$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa File: 8f36eaca-de14-481f-ae4a-55c99b57e524.roa (raw, json) Hash identifier: MPPIc6qJ/OA8wuaMC1O0ANNEV+2VJGcfXFJ5YKU5VPQ= Subject key identifier: 55:63:96:4F:43:B6:C2:7E:53:01:32:6A:0E:A7:E5:93:AE:1A:41:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6927CF537E5C11498C4E902588FD7D9577E52028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa Signing time: Tue 22 Apr 2025 17:40:12 +0000 ROA not before: Tue 22 Apr 2025 17:40:12 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.66.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:27:cf:53:7e:5c:11:49:8c:4e:90:25:88:fd:7d:95:77:e5:20:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:40:12 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=db079ea14d5eaf49c9b9e94a3bc63102448580012cd3b6a3ea2998bddb9a327b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bd:85:16:82:db:d3:b0:25:0d:f4:26:47:55: 59:11:25:3b:ba:91:12:78:69:d7:ab:c6:12:08:69: b8:9f:37:85:ac:7e:59:5f:1e:4f:6f:46:16:d9:8e: f3:a6:15:eb:ac:1e:37:d7:35:45:bd:9d:eb:09:78: e9:19:ed:f9:4a:11:a3:e2:b4:44:83:1a:98:f7:c1: 6e:d1:0c:d7:1c:c5:e6:a4:e0:6b:09:7f:1e:89:6a: 14:43:7f:cb:37:a4:8a:72:82:9e:b2:8d:64:c7:d4: af:26:d9:a9:ae:42:e7:c0:1f:a6:31:a7:e4:a8:2e: fb:c5:df:7a:01:28:34:1f:4c:cb:2a:c8:c7:aa:38: c1:75:67:86:62:32:17:15:94:25:54:44:3d:9e:a5: bf:b4:e5:b6:de:92:ae:6d:48:e1:b1:d1:ec:2c:54: fc:1d:3b:a3:a9:b9:4a:41:84:77:23:c7:77:14:a7: 54:70:23:5c:f5:b5:d7:68:4d:db:3f:0c:54:13:b1: b7:0c:38:90:96:5c:95:d9:9e:68:1d:ad:a3:ee:e5: ac:c6:c1:2d:e9:15:5c:32:2d:fe:ec:4c:b6:09:2f: da:c1:37:10:ca:dc:5f:db:ee:b1:38:ee:4b:e1:05: 9f:7a:05:f3:49:33:15:24:a4:2f:75:82:e3:63:cd: 0a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:63:96:4F:43:B6:C2:7E:53:01:32:6A:0E:A7:E5:93:AE:1A:41:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.66.128.0/18 Signature Algorithm: sha256WithRSAEncryption 43:49:2b:0a:a1:29:07:c2:7c:05:df:d0:79:0c:3a:83:93:7c: b4:12:1b:cb:2a:ce:0c:b4:30:97:8c:84:a6:02:44:ea:89:6a: b7:b5:c1:10:f3:1c:a9:e9:fb:ea:f5:7e:8e:62:f1:4a:e4:58: ef:3c:67:e3:7d:05:3b:b9:b9:3b:f2:25:c5:a9:53:09:53:4c: ff:46:fa:13:26:82:3b:0d:d0:22:0c:df:ad:c1:a0:8c:46:86: 11:81:59:08:ff:98:61:53:cb:4e:f8:8b:a8:7e:aa:f1:25:34: 92:c0:a1:ff:02:6b:08:f7:ba:2b:58:f6:33:ae:ee:cf:49:ce: 78:3f:3a:d8:d9:be:0d:52:8c:af:07:65:c7:bd:4b:dc:e1:69: 78:6e:5a:3b:79:2b:ea:27:34:86:ed:b5:96:34:8c:c4:04:2b: e1:d9:0d:7e:63:7f:f4:8d:32:2f:2c:e9:03:a9:af:1f:23:16: f2:21:ea:a5:d6:f3:0f:5f:7b:4b:f9:f3:ea:4c:24:8e:c8:e2: 12:59:dc:7e:c5:d6:0e:19:11:99:ed:7e:61:f7:0c:13:ef:f8: 17:45:27:8f:60:a0:4f:b8:f0:3c:31:18:7e:24:db:c1:63:2c: 2b:a1:4d:d6:6a:85:c1:5f:ec:78:fa:d8:12:da:6e:71:b7:8b: 50:25:d0:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaSfPU35cEUmMTpAliP19lXflICgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTc0MDEyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjA3OWVhMTRkNWVhZjQ5YzliOWU5NGEzYmM2MzEwMjQ0 ODU4MDAxMmNkM2I2YTNlYTI5OThiZGRiOWEzMjdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAvYUWgtvTsCUN9CZHVVkRJTu6kRJ4aderxhIIabifN4Ws fllfHk9vRhbZjvOmFeusHjfXNUW9nesJeOkZ7flKEaPitESDGpj3wW7RDNccxeak 4GsJfx6JahRDf8s3pIpygp6yjWTH1K8m2amuQufAH6Yxp+SoLvvF33oBKDQfTMsq yMeqOMF1Z4ZiMhcVlCVURD2epb+05bbekq5tSOGx0ewsVPwdO6OpuUpBhHcjx3cU p1RwI1z1tddoTds/DFQTsbcMOJCWXJXZnmgdraPu5azGwS3pFVwyLf7sTLYJL9rB NxDK3F/b7rE47kvhBZ96BfNJMxUkpC91guNjzQonAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVWOWT0O2wn5TATJqDqflk64aQeowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMzZlYWNhLWRlMTQtNDgxZi1hZTRhLTU1Yzk5YjU3ZTUyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAQoAwDQYJKoZIhvcNAQELBQADggEBAENJKwqhKQfCfAXf0HkMOoOTfLQS G8sqzgy0MJeMhKYCROqJare1wRDzHKnp++r1fo5i8UrkWO88Z+N9BTu5uTvyJcWp UwlTTP9G+hMmgjsN0CIM363BoIxGhhGBWQj/mGFTy074i6h+qvElNJLAof8Cawj3 uitY9jOu7s9Jzng/OtjZvg1SjK8HZce9S9zhaXhuWjt5K+onNIbttZY0jMQEK+HZ DX5jf/SNMi8s6QOprx8jFvIh6qXW8w9fe0v58+pMJI7I4hJZ3H7F1g4ZEZntfmH3 DBPv+BdFJ49goE+48DwxGH4k28FjLCuhTdZqhcFf7Hj62BLabnG3i1Al0Dk= -----END CERTIFICATE-----Generated at Sat Apr 26 20:25:47 2025 by rpki-client