$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa File: a22c470d-8074-414a-ac14-cdafb7379aed.roa (raw, json) Hash identifier: P+AaubAfndy4Hm06w97i9NZW3Ql5sQHJjXEVgGVTkqk= Subject key identifier: A3:C0:CE:7F:F4:0F:79:71:41:0F:DE:68:34:EB:99:D9:F5:04:30:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3359B49120FE473AA40C09068B5EE7A7D5CA487F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa Signing time: Wed 09 Apr 2025 00:00:30 +0000 ROA not before: Wed 09 Apr 2025 00:00:30 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.250.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:59:b4:91:20:fe:47:3a:a4:0c:09:06:8b:5e:e7:a7:d5:ca:48:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:00:30 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=808a275bd455e04b309e4c1401735b2511737d295586ac1308c746a03e04dfb7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:65:ec:bc:73:cc:b4:9a:c4:c5:cd:1f:ac: 64:75:09:ca:cd:80:9d:af:c7:9d:67:b7:3a:ac:1d: 79:24:f4:74:01:f9:c6:0c:81:03:d2:cc:94:3e:5d: 8d:c2:da:f0:fc:c1:8f:3f:60:35:9c:56:d3:19:81: b5:13:3c:9e:1a:c7:f8:9b:b8:89:5b:7c:1e:0f:a5: 43:75:76:75:95:00:46:61:f9:0e:8f:28:aa:80:e2: f0:24:b1:70:e7:73:c7:a1:8f:1b:86:47:69:6d:9b: 4d:1e:a7:40:ab:99:74:30:87:e2:58:d6:b4:95:2e: 73:20:b0:a4:57:ab:88:6a:87:8e:16:bb:90:74:91: ab:76:5a:60:31:26:05:25:47:c4:45:f9:66:be:5b: df:bf:a0:16:38:6e:1c:f0:c1:f8:1a:40:18:e6:7e: 86:52:0c:0e:d8:dc:86:ae:23:88:36:69:28:91:5d: 59:90:5a:52:c9:98:e1:b3:bc:80:6e:ed:1c:90:a8: 97:86:d5:e6:db:ba:60:a3:be:49:13:23:94:53:27: f3:f7:a2:37:29:f9:18:a3:58:af:a7:01:41:e3:f5: 20:13:53:68:cd:fe:20:5f:87:fd:b8:2c:c7:23:7b: bf:52:1f:1e:94:3f:fb:4f:10:c2:22:b3:d3:51:4d: e9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C0:CE:7F:F4:0F:79:71:41:0F:DE:68:34:EB:99:D9:F5:04:30:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.250.236.0/24 Signature Algorithm: sha256WithRSAEncryption 20:e5:e9:be:7a:e3:bc:a4:da:7f:66:f2:b8:19:ef:7c:f5:5b: fb:a2:ed:c6:ac:83:fb:c0:83:01:32:ca:4c:2f:11:97:7b:5e: 22:26:95:bf:25:27:1e:65:7e:cf:de:f0:62:24:3e:00:ca:b2: 30:2d:54:fa:14:94:f8:5e:50:4e:d5:f4:2d:c9:b9:46:92:f8: ef:e9:77:4e:ef:8b:f8:2a:67:42:f7:cd:3b:19:38:f6:a9:32: a7:14:8a:05:d6:f1:ec:4c:71:8f:24:fe:02:fa:49:06:48:13: 0d:19:63:47:f0:89:6f:b4:14:68:14:d9:ee:c0:3e:8f:98:0e: de:67:09:69:fa:b2:4b:d9:b0:70:b8:34:12:19:6d:a9:fe:19: 67:24:c6:b2:d8:94:ee:2f:01:14:5c:d1:f3:b4:95:37:c3:49: a8:3f:c8:bf:8a:1d:d9:e9:bb:eb:c0:d8:b5:92:6c:7f:0d:f9: cc:f5:ca:20:8c:26:87:89:ce:6a:e6:67:ea:0a:b7:fd:db:31: 7d:cf:c5:e9:8c:ad:48:b8:37:ee:a8:a3:a6:c3:cc:fc:c3:4c: 18:8d:d6:f3:b2:d0:81:13:bf:cb:dd:ff:02:ef:31:e9:98:aa: 9f:43:e8:11:81:cb:ff:8c:e2:ad:e7:e4:7e:af:6b:b9:3b:5d: a9:54:12:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM1m0kSD+RzqkDAkGi17np9XKSH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAwMDMwWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDhhMjc1YmQ0NTVlMDRiMzA5ZTRjMTQwMTczNWIyNTEx NzM3ZDI5NTU4NmFjMTMwOGM3NDZhMDNlMDRkZmI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvImXsvHPMtJrExc0frGR1CcrNgJ2vx51ntzqsHXkk9HQB +cYMgQPSzJQ+XY3C2vD8wY8/YDWcVtMZgbUTPJ4ax/ibuIlbfB4PpUN1dnWVAEZh +Q6PKKqA4vAksXDnc8ehjxuGR2ltm00ep0CrmXQwh+JY1rSVLnMgsKRXq4hqh44W u5B0kat2WmAxJgUlR8RF+Wa+W9+/oBY4bhzwwfgaQBjmfoZSDA7Y3IauI4g2aSiR XVmQWlLJmOGzvIBu7RyQqJeG1ebbumCjvkkTI5RTJ/P3ojcp+RijWK+nAUHj9SAT U2jN/iBfh/24LMcje79SHx6UP/tPEMIis9NRTen1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo8DOf/QPeXFBD95oNOuZ2fUEMCQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyMmM0NzBkLTgwNzQtNDE0YS1hYzE0LWNkYWZiNzM3OWFlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi+uwwDQYJKoZIhvcNAQELBQADggEBACDl6b5647yk2n9m8rgZ73z1W/ui 7casg/vAgwEyykwvEZd7XiImlb8lJx5lfs/e8GIkPgDKsjAtVPoUlPheUE7V9C3J uUaS+O/pd07vi/gqZ0L3zTsZOPapMqcUigXW8exMcY8k/gL6SQZIEw0ZY0fwiW+0 FGgU2e7APo+YDt5nCWn6skvZsHC4NBIZban+GWckxrLYlO4vARRc0fO0lTfDSag/ yL+KHdnpu+vA2LWSbH8N+cz1yiCMJoeJzmrmZ+oKt/3bMX3PxemMrUi4N+6oo6bD zPzDTBiN1vOy0IETv8vd/wLvMemYqp9D6BGBy/+M4q3n5H6va7k7XalUEq4= -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:09 2025 by rpki-client