$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f0b3865-60cd-4f45-bb1c-e7e47fac38d5.roa File: 7f0b3865-60cd-4f45-bb1c-e7e47fac38d5.roa (raw, json) Hash identifier: i47uiFPwB4LFQkMl5nArxoWgvn9fA1VFs3+ONuEqDMw= Subject key identifier: CB:4F:1B:18:0F:BF:B6:EC:FA:4B:84:58:A4:BA:66:FB:A4:CB:40:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BAA5C227D5BC530804FC3BB0A294A62B17CDDC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f0b3865-60cd-4f45-bb1c-e7e47fac38d5.roa Signing time: Tue 08 Apr 2025 00:11:03 +0000 ROA not before: Tue 08 Apr 2025 00:11:03 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:aa:5c:22:7d:5b:c5:30:80:4f:c3:bb:0a:29:4a:62:b1:7c:dd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:11:03 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=95ddf779e248af444abf87b9464638be6f21e6142fff95d2f7fd3da384fd0396, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b1:e1:92:a1:a7:7a:3f:d6:37:f9:09:ed:09: 7f:02:79:8e:9d:ef:cf:8a:59:4a:1c:79:fa:5b:94: 25:a9:1a:e0:f6:4c:83:64:47:0a:1b:39:93:7c:ac: cd:e4:4b:2e:b3:a0:84:fb:04:85:2a:48:98:6f:89: f2:a8:e0:c5:ca:87:42:98:db:81:91:83:a9:07:02: 71:5a:da:da:e4:c8:a3:a2:02:8a:38:58:e0:25:46: a1:b8:71:eb:b9:29:5b:7a:44:c4:26:37:50:18:08: 82:b9:97:fe:c7:de:66:03:0e:40:a2:a4:a5:27:53: 71:00:1d:4e:7d:a2:29:9f:89:c5:8f:be:a2:00:8f: 2a:25:7d:67:8b:17:73:05:62:48:1c:5d:20:49:6a: 8a:64:1d:52:97:56:e0:f7:fb:98:58:fb:56:a7:62: ae:65:83:09:e3:0d:1c:b0:d4:2d:95:14:d5:e9:c9: c9:55:57:76:8e:3a:52:12:2c:d8:68:5a:c4:ef:c5: 41:ab:44:ba:60:0e:a8:f3:fd:26:97:8e:1f:e7:ad: da:58:72:be:f6:41:79:6c:5f:1a:f2:b2:78:e2:f9: 6b:08:f0:5d:fa:5e:dd:59:ef:23:dc:a9:21:e1:82: 34:31:bc:4c:ba:b3:7a:bb:1c:81:62:c7:57:86:25: 2d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4F:1B:18:0F:BF:B6:EC:FA:4B:84:58:A4:BA:66:FB:A4:CB:40:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f0b3865-60cd-4f45-bb1c-e7e47fac38d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.6.0/24 Signature Algorithm: sha256WithRSAEncryption 30:0a:2d:20:da:d7:3d:7f:9e:a2:64:af:59:fb:4f:a4:de:21: 8b:ac:03:6a:35:ae:a4:53:c9:f1:d1:63:39:83:06:65:5c:df: cb:4b:4e:82:29:1e:d4:27:f1:5d:b4:6f:21:b2:ba:c8:e9:33: 57:78:41:ff:e1:3d:d6:a5:1e:37:77:73:ba:b9:ab:0d:31:0b: c5:e8:42:f8:30:26:98:e5:08:6e:c4:68:ed:98:29:03:af:cb: 33:2e:91:f3:8b:4e:76:f1:3b:21:1d:4d:3f:6c:f8:85:34:1a: 82:ba:91:3f:35:13:f6:54:d6:b9:7d:74:25:6a:4f:fe:f0:c4: 4d:1e:37:14:b7:0d:15:a1:bf:62:bc:97:72:d5:8d:08:5e:9b: 58:b4:81:05:fe:87:08:7f:22:ed:2a:e8:26:09:f1:fe:01:fb: 4b:f9:39:b5:6f:cf:7e:ad:12:75:4c:69:00:b2:16:90:ea:9a: 56:47:a4:c7:90:96:e1:a4:75:93:92:7f:f8:c0:5e:45:85:f9: 23:42:85:a6:66:26:63:7f:f8:c0:a2:74:67:b6:4e:21:b5:95: 0d:e1:c5:bc:bc:99:cf:4a:2a:90:5e:86:b0:ec:c2:29:44:63: f1:7a:5a:e4:bf:f0:e5:72:23:75:c2:a4:cf:0f:4f:e3:29:ea: d9:0f:06:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO6pcIn1bxTCAT8O7CilKYrF83cAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAxMTAzWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWRkZjc3OWUyNDhhZjQ0NGFiZjg3Yjk0NjQ2MzhiZTZm MjFlNjE0MmZmZjk1ZDJmN2ZkM2RhMzg0ZmQwMzk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0seGSoad6P9Y3+QntCX8CeY6d78+KWUocefpblCWpGuD2 TINkRwobOZN8rM3kSy6zoIT7BIUqSJhvifKo4MXKh0KY24GRg6kHAnFa2trkyKOi Aoo4WOAlRqG4ceu5KVt6RMQmN1AYCIK5l/7H3mYDDkCipKUnU3EAHU59oimficWP vqIAjyolfWeLF3MFYkgcXSBJaopkHVKXVuD3+5hY+1anYq5lgwnjDRyw1C2VFNXp yclVV3aOOlISLNhoWsTvxUGrRLpgDqjz/SaXjh/nrdpYcr72QXlsXxrysnji+WsI 8F36Xt1Z7yPcqSHhgjQxvEy6s3q7HIFix1eGJS2ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy08bGA+/tuz6S4RYpLpm+6TLQDUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmMGIzODY1LTYwY2QtNGY0NS1iYjFjLWU3ZTQ3ZmFjMzhkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADRXAYwDQYJKoZIhvcNAQELBQADggEBADAKLSDa1z1/nqJkr1n7T6TeIYus A2o1rqRTyfHRYzmDBmVc38tLToIpHtQn8V20byGyusjpM1d4Qf/hPdalHjd3c7q5 qw0xC8XoQvgwJpjlCG7EaO2YKQOvyzMukfOLTnbxOyEdTT9s+IU0GoK6kT81E/ZU 1rl9dCVqT/7wxE0eNxS3DRWhv2K8l3LVjQhem1i0gQX+hwh/Iu0q6CYJ8f4B+0v5 ObVvz36tEnVMaQCyFpDqmlZHpMeQluGkdZOSf/jAXkWF+SNChaZmJmN/+MCidGe2 TiG1lQ3hxby8mc9KKpBehrDswilEY/F6WuS/8OVyI3XCpM8PT+Mp6tkPBgM= -----END CERTIFICATE-----Generated at Sat Apr 26 19:13:10 2025 by rpki-client