$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a9b271b-e372-4d45-bd2d-3a4d6cd8a008.roa File: 8a9b271b-e372-4d45-bd2d-3a4d6cd8a008.roa (raw, json) Hash identifier: r2tXQD5mNKyWfvOItlhVXlT3MWNqU1G7Ui17R3XsF58= Subject key identifier: AA:DE:DB:1C:18:23:29:55:CC:CE:FF:26:9A:99:50:62:04:E3:CD:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 116F6F46AC6EDA5FCAEF76A2FD87A509E13219B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a9b271b-e372-4d45-bd2d-3a4d6cd8a008.roa Signing time: Tue 15 Apr 2025 00:20:16 +0000 ROA not before: Tue 15 Apr 2025 00:20:16 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.52.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:6f:6f:46:ac:6e:da:5f:ca:ef:76:a2:fd:87:a5:09:e1:32:19:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:20:16 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=abda3ee5775e884cba7658947c903ab2afb47e2d6516147d24b6bac8aa1eb4fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7b:c8:96:c7:f1:40:cb:10:59:c4:61:79:9f: 0c:45:f3:52:85:5a:bc:e9:b0:d4:a5:27:a4:c1:9e: 86:c8:41:51:16:6e:30:0e:18:2a:22:fb:8d:12:96: 00:60:61:02:ce:98:b5:55:06:19:73:d2:15:e0:43: fe:45:86:60:24:0b:e9:60:5d:7b:bc:2a:28:dd:0c: 0b:ed:84:47:78:14:64:55:a6:31:e8:03:45:b1:29: af:80:16:24:94:fd:63:e0:fd:e7:03:ba:2f:f1:6f: 97:31:8d:99:de:8d:63:40:08:7c:b1:ea:7d:da:22: 1f:87:30:c0:ed:ed:cc:0e:48:27:9e:15:34:7c:2f: 07:7a:0a:57:f7:d9:46:88:36:fb:7e:9c:8c:6b:52: ef:41:9c:60:ac:e1:05:77:b7:7e:ef:c7:5d:a8:d6: da:d6:8f:6f:48:4f:26:dc:fb:e0:79:9a:ea:13:01: e6:70:6e:f9:06:09:1d:35:05:74:89:6b:8b:13:ac: 23:76:b3:a4:1f:59:c9:4b:51:54:d4:de:9b:6b:2c: 4d:54:ed:cb:ff:1d:2b:0d:7b:18:24:58:bb:f2:52: b2:94:e8:3b:f4:8d:45:ce:42:aa:64:a3:74:5c:9a: ba:77:e6:46:60:8b:c8:b3:99:5c:a0:6f:06:6f:5a: 9a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DE:DB:1C:18:23:29:55:CC:CE:FF:26:9A:99:50:62:04:E3:CD:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a9b271b-e372-4d45-bd2d-3a4d6cd8a008.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.52.112.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:2e:6c:c0:f2:4d:6d:91:6d:55:8e:3c:3a:a0:e5:ff:7b:be: 9d:5e:7d:88:ce:85:bc:c4:ab:69:f0:ca:c2:8d:af:6f:17:1d: c6:cd:db:08:8f:98:b0:00:22:cc:29:4a:55:5d:bb:ad:0c:f1: 18:a3:d0:25:d9:82:2d:43:65:5c:ba:75:3e:fa:93:57:30:95: c3:dd:06:b8:09:5b:6f:46:c9:55:c8:c2:fb:65:7b:3c:33:6d: db:e1:8e:85:7e:0a:bf:32:19:85:5b:90:67:ca:58:a6:17:b2: e6:8d:cc:a1:34:fc:0b:d5:bd:0c:f5:0b:67:ee:04:e4:71:74: e5:5e:68:77:48:5b:11:aa:04:35:ac:57:1f:69:f7:ae:2d:01: 26:84:3c:66:2b:45:d2:1b:41:4e:f0:95:5b:01:49:b5:b2:cc: f1:03:13:67:eb:ca:e9:7b:cd:11:6a:47:5a:dd:9a:ba:df:93: 50:10:61:de:b2:ff:a8:7b:a9:e7:47:de:c1:8a:13:ab:a0:ba: 52:e7:5f:03:13:d6:f1:e2:55:d8:be:3f:48:1e:da:0d:d7:47: 25:1a:6b:57:a0:1a:52:80:15:c5:2b:85:fd:ec:b3:b0:30:ed: 80:f4:8f:db:26:9d:49:fc:c7:d6:ff:de:15:a4:37:16:35:79: f2:2e:9b:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEW9vRqxu2l/K73ai/YelCeEyGbYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAyMDE2WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmRhM2VlNTc3NWU4ODRjYmE3NjU4OTQ3YzkwM2FiMmFm YjQ3ZTJkNjUxNjE0N2QyNGI2YmFjOGFhMWViNGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDte8iWx/FAyxBZxGF5nwxF81KFWrzpsNSlJ6TBnobIQVEW bjAOGCoi+40SlgBgYQLOmLVVBhlz0hXgQ/5FhmAkC+lgXXu8KijdDAvthEd4FGRV pjHoA0WxKa+AFiSU/WPg/ecDui/xb5cxjZnejWNACHyx6n3aIh+HMMDt7cwOSCee FTR8Lwd6Clf32UaINvt+nIxrUu9BnGCs4QV3t37vx12o1trWj29ITybc++B5muoT AeZwbvkGCR01BXSJa4sTrCN2s6QfWclLUVTU3ptrLE1U7cv/HSsNexgkWLvyUrKU 6Dv0jUXOQqpko3Rcmrp35kZgi8izmVygbwZvWprVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqt7bHBgjKVXMzv8mmplQYgTjzZUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhOWIyNzFiLWUzNzItNGQ0NS1iZDJkLTNhNGQ2Y2Q4YTAwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARANHAwDQYJKoZIhvcNAQELBQADggEBACsubMDyTW2RbVWOPDqg5f97vp1e fYjOhbzEq2nwysKNr28XHcbN2wiPmLAAIswpSlVdu60M8Rij0CXZgi1DZVy6dT76 k1cwlcPdBrgJW29GyVXIwvtlezwzbdvhjoV+Cr8yGYVbkGfKWKYXsuaNzKE0/AvV vQz1C2fuBORxdOVeaHdIWxGqBDWsVx9p964tASaEPGYrRdIbQU7wlVsBSbWyzPED E2fryul7zRFqR1rdmrrfk1AQYd6y/6h7qedH3sGKE6ugulLnXwMT1vHiVdi+P0ge 2g3XRyUaa1egGlKAFcUrhf3ss7Aw7YD0j9smnUn8x9b/3hWkNxY1efIum0w= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:29 2025 by rpki-client