$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa File: 9846244a-41d6-4a61-bc45-ec42cedff928.roa (raw, json) Hash identifier: zfgh1NyFO3ew+QubZ5gmfuAF+KjXmCzgCNjUDdZrvNg= Subject key identifier: 5C:B2:55:AF:F8:42:57:A8:81:86:65:85:2A:BB:7C:7B:8F:55:5B:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7035FED0A547FBB920CEDD9ED6F4122A62198AB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa Signing time: Fri 25 Apr 2025 00:41:21 +0000 ROA not before: Fri 25 Apr 2025 00:41:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:35:fe:d0:a5:47:fb:b9:20:ce:dd:9e:d6:f4:12:2a:62:19:8a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f3fa5c01828170c9ca329892c7bc16cd547bc872dd80da308e59c53f587f6761, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bc:eb:28:03:61:5e:0e:52:59:c1:fc:73:4a: c3:42:43:59:bf:44:f2:30:6f:52:66:6c:50:b0:73: 96:af:55:34:cf:7b:59:55:5f:6e:18:c7:36:01:bf: 3b:93:e9:4b:f7:70:99:6e:cf:32:de:3a:51:85:73: a4:e7:ff:65:6f:dd:52:9b:13:ed:b9:91:e5:55:14: 29:44:76:6c:10:8a:cc:31:cd:32:d0:f6:b3:a9:61: 4c:7e:3e:1f:89:ba:b5:ef:51:50:4b:07:03:c0:c3: 82:b3:2c:08:4e:2f:13:c4:b0:c1:6c:3a:f9:c5:e6: 20:69:5a:52:a6:e6:55:53:12:ef:df:26:85:4e:c8: 81:f1:b4:35:53:d8:9a:fe:85:df:ba:62:87:85:77: 00:dd:aa:a8:15:bd:c1:51:22:9b:70:9e:ca:1a:c9: 07:3a:2a:71:9d:43:f2:7b:5f:37:6e:68:6a:cd:de: 14:04:f2:e9:59:e6:82:4e:4a:31:49:b4:97:ff:f4: 43:ac:5d:cf:43:ba:2f:fa:a4:7f:84:d6:07:94:99: 26:b4:5b:1d:35:44:63:83:5a:90:94:d4:46:d7:90: f6:2e:29:5d:a9:e6:f1:61:35:00:44:e2:85:e8:50: 4d:b1:fa:9e:2b:ff:d6:d2:a8:10:9d:e2:b0:6a:95: 3a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B2:55:AF:F8:42:57:A8:81:86:65:85:2A:BB:7C:7B:8F:55:5B:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 94:8b:9a:91:76:33:3a:a1:b0:cf:56:86:a0:e8:44:d1:9e:2a: 44:8d:16:2a:88:f1:63:d2:3c:83:86:50:fc:49:a6:09:93:e9: b7:ce:5c:6c:de:51:4f:5d:d5:f8:9b:aa:ac:4f:14:9a:73:fa: e8:c8:69:1a:65:f0:97:d0:5c:66:e7:7c:16:16:95:f7:93:4c: 82:4e:4f:9c:de:63:a2:b6:24:3b:16:88:e6:5b:8e:cf:e9:b5: 08:c3:7a:b2:2e:08:06:7c:cf:c7:e8:67:77:58:28:17:9b:a2: 25:e9:38:63:0e:55:55:80:70:4d:af:86:c3:73:59:74:36:2d: fe:92:f6:6e:78:79:13:5c:94:3d:6b:a5:43:ca:a1:6d:2f:80: 0d:3c:30:c1:6a:aa:5f:51:76:99:68:b4:d2:8e:38:d1:eb:4b: f3:c4:2c:46:07:c6:a6:5c:2e:52:75:31:0c:b5:74:63:a0:cb: 27:36:46:99:7e:6a:e9:59:a3:d2:56:a5:14:31:07:c2:47:35: d7:e7:52:1e:38:82:b1:1b:2c:e2:9b:9e:df:43:05:f9:cf:c6: 72:ef:1a:5d:93:33:22:64:35:1a:78:12:63:8e:da:1c:05:f9: 12:97:53:ed:82:8b:87:e7:68:c7:6f:89:d0:cb:09:b2:ef:bd: ae:60:0e:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcDX+0KVH+7kgzt2e1vQSKmIZirYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MTIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2ZhNWMwMTgyODE3MGM5Y2EzMjk4OTJjN2JjMTZjZDU0 N2JjODcyZGQ4MGRhMzA4ZTU5YzUzZjU4N2Y2NzYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWvOsoA2FeDlJZwfxzSsNCQ1m/RPIwb1JmbFCwc5avVTTP e1lVX24YxzYBvzuT6Uv3cJluzzLeOlGFc6Tn/2Vv3VKbE+25keVVFClEdmwQiswx zTLQ9rOpYUx+Ph+JurXvUVBLBwPAw4KzLAhOLxPEsMFsOvnF5iBpWlKm5lVTEu/f JoVOyIHxtDVT2Jr+hd+6YoeFdwDdqqgVvcFRIptwnsoayQc6KnGdQ/J7XzduaGrN 3hQE8ulZ5oJOSjFJtJf/9EOsXc9Dui/6pH+E1geUmSa0Wx01RGODWpCU1EbXkPYu KV2p5vFhNQBE4oXoUE2x+p4r/9bSqBCd4rBqlTrFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXLJVr/hCV6iBhmWFKrt8e49VW2cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NDYyNDRhLTQxZDYtNGE2MS1iYzQ1LWVjNDJjZWRmZjkyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo0DANBgkqhkiG9w0BAQsFAAOCAQEAlIuakXYzOqGwz1aGoOhE0Z4qRI0W KojxY9I8g4ZQ/EmmCZPpt85cbN5RT13V+JuqrE8UmnP66MhpGmXwl9BcZud8FhaV 95NMgk5PnN5jorYkOxaI5luOz+m1CMN6si4IBnzPx+hnd1goF5uiJek4Yw5VVYBw Ta+Gw3NZdDYt/pL2bnh5E1yUPWulQ8qhbS+ADTwwwWqqX1F2mWi00o440etL88Qs RgfGplwuUnUxDLV0Y6DLJzZGmX5q6Vmj0lalFDEHwkc11+dSHjiCsRss4pue30MF +c/Gcu8aXZMzImQ1GngSY47aHAX5EpdT7YKLh+dox2+J0MsJsu+9rmAOjg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:03 2025 by rpki-client