$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa File: 9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa (raw, json) Hash identifier: naB7g/bsoYqFvHR1PWYwIcRH2HUgZPkVWbhjRzrS5jA= Subject key identifier: F3:99:BB:BC:F5:4B:69:87:0E:42:4E:32:AC:DD:BC:D4:37:9A:0B:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01A76DDE378D687E7C91C6EEDC2BE01618B7EA21 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa Signing time: Wed 16 Apr 2025 00:11:13 +0000 ROA not before: Wed 16 Apr 2025 00:11:13 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:a7:6d:de:37:8d:68:7e:7c:91:c6:ee:dc:2b:e0:16:18:b7:ea:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:11:13 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=588c6eea145d0eddac9515d82eecb2453c481e67f0058caee4adeb95776fa90d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:e5:1f:45:91:45:a9:0b:98:77:13:1b:5a: 1b:f8:06:cc:0b:a5:a6:81:c0:2e:5d:65:2a:05:6e: 07:89:a6:21:70:3a:84:a7:3c:1d:b3:47:82:5b:1d: 6a:17:bf:d6:85:06:f4:2a:72:a0:9a:8e:2a:ae:23: 8f:8d:12:81:e9:66:ca:6b:59:3a:77:eb:9e:c5:2b: 48:a3:89:17:ad:f0:0b:c0:a2:ed:27:65:af:56:63: 37:7d:be:69:b9:8d:40:b3:e1:c8:4c:27:26:65:0b: 62:6f:5d:06:35:f1:a9:cc:c9:4e:ba:9a:44:7a:d8: a2:47:84:d5:f1:82:f1:d0:52:19:f0:ac:29:dc:1a: 61:74:b4:9b:01:dc:fa:b5:4b:7c:94:f3:97:07:cf: 6d:0d:22:b7:da:4f:b2:b4:90:fe:27:80:08:c2:ef: 4b:52:86:d3:93:62:51:de:a0:41:89:76:cf:67:4f: d0:67:9f:19:33:a9:14:b4:e1:1c:bb:27:3c:42:ec: 7c:99:7d:91:a4:69:7b:a2:f6:83:a6:31:f9:f7:da: 94:cf:5c:a6:ba:b2:f4:91:f1:a2:f4:59:58:b0:b5: c3:05:44:1c:0e:d5:aa:0d:9f:f5:76:9f:73:1f:db: 12:06:76:50:86:a9:8b:a4:d8:55:76:88:04:98:e1: 95:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:99:BB:BC:F5:4B:69:87:0E:42:4E:32:AC:DD:BC:D4:37:9A:0B:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.61.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:45:4a:8b:34:46:b7:46:94:26:75:29:56:e5:b0:7a:e7:fb: 3a:75:85:03:c9:1d:2a:62:91:f6:a4:bc:8b:6f:fa:4d:a2:71: b6:48:65:c2:10:a7:66:d9:d2:f8:22:dc:c0:7c:f7:27:97:59: 26:a7:83:92:72:82:99:7b:86:a3:8c:d4:d6:2f:bf:bc:bf:83: b3:40:c6:80:bc:da:6c:57:9d:f9:e9:e1:75:d0:29:37:d1:48: c4:db:66:80:6d:d0:d0:9c:92:2a:28:20:60:1c:9d:c1:c6:2a: b4:41:26:87:cc:db:e5:ee:00:f3:30:b7:43:84:5b:85:51:a0: e4:38:66:66:90:bf:a0:92:96:cd:ec:8a:bf:1c:73:59:fd:7c: 7f:d1:09:33:95:70:3c:01:42:0b:95:ad:3d:4c:94:f4:aa:fb: 81:e0:8a:6b:50:f4:7a:cd:d3:07:88:e8:80:e2:f8:a4:4a:ff: 1b:91:b9:b8:ed:51:64:71:37:d7:6a:74:a4:08:24:97:42:bd: 97:45:41:35:2f:8d:4c:5a:21:32:a9:de:75:be:96:8c:f1:41: f1:4c:6f:e8:1f:26:ff:b8:df:66:07:70:5b:73:e2:d0:2b:e3: 75:08:03:e6:d2:2f:19:88:e7:7a:96:50:8e:f7:e2:67:21:eb: 27:2a:3b:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAadt3jeNaH58kcbu3CvgFhi36iEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAxMTEzWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODhjNmVlYTE0NWQwZWRkYWM5NTE1ZDgyZWVjYjI0NTNj NDgxZTY3ZjAwNThjYWVlNGFkZWI5NTc3NmZhOTBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdbuUfRZFFqQuYdxMbWhv4BswLpaaBwC5dZSoFbgeJpiFw OoSnPB2zR4JbHWoXv9aFBvQqcqCajiquI4+NEoHpZsprWTp3657FK0ijiRet8AvA ou0nZa9WYzd9vmm5jUCz4chMJyZlC2JvXQY18anMyU66mkR62KJHhNXxgvHQUhnw rCncGmF0tJsB3Pq1S3yU85cHz20NIrfaT7K0kP4ngAjC70tShtOTYlHeoEGJds9n T9BnnxkzqRS04Ry7JzxC7HyZfZGkaXui9oOmMfn32pTPXKa6svSR8aL0WViwtcMF RBwO1aoNn/V2n3Mf2xIGdlCGqYuk2FV2iASY4ZVfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU85m7vPVLaYcOQk4yrN281DeaC7gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhY2ExYWY1LTcwYWQtNDZmOC05NDM1LTdhMzVhOTdjZWYxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODD0wDQYJKoZIhvcNAQELBQADggEBAC1FSos0RrdGlCZ1KVblsHrn+zp1 hQPJHSpikfakvItv+k2icbZIZcIQp2bZ0vgi3MB89yeXWSang5Jygpl7hqOM1NYv v7y/g7NAxoC82mxXnfnp4XXQKTfRSMTbZoBt0NCckiooIGAcncHGKrRBJofM2+Xu APMwt0OEW4VRoOQ4ZmaQv6CSls3sir8cc1n9fH/RCTOVcDwBQguVrT1MlPSq+4Hg imtQ9HrN0weI6IDi+KRK/xuRubjtUWRxN9dqdKQIJJdCvZdFQTUvjUxaITKp3nW+ lozxQfFMb+gfJv+432YHcFtz4tAr43UIA+bSLxmI53qWUI734mch6ycqO94= -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:10 2025 by rpki-client