$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e81d9f6-5425-4345-a797-38781819acdc.roa File: 9e81d9f6-5425-4345-a797-38781819acdc.roa (raw, json) Hash identifier: 5MMreAuou0neJ5zxNlj1unWA7+K740Q2FPoRuLvFp3M= Subject key identifier: 9B:FD:F7:1A:68:1A:5C:03:93:C9:D8:5F:77:94:A9:33:DE:B0:80:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 728BFB9AB20E3A0F42F9D160BF87B492E75A5AD6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e81d9f6-5425-4345-a797-38781819acdc.roa Signing time: Mon 14 Apr 2025 15:21:30 +0000 ROA not before: Mon 14 Apr 2025 15:21:30 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8b:fb:9a:b2:0e:3a:0f:42:f9:d1:60:bf:87:b4:92:e7:5a:5a:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:21:30 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=2a626e9cf85d21135b0268f6031e0f981084b8266fb5f19d3ee0fdaedcbd46f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:92:fe:66:bf:a2:65:31:96:f3:e8:1a:33:d1: 99:80:7f:f7:ee:13:9e:14:fb:47:61:8d:31:f8:cc: c0:9d:ce:a8:91:41:ea:a3:03:c4:db:1c:48:9c:37: 4f:44:c4:db:dd:95:0d:c4:b3:f5:1d:7e:95:22:6f: a7:05:b2:77:26:9c:39:e3:aa:f0:53:6c:c4:bc:8e: 3e:e0:55:5d:2d:4d:b7:14:4b:a6:a7:31:a8:be:a1: ae:5d:23:03:e9:df:82:c2:77:9f:f8:e4:68:ed:f3: 33:e9:de:15:25:20:df:57:30:9d:95:00:b7:55:2f: 91:e3:29:93:a8:83:bb:88:29:ef:82:5e:38:37:4d: dc:fc:02:f4:09:8b:e6:4a:9c:64:52:44:97:97:cd: b3:88:c4:34:c0:96:eb:7a:2d:13:01:7f:31:d1:a4: 45:33:bb:ef:89:bf:f0:6b:14:3c:2b:3f:30:61:02: 1b:2a:69:83:11:7a:6e:2a:42:fc:f1:b2:2a:f0:2f: 7c:20:e2:0c:b4:6e:14:1f:f3:38:bc:93:2d:e6:6f: a9:10:ff:fc:7b:b4:f1:0e:94:be:3b:b4:be:45:9f: 40:97:6a:11:19:90:6f:6c:9a:0b:5a:8c:c1:f1:2c: 64:a2:91:dd:8c:6a:0e:62:2e:60:17:42:08:4d:de: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FD:F7:1A:68:1A:5C:03:93:C9:D8:5F:77:94:A9:33:DE:B0:80:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e81d9f6-5425-4345-a797-38781819acdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3b:aa:48:37:ff:bc:52:c3:75:cc:1f:cd:6f:3b:c5:bd:9c:ae: 9a:c6:75:6f:c0:86:4c:bc:8d:0a:e8:de:0e:8d:1f:79:23:1d: e6:de:3c:05:ce:34:20:1b:92:a8:c0:48:7d:fa:76:c5:1f:fe: db:63:93:07:5a:75:ee:c6:d0:2e:8b:40:aa:41:45:6b:52:22: 8a:26:c5:19:92:bc:ec:0d:fc:87:ef:35:41:95:67:16:3d:e4: a7:39:b8:1d:d4:3d:5a:63:e5:f9:fd:ba:84:ef:37:a7:1f:e4: d3:79:4c:4a:15:e6:ac:4a:59:1f:78:e6:26:4e:76:7c:32:40: 48:a2:1b:6d:e9:87:95:c7:44:ec:28:3b:ae:19:23:fa:56:b1: f1:2e:01:3b:27:e9:e8:c9:08:16:4f:cf:34:c4:df:73:57:f7: af:fc:25:c1:b1:a8:18:73:c1:5e:6e:bd:04:76:cd:57:f9:b0: 91:53:8a:46:df:bf:d2:bc:90:e2:94:e9:68:68:04:e6:63:dc: 4a:3a:49:d4:b3:a7:ca:3a:8f:f5:75:02:8a:35:58:99:3b:41: 3e:9e:77:8d:d4:c2:3d:f3:07:da:06:4c:eb:19:7c:51:e3:46: 8e:fc:9d:32:1e:e8:ea:38:ce:ea:16:ec:ec:a1:8c:15:4f:bb: 91:5d:5e:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcov7mrIOOg9C+dFgv4e0kudaWtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMTMwWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTYyNmU5Y2Y4NWQyMTEzNWIwMjY4ZjYwMzFlMGY5ODEw ODRiODI2NmZiNWYxOWQzZWUwZmRhZWRjYmQ0NmYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXkv5mv6JlMZbz6Boz0ZmAf/fuE54U+0dhjTH4zMCdzqiR QeqjA8TbHEicN09ExNvdlQ3Es/UdfpUib6cFsncmnDnjqvBTbMS8jj7gVV0tTbcU S6anMai+oa5dIwPp34LCd5/45Gjt8zPp3hUlIN9XMJ2VALdVL5HjKZOog7uIKe+C Xjg3Tdz8AvQJi+ZKnGRSRJeXzbOIxDTAlut6LRMBfzHRpEUzu++Jv/BrFDwrPzBh AhsqaYMRem4qQvzxsirwL3wg4gy0bhQf8zi8ky3mb6kQ//x7tPEOlL47tL5Fn0CX ahEZkG9smgtajMHxLGSikd2Mag5iLmAXQghN3kX/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm/33GmgaXAOTydhfd5SpM96wgFUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllODFkOWY2LTU0MjUtNDM0NS1hNzk3LTM4NzgxODE5YWNkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4SEAwDQYJKoZIhvcNAQELBQADggEBADuqSDf/vFLDdcwfzW87xb2crprG dW/Ahky8jQro3g6NH3kjHebePAXONCAbkqjASH36dsUf/ttjkwdade7G0C6LQKpB RWtSIoomxRmSvOwN/IfvNUGVZxY95Kc5uB3UPVpj5fn9uoTvN6cf5NN5TEoV5qxK WR945iZOdnwyQEiiG23ph5XHROwoO64ZI/pWsfEuATsn6ejJCBZPzzTE33NX96/8 JcGxqBhzwV5uvQR2zVf5sJFTikbfv9K8kOKU6WhoBOZj3Eo6SdSzp8o6j/V1Aoo1 WJk7QT6ed43Uwj3zB9oGTOsZfFHjRo78nTIe6Oo4zuoW7OyhjBVPu5FdXmc= -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:28 2025 by rpki-client