$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b076e11c-5f2a-4cd7-b4e8-793e7c3ab274.roa File: b076e11c-5f2a-4cd7-b4e8-793e7c3ab274.roa (raw, json) Hash identifier: r72jmM90iNCu102Y7yKN2GfkwZx7uvVnW6sqNeJ43qE= Subject key identifier: 63:4E:FE:64:BB:53:E9:80:CC:2A:C8:FB:4C:9A:B3:18:E0:4C:9C:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16E7D70C8A5B0AE3FC811B7CDA6CE1CACEA9C65E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b076e11c-5f2a-4cd7-b4e8-793e7c3ab274.roa Signing time: Mon 07 Apr 2025 15:00:58 +0000 ROA not before: Mon 07 Apr 2025 15:00:58 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.152.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e7:d7:0c:8a:5b:0a:e3:fc:81:1b:7c:da:6c:e1:ca:ce:a9:c6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:00:58 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=8596d5e5b211af41f7922aae10dccb4d1b748b345dc8dd89d298000f64ff33f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:72:f4:2b:3b:b9:1d:4a:f9:28:6a:c1:0a:43: dd:5b:37:dd:03:c3:5c:8e:0d:30:d4:47:1b:7e:14: 4e:79:22:0e:be:51:b2:28:db:34:f8:7b:74:21:34: 32:9f:81:04:5b:a4:4e:52:3a:4d:f1:97:c4:6f:a5: ca:7d:d0:ca:87:58:6e:b0:9a:a9:32:ca:0f:28:8d: 9e:d8:77:30:76:ea:96:3e:7c:53:28:fd:d7:b4:0c: eb:13:6c:1d:28:9f:53:dc:6d:15:86:e6:9a:2e:27: c1:26:12:38:2e:8a:cb:ec:aa:a5:0d:cd:b3:a2:fd: 83:a3:00:85:df:47:64:85:45:93:58:fc:a4:84:36: a4:6b:04:5c:9f:e1:70:86:ec:cf:38:31:b6:31:7f: dc:79:7c:da:5e:1b:fe:24:22:84:7a:cb:c1:8c:9b: 34:4b:70:a1:db:0a:37:b6:ab:29:43:9b:b2:19:63: e8:db:57:0f:13:e8:7a:ed:37:2e:7c:b9:de:5a:a1: ac:3e:a8:eb:c2:50:e4:ce:32:54:27:24:37:55:53: b9:1f:a1:d0:4a:38:b2:bf:3d:24:5a:3a:64:c0:73: 04:a3:db:84:8b:a6:b8:8b:78:6a:34:cf:d3:ce:ea: c8:80:bd:23:4b:a5:25:c5:fe:f4:c7:a5:db:56:b2: ad:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4E:FE:64:BB:53:E9:80:CC:2A:C8:FB:4C:9A:B3:18:E0:4C:9C:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b076e11c-5f2a-4cd7-b4e8-793e7c3ab274.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.152.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7c:b1:f4:9f:eb:ea:ed:ee:b6:24:3b:c4:1d:7c:ad:17:aa:de: 68:d8:28:e6:d8:db:8a:a6:50:fd:4b:b4:27:58:bc:96:8d:83: 32:67:8e:f0:5c:ae:ca:d4:4a:9c:f5:19:2e:66:1b:6f:9c:8f: e1:13:87:0e:c2:38:00:8c:59:42:b4:cf:30:52:1b:69:64:7e: 6e:37:06:39:f2:10:5e:d5:a9:a7:4b:3c:71:11:b2:dc:23:f4: 42:91:c5:98:27:43:7f:7b:35:2d:e3:ff:af:b3:d0:4f:e3:b3: cc:33:7d:e4:d9:a4:11:39:b2:59:5f:da:9c:f5:e3:2b:90:08: fb:13:fa:4f:20:8b:10:52:a7:6a:5e:25:ba:a9:29:73:76:4d: dd:35:cf:7c:59:29:94:56:f4:f3:ec:56:9a:75:39:b4:60:85: 76:f1:5c:3c:41:ab:6c:e0:77:5c:ed:54:e0:ff:64:17:e2:8c: dd:77:c2:b4:91:ff:9a:0b:52:8c:06:40:40:8d:c4:ee:24:fc: 7f:9c:4c:db:f8:4d:6f:d1:e4:c2:76:64:a3:96:54:de:5f:a6: a5:57:dc:99:bd:60:5c:49:f2:95:5f:c4:93:65:90:51:c9:cb: bd:31:c4:08:ba:15:c4:37:29:7f:af:ed:92:59:e5:17:03:ce: 73:37:df:8f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFufXDIpbCuP8gRt82mzhys6pxl4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMDU4WhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTk2ZDVlNWIyMTFhZjQxZjc5MjJhYWUxMGRjY2I0ZDFi NzQ4YjM0NWRjOGRkODlkMjk4MDAwZjY0ZmYzM2YwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqcvQrO7kdSvkoasEKQ91bN90Dw1yODTDURxt+FE55Ig6+ UbIo2zT4e3QhNDKfgQRbpE5SOk3xl8Rvpcp90MqHWG6wmqkyyg8ojZ7YdzB26pY+ fFMo/de0DOsTbB0on1PcbRWG5pouJ8EmEjguisvsqqUNzbOi/YOjAIXfR2SFRZNY /KSENqRrBFyf4XCG7M84MbYxf9x5fNpeG/4kIoR6y8GMmzRLcKHbCje2qylDm7IZ Y+jbVw8T6HrtNy58ud5aoaw+qOvCUOTOMlQnJDdVU7kfodBKOLK/PSRaOmTAcwSj 24SLpriLeGo0z9PO6siAvSNLpSXF/vTHpdtWsq2NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUY07+ZLtT6YDMKsj7TJqzGOBMnAgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IwNzZlMTFjLTVmMmEtNGNkNy1iNGU4LTc5M2U3YzNhYjI3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdmDANBgkqhkiG9w0BAQsFAAOCAQEAfLH0n+vq7e62JDvEHXytF6reaNgo 5tjbiqZQ/Uu0J1i8lo2DMmeO8FyuytRKnPUZLmYbb5yP4ROHDsI4AIxZQrTPMFIb aWR+bjcGOfIQXtWpp0s8cRGy3CP0QpHFmCdDf3s1LeP/r7PQT+OzzDN95NmkETmy WV/anPXjK5AI+xP6TyCLEFKnal4luqkpc3ZN3TXPfFkplFb08+xWmnU5tGCFdvFc PEGrbOB3XO1U4P9kF+KM3XfCtJH/mgtSjAZAQI3E7iT8f5xM2/hNb9HkwnZko5ZU 3l+mpVfcmb1gXEnylV/Ek2WQUcnLvTHECLoVxDcpf6/tklnlFwPOczffjw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:49:24 2025 by rpki-client