$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90250894-227b-4244-97af-9b2216446b2c.roa File: 90250894-227b-4244-97af-9b2216446b2c.roa (raw, json) Hash identifier: ruaqbFtMtQ0INJVzsdNZkNXllD+ZNV/7wt2CFlNt9bE= Subject key identifier: 2A:83:22:DC:ED:48:A3:CE:46:83:E3:4C:21:FF:11:72:80:1B:BB:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01D54E2EB8CAF288C4455987A633157A6CE15E4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90250894-227b-4244-97af-9b2216446b2c.roa Signing time: Sat 12 Apr 2025 00:01:21 +0000 ROA not before: Sat 12 Apr 2025 00:01:21 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 6167 IP address blocks: 204.126.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d5:4e:2e:b8:ca:f2:88:c4:45:59:87:a6:33:15:7a:6c:e1:5e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:01:21 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=e8dec0fc6c4cf43a47f3554b8344fa83180bb48d7f4271692a79f52b1b49e020, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d0:ed:3d:8b:5a:49:32:42:6f:28:2b:bb:97: ea:d4:2d:b4:14:c1:b1:4a:36:90:2d:4c:1a:2e:8f: 84:28:26:c7:ce:aa:40:43:f9:1a:8c:6e:d6:bd:d3: cc:bb:53:b1:6a:03:29:54:56:28:73:ed:ac:3f:11: 46:d1:72:7a:31:01:6f:3d:4b:5c:9f:c4:be:66:43: 5e:a6:31:94:02:dd:7d:ad:be:b1:c2:06:04:25:f5: 78:8e:48:ef:6c:ec:af:fa:01:67:eb:13:39:90:17: 84:4f:7a:a2:be:9d:99:82:68:f0:71:b3:d9:a7:ac: 65:3c:b0:e1:f6:82:88:1e:66:de:ab:a0:c5:26:f3: c1:1a:f3:94:2f:e7:eb:55:66:b4:b3:aa:0d:d2:44: 42:38:7e:7a:3a:1f:b3:2b:bd:7e:e6:c5:db:4f:95: 30:36:0b:3b:8b:a6:5c:5d:49:9d:12:4f:cd:21:f3: dd:52:ef:98:14:e5:56:86:0c:ec:94:63:c2:56:82: 92:4a:43:aa:7e:9a:7a:65:9a:c9:5b:88:be:ad:ea: fd:36:16:7e:00:e4:80:e4:44:ba:39:59:10:4c:80: 85:1b:ee:ff:12:d5:b2:17:b9:ff:d0:29:c4:f6:33: 53:f7:7a:35:2d:9c:f0:55:27:9d:7a:d3:d1:14:c2: 55:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:83:22:DC:ED:48:A3:CE:46:83:E3:4C:21:FF:11:72:80:1B:BB:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90250894-227b-4244-97af-9b2216446b2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.126.24.0/23 Signature Algorithm: sha256WithRSAEncryption 41:6c:29:0d:29:b2:f7:7d:7e:78:4d:a2:69:01:16:c0:56:e2: f1:2a:0c:da:6b:68:8a:46:87:86:81:d8:c2:8f:1d:79:73:c6: 4e:58:d7:e0:a8:6b:be:aa:b7:44:5c:9b:aa:ed:40:c8:31:2a: f6:9c:ed:00:7f:9d:8c:bc:49:11:16:05:08:d1:9f:34:70:cd: 67:b5:67:14:b3:ae:e2:0a:3d:c7:59:8f:d2:13:40:5a:3a:74: 7c:fc:7d:5e:01:f0:31:17:b9:f1:b0:4d:d2:7c:a1:8a:26:cc: a9:c3:e3:c7:f3:58:25:e9:ce:b3:67:cd:b5:62:8e:74:ff:ae: 47:38:39:e4:f4:7e:82:61:f8:8f:ca:13:d1:67:67:ca:f5:28: 2a:d7:12:b1:23:a4:47:64:f0:9b:a3:d4:43:d0:a5:72:1f:7d: 45:ee:41:df:4b:e4:0b:78:96:c2:ca:28:bb:3b:1b:3c:48:29: 40:5e:b7:94:9e:76:2a:29:fb:93:54:84:ac:bd:4b:f1:69:fe: 17:7b:2f:5a:05:ef:a0:e8:1f:4a:20:c1:a6:0f:d3:62:f1:b6: af:df:4e:80:cb:57:1d:9b:78:bc:2f:ad:73:b0:51:90:29:20: 6a:d4:e3:a3:08:9a:f8:21:74:98:89:d4:e2:4a:a3:ef:15:5e: 0d:e7:37:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAdVOLrjK8ojERVmHpjMVemzhXkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAwMTIxWhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGRlYzBmYzZjNGNmNDNhNDdmMzU1NGI4MzQ0ZmE4MzE4 MGJiNDhkN2Y0MjcxNjkyYTc5ZjUyYjFiNDllMDIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo0O09i1pJMkJvKCu7l+rULbQUwbFKNpAtTBouj4QoJsfO qkBD+RqMbta908y7U7FqAylUVihz7aw/EUbRcnoxAW89S1yfxL5mQ16mMZQC3X2t vrHCBgQl9XiOSO9s7K/6AWfrEzmQF4RPeqK+nZmCaPBxs9mnrGU8sOH2gogeZt6r oMUm88Ea85Qv5+tVZrSzqg3SREI4fno6H7MrvX7mxdtPlTA2CzuLplxdSZ0ST80h 891S75gU5VaGDOyUY8JWgpJKQ6p+mnplmslbiL6t6v02Fn4A5IDkRLo5WRBMgIUb 7v8S1bIXuf/QKcT2M1P3ejUtnPBVJ51609EUwlXpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKoMi3O1Io85Gg+NMIf8RcoAbu2MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwMjUwODk0LTIyN2ItNDI0NC05N2FmLTliMjIxNjQ0NmIyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHMfhgwDQYJKoZIhvcNAQELBQADggEBAEFsKQ0psvd9fnhNomkBFsBW4vEq DNpraIpGh4aB2MKPHXlzxk5Y1+Coa76qt0Rcm6rtQMgxKvac7QB/nYy8SREWBQjR nzRwzWe1ZxSzruIKPcdZj9ITQFo6dHz8fV4B8DEXufGwTdJ8oYomzKnD48fzWCXp zrNnzbVijnT/rkc4OeT0foJh+I/KE9FnZ8r1KCrXErEjpEdk8Juj1EPQpXIffUXu Qd9L5At4lsLKKLs7GzxIKUBet5Sediop+5NUhKy9S/Fp/hd7L1oF76DoH0ogwaYP 02Lxtq/fToDLVx2beLwvrXOwUZApIGrU46MImvghdJiJ1OJKo+8VXg3nNyk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:53 2025 by rpki-client