$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa File: b291d7d3-1582-4d15-9362-848d2950798a.roa (raw, json) Hash identifier: s0147xliE/Z7+DrJlYCU55BVEmcQPrT/mWN7aBRzgEg= Subject key identifier: FE:95:AD:87:32:9B:3E:CA:1B:89:88:F7:41:35:11:EA:C3:56:25:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63E4A6390C91E52D88CA0C70EDB0BF4401DC1004 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa Signing time: Mon 07 Apr 2025 15:21:01 +0000 ROA not before: Mon 07 Apr 2025 15:21:01 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.148.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e4:a6:39:0c:91:e5:2d:88:ca:0c:70:ed:b0:bf:44:01:dc:10:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:21:01 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=34bfe562a7fb9fed11c5fa8478a7d5a5129f976c39660f336e1f4afcd52d7062, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:9a:c4:cd:dc:22:03:67:a6:2a:f0:b6:ff: b5:2e:ad:9b:9e:53:95:9b:0a:4b:f8:75:b0:07:69: b3:e9:2f:c9:06:4a:74:d7:9a:16:52:a4:79:a9:29: 8d:40:3e:d5:c3:0b:6a:85:2d:96:2a:82:bf:95:e2: 57:3c:3f:74:f1:39:38:94:41:ed:e3:6a:20:45:88: 2d:4d:0e:29:6a:f7:db:42:4a:a7:38:9d:67:1d:ca: f5:13:83:6d:cc:ab:d9:0f:00:92:37:a5:ca:48:82: 54:12:24:00:3f:3d:98:90:16:9c:f9:c8:0e:da:87: 13:8f:25:64:86:08:ab:8f:42:29:40:7f:1c:98:86: 94:29:27:79:8b:d7:79:40:97:ff:ef:ef:1d:08:20: 5f:0d:76:35:e2:db:b6:56:eb:12:a6:3e:b4:cb:c1: a2:37:b6:54:16:4e:a7:fa:7c:58:80:dc:ef:f4:b0: cf:e3:c6:75:27:da:9f:8d:4d:14:af:11:d3:94:6f: 52:9b:8b:9f:54:b2:ec:e9:b4:8f:23:d4:59:00:00: f9:70:54:3d:93:47:02:ef:ec:36:bc:0b:8c:a9:28: 12:77:27:9a:1d:9b:11:92:56:8a:d9:67:09:73:75: 6d:b5:8a:bb:65:03:6c:e5:0d:60:29:4d:87:20:af: 7f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:95:AD:87:32:9B:3E:CA:1B:89:88:F7:41:35:11:EA:C3:56:25:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption 8b:9f:b2:73:58:18:e8:e9:41:12:2e:60:5a:05:38:e7:8f:dd: 4c:36:96:61:c9:98:c7:07:e1:31:6a:97:91:52:20:30:6b:50: cf:14:1f:bf:94:d8:e3:de:e2:d6:ea:66:cf:a7:29:fe:f4:96: 8e:dc:2c:9a:e8:88:8b:f4:6b:30:63:f1:88:2b:78:d0:41:b0: c1:c7:26:83:2c:27:69:11:dc:38:7f:bb:65:bb:46:df:cf:fc: 55:50:71:fb:72:dd:50:0b:da:cf:d6:11:ab:e9:57:31:ae:ea: 40:ed:11:66:cd:14:dc:85:77:2e:6b:85:69:9d:b0:66:c5:85: 5b:d6:48:99:61:f3:c8:d7:45:84:2d:3e:d9:de:b6:09:cd:b3: 66:93:d1:3b:54:54:9e:60:99:22:44:6d:0e:a7:71:30:3c:68: e0:f6:eb:f6:d4:c6:ad:fe:96:ef:89:f1:06:31:4f:9e:cf:cc: 8b:9c:46:fa:6d:97:14:8e:47:12:61:89:7b:f3:8a:23:cc:f0: be:b3:c9:f5:32:43:8b:ca:54:0f:ee:ff:7e:19:a4:1b:c0:02: 2e:aa:f2:26:7f:18:30:0c:2d:3c:11:19:49:56:3d:88:18:db: bd:0f:5b:5e:c4:35:b0:a6:7c:6b:98:f5:63:a6:db:b1:3d:10: da:a8:0e:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY+SmOQyR5S2Iygxw7bC/RAHcEAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUyMTAxWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGJmZTU2MmE3ZmI5ZmVkMTFjNWZhODQ3OGE3ZDVhNTEy OWY5NzZjMzk2NjBmMzM2ZTFmNGFmY2Q1MmQ3MDYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPLJrEzdwiA2emKvC2/7UurZueU5WbCkv4dbAHabPpL8kG SnTXmhZSpHmpKY1APtXDC2qFLZYqgr+V4lc8P3TxOTiUQe3jaiBFiC1NDilq99tC Sqc4nWcdyvUTg23Mq9kPAJI3pcpIglQSJAA/PZiQFpz5yA7ahxOPJWSGCKuPQilA fxyYhpQpJ3mL13lAl//v7x0IIF8NdjXi27ZW6xKmPrTLwaI3tlQWTqf6fFiA3O/0 sM/jxnUn2p+NTRSvEdOUb1Kbi59UsuzptI8j1FkAAPlwVD2TRwLv7Da8C4ypKBJ3 J5odmxGSVorZZwlzdW21irtlA2zlDWApTYcgr38DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/pWthzKbPsobiYj3QTUR6sNWJTQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyOTFkN2QzLTE1ODItNGQxNS05MzYyLTg0OGQyOTUwNzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGlGAwDQYJKoZIhvcNAQELBQADggEBAIufsnNYGOjpQRIuYFoFOOeP3Uw2 lmHJmMcH4TFql5FSIDBrUM8UH7+U2OPe4tbqZs+nKf70lo7cLJroiIv0azBj8Ygr eNBBsMHHJoMsJ2kR3Dh/u2W7Rt/P/FVQcfty3VAL2s/WEavpVzGu6kDtEWbNFNyF dy5rhWmdsGbFhVvWSJlh88jXRYQtPtnetgnNs2aT0TtUVJ5gmSJEbQ6ncTA8aOD2 6/bUxq3+lu+J8QYxT57PzIucRvptlxSORxJhiXvziiPM8L6zyfUyQ4vKVA/u/34Z pBvAAi6q8iZ/GDAMLTwRGUlWPYgY270PW17ENbCmfGuY9WOm27E9ENqoDsg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:33 2025 by rpki-client