$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa File: a6994578-2d48-4426-8ebb-7657049c78ef.roa (raw, json) Hash identifier: AxbicEZtUgDMxbE905w2sh13N+2/lSlSBkqPOD7Nnlc= Subject key identifier: 30:AF:E6:2D:CF:BF:2F:92:D1:39:FA:02:C2:80:E0:97:D2:BA:12:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: DB210A4A2D7669DAF62B62D559DFD948E8005D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa Signing time: Fri 18 Apr 2025 00:50:15 +0000 ROA not before: Fri 18 Apr 2025 00:50:15 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: db:21:0a:4a:2d:76:69:da:f6:2b:62:d5:59:df:d9:48:e8:00:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:50:15 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=6df8ddf9f5356496b5486acf29982e43583b2977cbb6e732d681e5d1e753c5b0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:72:20:27:21:66:22:69:af:72:55:9e:02: 62:5c:7c:bc:11:a2:e8:e6:2c:a4:93:90:73:f6:5d: 96:84:b5:49:77:df:df:66:3f:37:c0:69:f7:38:6e: 2a:9d:ca:1e:21:1a:51:9a:a5:9c:8e:29:fd:55:fe: 2e:a3:8d:15:3c:8e:62:c8:27:e8:34:a6:61:3e:f6: 5f:9f:c8:d7:ca:d3:f6:f4:74:a6:a9:d0:79:d2:39: 17:ab:17:bb:dd:81:30:4b:6d:94:64:1e:ff:44:6a: 8a:e0:8e:c0:06:65:1d:eb:64:d1:66:c0:e6:77:b8: b5:79:35:93:44:22:0f:8a:3e:cf:50:77:60:54:c4: 90:64:45:d4:46:5e:b6:7c:93:4c:3e:bd:9e:bf:8b: 1d:96:0e:55:f9:f4:2c:ce:77:c8:65:3d:c4:14:39: f6:d6:17:a2:2b:7b:d3:62:4b:9f:6e:62:14:90:09: ec:b7:33:2c:3b:ee:04:87:40:d6:3d:f1:82:1e:20: 8a:28:ad:3a:9e:d4:1f:8b:f1:0e:65:70:f4:62:33: 06:8f:56:b2:0c:c8:7b:4d:b7:01:c2:4d:1b:37:51: 14:91:8b:07:72:30:6a:b9:ab:dc:d1:24:b9:4a:fd: 13:50:b3:b5:61:26:82:e7:b1:24:12:d1:a5:e9:a4: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AF:E6:2D:CF:BF:2F:92:D1:39:FA:02:C2:80:E0:97:D2:BA:12:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.172.0/23 Signature Algorithm: sha256WithRSAEncryption 34:75:bd:57:9c:7e:d5:46:7d:6c:8b:14:09:53:37:d8:fb:c7: ed:e9:51:fa:26:6b:93:a7:27:e1:22:b9:b1:af:97:6d:fe:0c: fc:5c:c4:57:eb:19:9c:6b:be:ae:d8:cb:f0:35:29:7a:dd:f2: 76:00:f5:ec:a2:a2:62:89:67:35:f9:46:87:4e:7d:a4:2f:7c: aa:81:f6:f4:8e:b4:90:81:88:f3:c6:8a:06:85:b5:36:1b:b4: 35:73:78:44:05:cc:c2:4b:6d:19:fc:35:f7:92:7d:2a:6b:2e: fa:08:d8:ab:b5:ea:af:2f:92:56:b1:92:e8:1e:3e:9c:57:e5: 70:6f:20:cf:2e:06:76:71:7f:ed:56:7e:7e:d8:4b:48:18:11: df:7f:41:23:00:1e:82:b1:d2:c2:1c:6d:35:cc:22:57:b3:97: 02:b6:c1:12:4a:df:c9:2b:80:a4:4b:7a:56:87:59:1a:cf:1f: 0c:02:10:a6:a3:f7:85:a0:b1:95:ff:63:03:29:ba:46:45:ae: b3:07:12:3e:cf:70:86:f4:32:a5:fe:d7:4f:4b:d6:cc:8b:89: af:a6:78:ed:ea:a3:b6:36:58:21:1d:54:b1:96:8f:1b:1c:0e: c5:19:bb:1b:0e:b8:52:8c:a8:4b:4a:ce:fe:41:86:38:34:f7: 32:4d:d2:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUANshCkotdmna9iti1Vnf2UjoAF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDA1MDE1WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGY4ZGRmOWY1MzU2NDk2YjU0ODZhY2YyOTk4MmU0MzU4 M2IyOTc3Y2JiNmU3MzJkNjgxZTVkMWU3NTNjNWIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC03XIgJyFmImmvclWeAmJcfLwRoujmLKSTkHP2XZaEtUl3 399mPzfAafc4biqdyh4hGlGapZyOKf1V/i6jjRU8jmLIJ+g0pmE+9l+fyNfK0/b0 dKap0HnSORerF7vdgTBLbZRkHv9EaorgjsAGZR3rZNFmwOZ3uLV5NZNEIg+KPs9Q d2BUxJBkRdRGXrZ8k0w+vZ6/ix2WDlX59CzOd8hlPcQUOfbWF6Ire9NiS59uYhSQ Cey3Myw77gSHQNY98YIeIIoorTqe1B+L8Q5lcPRiMwaPVrIMyHtNtwHCTRs3URSR iwdyMGq5q9zRJLlK/RNQs7VhJoLnsSQS0aXppBFNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMK/mLc+/L5LROfoCwoDgl9K6EuEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2OTk0NTc4LTJkNDgtNDQyNi04ZWJiLTc2NTcwNDljNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAKwwDQYJKoZIhvcNAQELBQADggEBADR1vVecftVGfWyLFAlTN9j7x+3p Ufoma5OnJ+EiubGvl23+DPxcxFfrGZxrvq7Yy/A1KXrd8nYA9eyiomKJZzX5RodO faQvfKqB9vSOtJCBiPPGigaFtTYbtDVzeEQFzMJLbRn8NfeSfSprLvoI2Ku16q8v klaxkugePpxX5XBvIM8uBnZxf+1Wfn7YS0gYEd9/QSMAHoKx0sIcbTXMIlezlwK2 wRJK38krgKRLelaHWRrPHwwCEKaj94WgsZX/YwMpukZFrrMHEj7PcIb0MqX+109L 1syLia+meO3qo7Y2WCEdVLGWjxscDsUZuxsOuFKMqEtKzv5Bhjg09zJN0mA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:11 2025 by rpki-client