$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa File: aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa (raw, json) Hash identifier: pjV06Q10ePpHnzglUYRH5JuGNWIuzNqLKHz9sN4phuU= Subject key identifier: 0E:F5:D0:7B:AD:8C:17:CB:78:AD:F1:F3:CE:8D:E7:B2:FB:B0:17:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51A3860B5CCBF8EC54F80F1D9B82B51133192384 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa Signing time: Sat 26 Apr 2025 00:00:21 +0000 ROA not before: Sat 26 Apr 2025 00:00:21 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a3:86:0b:5c:cb:f8:ec:54:f8:0f:1d:9b:82:b5:11:33:19:23:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:21 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=f19c4797d08b0496854ebca15dfd3a43435999eb38f0aef8b6573260ce1b362a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1a:06:23:eb:a3:50:85:71:a8:1c:55:a9:5b: f0:bc:3b:a2:55:29:e6:54:25:69:d3:ee:44:12:06: 96:c9:01:34:93:be:9f:2e:dd:bc:03:d8:9e:d9:08: 57:fa:93:b4:cf:07:6d:24:7f:1e:37:38:12:8d:d5: e4:3e:9c:f6:81:93:15:01:ab:93:4f:02:0c:a1:ec: a4:69:e6:e1:b9:ac:ec:49:26:a2:19:43:a2:f9:f7: 51:92:3c:82:9e:f6:e3:cc:29:b1:81:08:d9:09:e2: 59:9d:3b:71:b7:cf:3e:22:94:f2:34:ff:a1:d6:33: 28:07:f7:a4:66:64:36:29:82:84:23:6b:21:71:d0: 81:b9:eb:0e:e0:11:f0:39:bf:85:b1:24:dd:1e:3e: 8f:1d:c5:c5:74:b9:2d:87:75:c6:5b:6a:c3:58:b4: e9:a7:71:42:e3:0c:f8:c8:83:b3:13:4f:bf:b5:c2: ad:2f:12:cf:9c:36:ba:4d:60:03:58:50:eb:b6:9f: 35:53:a9:48:c5:0e:8f:23:4e:78:4e:08:ed:be:19: 68:ee:f8:f7:f6:cd:68:de:82:a7:a2:e5:94:d2:89: f7:ba:9f:24:ea:a2:02:8e:20:96:3c:2e:4b:f2:36: eb:4f:38:eb:5a:e5:83:36:cc:63:b9:db:af:ea:36: 8b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F5:D0:7B:AD:8C:17:CB:78:AD:F1:F3:CE:8D:E7:B2:FB:B0:17:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:95:d6:ad:0e:57:32:73:83:af:4f:ae:78:95:8f:96:44:99: ff:80:0b:c9:1a:a6:ca:76:72:58:19:f5:58:37:8c:97:49:95: 6d:5b:80:57:1b:90:a6:3f:fd:4e:75:7d:4d:31:4d:70:ac:8a: 2f:aa:b2:fa:7b:d7:3b:01:ad:fb:b4:56:6e:a7:93:22:74:d6: 84:94:d6:db:83:2c:e6:d1:cd:50:e0:96:c3:d4:1e:60:88:e0: 65:f1:0b:80:4c:fc:87:c8:6c:d7:3a:85:f2:f4:9b:8a:c4:8f: 85:92:a1:99:c3:e6:48:55:7d:ff:d3:9c:d7:4b:fa:56:48:4b: 02:c9:38:e8:da:6c:42:c8:94:84:a3:78:4b:5b:10:42:de:cf: c5:dd:08:05:d4:df:ab:48:bb:f7:a2:90:ff:9a:38:73:4e:48: 7c:0b:c1:5e:9d:3c:5b:cf:a7:e0:f2:5b:d8:8f:92:cc:0f:28: e8:6a:1c:db:c5:d8:3f:e6:89:65:99:8b:58:63:1a:71:7e:aa: d8:6f:ed:03:45:3f:58:43:b8:ce:15:79:20:c0:44:f1:81:b4: a3:1b:a9:87:69:22:be:b6:59:f2:8e:7f:c2:49:7e:93:a8:9d: b7:82:5c:69:8d:e2:9a:e1:64:d4:87:80:63:45:bf:e9:ac:90: 8f:07:31:91 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUaOGC1zL+OxU+A8dm4K1ETMZI4QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI2MDAwMDIxWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTljNDc5N2QwOGIwNDk2ODU0ZWJjYTE1ZGZkM2E0MzQz NTk5OWViMzhmMGFlZjhiNjU3MzI2MGNlMWIzNjJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjGgYj66NQhXGoHFWpW/C8O6JVKeZUJWnT7kQSBpbJATST vp8u3bwD2J7ZCFf6k7TPB20kfx43OBKN1eQ+nPaBkxUBq5NPAgyh7KRp5uG5rOxJ JqIZQ6L591GSPIKe9uPMKbGBCNkJ4lmdO3G3zz4ilPI0/6HWMygH96RmZDYpgoQj ayFx0IG56w7gEfA5v4WxJN0ePo8dxcV0uS2HdcZbasNYtOmncULjDPjIg7MTT7+1 wq0vEs+cNrpNYANYUOu2nzVTqUjFDo8jTnhOCO2+GWju+Pf2zWjegqei5ZTSife6 nyTqogKOIJY8LkvyNutPOOta5YM2zGO526/qNoubAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDvXQe62MF8t4rfHzzo3nsvuwF34wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZDg3ZTYyLTBmNjUtNGI3Yi1hMTc2LWExNTIyYzZlM2QxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEAAJXWrQ5XMnODr0+ueJWPlkSZ/4AL yRqmynZyWBn1WDeMl0mVbVuAVxuQpj/9TnV9TTFNcKyKL6qy+nvXOwGt+7RWbqeT InTWhJTW24Ms5tHNUOCWw9QeYIjgZfELgEz8h8hs1zqF8vSbisSPhZKhmcPmSFV9 /9Oc10v6VkhLAsk46NpsQsiUhKN4S1sQQt7Pxd0IBdTfq0i796KQ/5o4c05IfAvB Xp08W8+n4PJb2I+SzA8o6Goc28XYP+aJZZmLWGMacX6q2G/tA0U/WEO4zhV5IMBE 8YG0oxuph2kivrZZ8o5/wkl+k6idt4JcaY3imuFk1IeAY0W/6ayQjwcxkQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:50 2025 by rpki-client