgo/G8gLSJa/V+HeejTlho18sgGeOqtVUygZ5d509w6Ez6Xxzk 2Vh/RFUhVISTh/MjzNTkpOJMenjxWuol04NNp9SLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6RinPPOmTYFQ7ZvYgajLThsOO2owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMDNmY2RhLTBhZDEtNDFmYy04YzQyLTk0MTE2NTgyMTQ2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENljANBgkqhkiG9w0BAQsFAAOCAQEAbUjHEdJGDkOjwxAGNBR1eRDP9Ynl qBaTI9Qeve+ARGope8v26T2m0zZbKHzoXh5L0pmCFbvs3v9B7Ya+/Dvk61xugWqk 4Il/Lt+hDRbjoCoJeel2OluGFGVgW84CYRqbYhryGDWWTavFROuPTVwsOQlcmUvD 24ECulqrZnGcdPsrdFqyJYGfVu1+rFAJPmXjPYfGgMt7TxdPKHZ4BMR0Ruixuo6J jhIN/kRRcKnO12dmmZXYRNVrY+lBWdwvhcOgo5lbADsyS1z8Mr8BOLJegdS3Kup3 evQi83pCYjoz42apZE9rrTa4Ij/H1qoAEtdtHlZShobFSb0a/tF9o5LmsA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:35 2025 by rpki-client