$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa File: 8d469487-1107-4d13-bd1f-6f60c5d3da36.roa (raw, json) Hash identifier: +D5ot9X/AOHg1s/H7Hi1qhTpdmbW+sS6G4/XYbJEcDk= Subject key identifier: 2F:03:CE:04:1D:8B:3A:0A:95:8E:68:40:10:7C:6E:F2:8C:65:E0:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E0BECC26C8E4E0AB355E1EBF91C24D926977BDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa Signing time: Tue 22 Apr 2025 17:30:34 +0000 ROA not before: Tue 22 Apr 2025 17:30:34 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.23.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:0b:ec:c2:6c:8e:4e:0a:b3:55:e1:eb:f9:1c:24:d9:26:97:7b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:30:34 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=daf64c99a7062e168e6d18f081ce1af2d45678f23d8de6aac7237874f159de54, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:33:bc:f2:fe:69:1b:5a:65:57:6e:30:04: da:7b:bb:49:4a:46:e0:69:39:fa:3e:c3:0c:7d:ae: 61:97:77:f0:33:3f:36:1d:ed:07:94:ba:d5:9c:83: aa:0d:b4:48:4f:7a:8b:13:59:54:27:33:f4:59:cb: e6:7b:d3:f7:7b:c1:f5:f7:4f:2a:91:d8:16:cf:6f: 2e:b9:1c:c6:ea:27:91:77:c8:31:70:c2:54:b7:c9: f8:89:86:84:1a:bc:2a:cf:65:e0:b5:a2:9f:f8:2f: 59:f2:67:35:f4:c1:e5:29:97:b3:60:b4:17:30:d4: 4c:4d:8c:d3:aa:be:06:60:5d:9b:57:99:0d:3b:06: f9:b4:b2:b5:a0:7d:78:b5:9c:b1:ad:11:71:f8:77: a2:82:7d:14:43:46:25:c1:b3:d7:dd:41:cc:32:63: 3f:15:c2:4d:7f:e2:1b:30:29:00:69:87:a0:36:47: c4:7a:cd:8c:9b:70:72:82:fe:16:d4:36:3f:fb:91: 27:8a:17:97:96:ea:a6:3c:96:60:68:f2:22:0e:fe: 41:7c:72:e3:1b:b9:0a:42:02:0e:0b:e5:c9:c9:c1: dd:0d:7c:b2:e7:77:68:ce:6b:d7:07:61:c3:1a:9b: 88:f1:a4:b1:08:4e:36:4e:34:30:bb:c4:8c:1e:e0: 76:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:03:CE:04:1D:8B:3A:0A:95:8E:68:40:10:7C:6E:F2:8C:65:E0:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.23.0.0/18 Signature Algorithm: sha256WithRSAEncryption 97:28:ca:9f:8c:1f:c9:d2:ef:07:23:46:64:8e:c8:bd:70:df: 99:9b:5a:a6:da:2f:a5:67:b2:4b:c7:78:d3:a3:c2:02:be:de: 75:17:5c:ba:a0:14:60:88:7d:de:35:dd:f9:1d:bb:5a:d8:5f: d7:a8:67:9e:25:ca:9f:8f:ea:c3:e2:1a:fa:ea:23:e7:04:c6: fb:df:af:c6:c3:88:02:b8:4b:fc:d4:b5:fb:4a:ae:71:ff:a0: 03:11:91:02:e9:1e:e4:47:b0:d9:52:87:ed:f4:c7:4a:10:74: 08:06:fb:62:15:67:7d:ad:cb:50:de:e8:0e:52:b5:7e:54:b2: 5a:2c:b3:aa:ff:d3:35:ad:a9:5e:dd:8c:0c:d7:45:75:70:21: 94:0d:92:27:03:29:f4:dc:18:0a:d1:bc:05:de:8a:bd:2a:bb: 18:19:15:79:1f:e1:fb:35:c5:ee:2e:52:cf:9d:3d:7c:c0:59: b3:d9:58:63:91:8d:b1:4b:a4:b7:6e:76:ae:40:16:51:84:b4: 60:0d:70:95:14:4d:bb:3c:94:15:16:4d:7f:bf:63:c0:e1:a4: 38:2e:b3:a0:ca:a3:e2:12:6e:6e:c1:f4:cf:87:c7:af:d0:03: ba:12:d6:e4:1d:8e:94:31:73:78:32:33:2c:66:48:dc:21:9b: b9:95:3f:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULgvswmyOTgqzVeHr+Rwk2SaXe94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTczMDM0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWY2NGM5OWE3MDYyZTE2OGU2ZDE4ZjA4MWNlMWFmMmQ0 NTY3OGYyM2Q4ZGU2YWFjNzIzNzg3NGYxNTlkZTU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPsjO88v5pG1plV24wBNp7u0lKRuBpOfo+wwx9rmGXd/Az PzYd7QeUutWcg6oNtEhPeosTWVQnM/RZy+Z70/d7wfX3TyqR2BbPby65HMbqJ5F3 yDFwwlS3yfiJhoQavCrPZeC1op/4L1nyZzX0weUpl7NgtBcw1ExNjNOqvgZgXZtX mQ07Bvm0srWgfXi1nLGtEXH4d6KCfRRDRiXBs9fdQcwyYz8Vwk1/4hswKQBph6A2 R8R6zYybcHKC/hbUNj/7kSeKF5eW6qY8lmBo8iIO/kF8cuMbuQpCAg4L5cnJwd0N fLLnd2jOa9cHYcMam4jxpLEITjZONDC7xIwe4HavAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULwPOBB2LOgqVjmhAEHxu8oxl4PQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDY5NDg3LTExMDctNGQxMy1iZDFmLTZmNjBjNWQzZGEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAFwAwDQYJKoZIhvcNAQELBQADggEBAJcoyp+MH8nS7wcjRmSOyL1w35mb WqbaL6VnskvHeNOjwgK+3nUXXLqgFGCIfd413fkdu1rYX9eoZ54lyp+P6sPiGvrq I+cExvvfr8bDiAK4S/zUtftKrnH/oAMRkQLpHuRHsNlSh+30x0oQdAgG+2IVZ32t y1De6A5StX5Usloss6r/0zWtqV7djAzXRXVwIZQNkicDKfTcGArRvAXeir0quxgZ FXkf4fs1xe4uUs+dPXzAWbPZWGORjbFLpLdudq5AFlGEtGANcJUUTbs8lBUWTX+/ Y8DhpDgus6DKo+ISbm7B9M+Hx6/QA7oS1uQdjpQxc3gyMyxmSNwhm7mVP0g= -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:51 2025 by rpki-client