$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa File: af447631-2ee0-48e3-99c1-aabf4304ee15.roa (raw, json) Hash identifier: ZsyxAwk8mlipdDEO5Qp+0uCqwP0I6FWLf8hmdeNtTZs= Subject key identifier: 4D:2C:D4:3C:00:55:19:FB:60:E1:47:AD:62:D5:0E:32:75:04:D1:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 462E208B96E2BEB37AE321C7907BCAB94BEC6250 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa Signing time: Wed 23 Apr 2025 00:21:51 +0000 ROA not before: Wed 23 Apr 2025 00:21:51 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:2e:20:8b:96:e2:be:b3:7a:e3:21:c7:90:7b:ca:b9:4b:ec:62:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:21:51 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=cefbf5c3c58d16af892f6b913ffc03edbd34f0d6d47a2524e57ee764d50f027a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0d:2b:e1:ec:4a:65:a4:b8:f1:7e:3a:1c:18: c6:2f:87:0f:ec:1a:2f:af:2b:df:5a:6e:9b:29:b1: 8d:ef:22:f3:90:5f:3c:5e:8f:8a:e8:dd:25:d1:68: 9b:3a:58:c4:cc:b6:ea:00:d9:85:7d:7a:a4:e0:92: b9:66:a7:26:fe:19:87:4e:56:93:d9:bf:69:42:f8: 5d:c7:3a:4e:7a:f8:54:bd:47:79:f6:a2:a5:80:b3: ad:91:b4:be:e8:d8:4d:13:65:90:13:82:5f:9e:0c: 9a:46:cb:8c:b5:d2:23:da:39:c4:f2:54:34:b1:a4: ae:00:b5:db:79:a6:1e:1c:64:ae:14:c5:dd:2f:9c: 01:48:2c:52:9f:b2:bd:5c:8a:a4:e5:0f:0c:b5:8e: a7:27:cd:ba:8d:de:91:51:09:85:1a:0b:62:5d:80: 22:92:10:37:81:2e:4b:eb:32:00:3c:34:e9:be:84: d1:f3:5b:d4:fe:27:e6:84:86:ed:cf:ed:7d:5c:eb: 2c:a9:a4:91:17:eb:dd:4a:93:5f:9c:ed:44:7e:39: 51:1f:b8:de:44:d4:5f:e9:33:da:98:d2:7d:54:85: bc:4d:9f:94:7c:7d:70:fa:66:79:00:ab:50:cc:ad: 82:f4:78:7e:b5:a4:f1:5f:aa:36:66:6e:ef:06:0d: 48:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2C:D4:3C:00:55:19:FB:60:E1:47:AD:62:D5:0E:32:75:04:D1:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.144.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:3e:c8:d2:41:6c:22:bb:95:a1:2a:b8:13:a7:5b:57:71:b1: 83:2b:07:86:ea:83:3c:49:70:ef:4e:c5:b5:b7:55:e9:51:db: ef:eb:e9:d7:af:05:d2:bd:85:02:02:ce:34:4f:40:89:f9:06: 6f:a7:78:4a:31:9a:6b:1b:0d:cc:65:97:e1:ca:e2:f1:43:d6: 8a:cd:4e:8f:73:f2:f8:88:4a:4c:ba:27:e1:4d:84:09:29:57: 2e:c8:51:1b:a9:d1:e8:75:1c:ae:9b:9c:bf:44:4d:67:13:06: 78:e1:81:51:35:a0:0c:6f:7a:e9:34:d0:0e:94:59:6c:ee:f3: 29:4b:a8:97:36:03:43:d7:e5:da:49:32:69:51:35:4c:e2:ae: 9b:ae:4a:32:c4:fd:76:38:a8:a1:d1:9f:5e:f4:15:92:11:54: 1a:aa:49:c9:03:72:51:3c:a3:f1:52:d5:c7:37:fa:1d:13:ab: 69:3a:2e:a9:8a:97:f0:bf:75:a1:64:ae:9d:c8:5a:a1:27:5d: 20:d0:dc:30:68:c8:61:4c:4d:2c:de:e8:ae:1e:98:81:be:c3: 33:9b:dd:17:aa:25:52:82:d1:53:90:59:5d:8b:1e:b4:8e:7d: ef:e6:8e:ec:23:73:b2:55:a4:e9:b3:bf:a3:b9:9c:6c:11:3f: 63:c4:92:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURi4gi5bivrN64yHHkHvKuUvsYlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAyMTUxWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWZiZjVjM2M1OGQxNmFmODkyZjZiOTEzZmZjMDNlZGJk MzRmMGQ2ZDQ3YTI1MjRlNTdlZTc2NGQ1MGYwMjdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChDSvh7EplpLjxfjocGMYvhw/sGi+vK99abpspsY3vIvOQ Xzxej4ro3SXRaJs6WMTMtuoA2YV9eqTgkrlmpyb+GYdOVpPZv2lC+F3HOk56+FS9 R3n2oqWAs62RtL7o2E0TZZATgl+eDJpGy4y10iPaOcTyVDSxpK4Atdt5ph4cZK4U xd0vnAFILFKfsr1ciqTlDwy1jqcnzbqN3pFRCYUaC2JdgCKSEDeBLkvrMgA8NOm+ hNHzW9T+J+aEhu3P7X1c6yyppJEX691Kk1+c7UR+OVEfuN5E1F/pM9qY0n1UhbxN n5R8fXD6ZnkAq1DMrYL0eH61pPFfqjZmbu8GDUj7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTSzUPABVGftg4UetYtUOMnUE0dAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDQ3NjMxLTJlZTAtNDhlMy05OWMxLWFhYmY0MzA0ZWUxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFJAwDQYJKoZIhvcNAQELBQADggEBADw+yNJBbCK7laEquBOnW1dxsYMr B4bqgzxJcO9OxbW3VelR2+/r6devBdK9hQICzjRPQIn5Bm+neEoxmmsbDcxll+HK 4vFD1orNTo9z8viISky6J+FNhAkpVy7IURup0eh1HK6bnL9ETWcTBnjhgVE1oAxv euk00A6UWWzu8ylLqJc2A0PX5dpJMmlRNUzirpuuSjLE/XY4qKHRn170FZIRVBqq SckDclE8o/FS1cc3+h0Tq2k6LqmKl/C/daFkrp3IWqEnXSDQ3DBoyGFMTSze6K4e mIG+wzOb3ReqJVKC0VOQWV2LHrSOfe/mjuwjc7JVpOmzv6O5nGwRP2PEklc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:21 2025 by rpki-client