$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa File: ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa (raw, json) Hash identifier: qwkrxXbhue7w6bEOZUhpplLyuSFRCBPh/Scd0qjsJL4= Subject key identifier: 71:E6:F6:3F:55:D7:1D:BA:87:2B:16:D2:7D:01:A0:10:36:01:F8:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47AE4B1DBEDA12F88CADAFCB385690D73DF439D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa Signing time: Wed 23 Apr 2025 00:50:59 +0000 ROA not before: Wed 23 Apr 2025 00:50:59 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ae:4b:1d:be:da:12:f8:8c:ad:af:cb:38:56:90:d7:3d:f4:39:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:50:59 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=f5b31164373a7ec5ad1e6593f87d60190915efee2f60fa01561efc61a6de7d27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:af:22:3f:ba:6b:87:d0:4a:e3:6d:de:16:34: 3f:6b:09:ab:ac:a8:aa:d1:f7:f1:a7:ad:87:9c:41: 0b:af:60:ac:98:25:38:15:70:8f:07:44:84:43:f3: fd:5c:b4:12:5a:f4:17:9f:c5:77:f7:9f:d9:6e:32: 68:82:1b:e4:15:b7:be:cd:0d:c7:aa:6c:df:4d:c6: 49:fa:7e:b5:dd:83:9c:8f:d0:f3:db:83:21:9d:ee: 85:1a:80:2f:3e:3b:d8:26:90:5d:37:19:6d:b7:4f: 7a:69:29:dd:53:75:40:da:33:11:ca:c3:78:60:36: 26:22:51:27:37:d5:84:de:f2:a1:ea:1c:fc:b5:c9: cd:e6:90:93:b0:46:90:df:ad:1e:42:44:9e:9d:1f: 6c:ae:ed:ae:2c:59:4a:05:d6:0f:db:02:12:6d:00: 55:23:08:a5:85:54:93:08:b9:83:00:cf:9c:d7:6c: 19:e1:4f:18:ae:e0:4e:20:2a:b4:7a:84:de:5a:fb: af:a9:22:a8:43:5d:38:d7:29:ae:70:7e:ad:6e:a0: 55:e0:38:93:eb:04:86:a5:37:a3:1e:03:43:57:47: ec:62:82:7c:f2:08:a5:3a:84:7c:e2:b2:87:2d:5d: ef:e0:80:49:89:13:7d:0d:79:41:be:54:25:f5:c2: 5e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E6:F6:3F:55:D7:1D:BA:87:2B:16:D2:7D:01:A0:10:36:01:F8:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/20 Signature Algorithm: sha256WithRSAEncryption 70:ba:0c:40:da:de:84:09:18:f6:c7:d9:a6:fa:b5:ea:a1:1a: 53:12:10:a5:53:24:67:e3:e3:14:5c:61:0c:3e:c8:0b:36:67: 0b:ff:4d:fc:6c:86:ea:53:db:70:66:04:90:67:51:fa:96:78: ad:59:8b:e4:1a:d2:9c:c8:19:b2:c5:d6:ae:14:f0:89:31:6e: 9e:86:49:5a:ca:1a:82:f4:b8:e3:72:1c:63:51:ef:bd:8f:0b: 33:47:8b:2a:a2:f9:0a:a6:cc:55:a8:61:f4:34:7d:4b:1a:06: 4e:13:a0:70:d6:9c:dc:5d:8a:c3:38:56:4a:3a:01:cf:1c:84: 52:fe:2d:53:cc:38:76:c6:98:f6:be:a0:51:52:ce:80:20:39: af:c1:7f:c8:80:f6:47:af:4b:a2:85:bf:01:c0:1b:80:20:7f: 2a:a2:cc:e3:f9:9a:cb:20:c2:98:8e:7e:14:00:4e:a4:ae:7e: a1:64:64:4d:07:9b:0b:be:da:4c:d2:71:44:3b:88:ad:6f:82: 3d:eb:26:a6:71:02:a8:22:67:e6:8b:46:8c:38:85:42:b8:45: 9e:23:a3:18:b0:53:cc:15:66:93:dd:c3:54:7a:6a:93:b7:09: 7e:eb:35:71:54:cb:e5:56:4d:0c:e3:63:74:ff:28:04:72:b6: 33:cc:f4:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR65LHb7aEviMra/LOFaQ1z30OdgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MDU5WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWIzMTE2NDM3M2E3ZWM1YWQxZTY1OTNmODdkNjAxOTA5 MTVlZmVlMmY2MGZhMDE1NjFlZmM2MWE2ZGU3ZDI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1ryI/umuH0Erjbd4WND9rCausqKrR9/GnrYecQQuvYKyY JTgVcI8HRIRD8/1ctBJa9BefxXf3n9luMmiCG+QVt77NDceqbN9Nxkn6frXdg5yP 0PPbgyGd7oUagC8+O9gmkF03GW23T3ppKd1TdUDaMxHKw3hgNiYiUSc31YTe8qHq HPy1yc3mkJOwRpDfrR5CRJ6dH2yu7a4sWUoF1g/bAhJtAFUjCKWFVJMIuYMAz5zX bBnhTxiu4E4gKrR6hN5a+6+pIqhDXTjXKa5wfq1uoFXgOJPrBIalN6MeA0NXR+xi gnzyCKU6hHzisoctXe/ggEmJE30NeUG+VCX1wl7/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUceb2P1XXHbqHKxbSfQGgEDYB+NUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiNDIwN2E5LTZiZmUtNDhmOC05YzU3LTExYzU5OGRlYTM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7OAwDQYJKoZIhvcNAQELBQADggEBAHC6DEDa3oQJGPbH2ab6teqhGlMS EKVTJGfj4xRcYQw+yAs2Zwv/TfxshupT23BmBJBnUfqWeK1Zi+Qa0pzIGbLF1q4U 8Ikxbp6GSVrKGoL0uONyHGNR772PCzNHiyqi+QqmzFWoYfQ0fUsaBk4ToHDWnNxd isM4Vko6Ac8chFL+LVPMOHbGmPa+oFFSzoAgOa/Bf8iA9kevS6KFvwHAG4Agfyqi zOP5mssgwpiOfhQATqSufqFkZE0Hmwu+2kzScUQ7iK1vgj3rJqZxAqgiZ+aLRow4 hUK4RZ4joxiwU8wVZpPdw1R6apO3CX7rNXFUy+VWTQzjY3T/KARytjPM9Hk= -----END CERTIFICATE-----Generated at Sat Apr 26 19:24:26 2025 by rpki-client