$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa File: b2c3c467-0357-412c-8f21-70113f26e16c.roa (raw, json) Hash identifier: 9IHbwauwX9Oi/nv9+l9IUndxJuJqrfPoaE9LEXmxHN8= Subject key identifier: F3:27:06:63:99:37:5E:59:2A:10:BC:98:72:D3:E5:84:C1:E1:52:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67EB2FE3E136E67BA704EBFB6F8A96E3862294B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa Signing time: Fri 04 Apr 2025 00:01:58 +0000 ROA not before: Fri 04 Apr 2025 00:01:58 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.172.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:eb:2f:e3:e1:36:e6:7b:a7:04:eb:fb:6f:8a:96:e3:86:22:94:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:01:58 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=d0506ae43f3065d079542ccb2ad031be4eb51028397a31414038d24c67f2d137, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:75:2f:17:93:96:cd:4a:62:0a:c8:14:56:94: 8b:4d:ca:ec:cf:ef:ce:06:fb:99:2f:da:4d:ab:9d: 16:e8:49:62:58:b6:58:cc:f9:5b:1d:a4:0b:ed:50: 99:7d:71:52:a1:e8:c7:dd:63:72:f7:0c:0d:d7:9b: 94:c4:07:d3:de:56:ef:58:13:9a:48:cd:cf:f7:45: 4f:8f:94:a4:cc:1d:62:f0:60:d8:58:91:44:14:73: 72:27:a6:10:83:61:92:37:d5:e7:9c:c4:a2:3b:45: 94:9b:f1:37:fa:fe:1b:43:a4:a7:14:69:db:ec:39: 98:6a:60:df:84:41:f7:a1:7e:66:2d:0a:42:05:b9: 98:8b:70:31:1b:98:3f:b6:07:73:a8:d1:23:4d:9a: d1:19:f5:8a:57:28:2c:1b:4f:3f:17:4a:bc:64:78: d0:4a:e4:23:3b:08:15:f0:03:06:d8:fa:1f:a1:96: a5:8f:f5:84:30:19:bb:72:45:56:ee:12:08:98:4b: 89:04:00:c2:e6:87:01:f2:29:ba:41:dd:9e:6f:7d: 7c:70:2f:ab:ed:14:0a:cd:4b:b8:47:d2:20:61:c9: 54:9d:52:69:82:9b:2a:02:04:33:0b:2b:5c:8d:77: 89:f5:88:2b:d7:44:55:f6:e4:74:8b:04:a0:f1:5a: 51:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:27:06:63:99:37:5E:59:2A:10:BC:98:72:D3:E5:84:C1:E1:52:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.172.176.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:99:08:34:7a:9d:6d:62:10:b5:51:ab:fd:ee:53:25:12:b1: 8e:31:bd:74:2c:ec:5f:22:eb:f3:af:3b:0e:e3:eb:41:99:3a: 60:63:d1:da:9b:0b:a2:da:cc:b8:95:84:a0:03:81:f7:cc:67: 28:81:26:74:f4:09:a4:d8:87:49:40:c7:3b:82:35:3b:96:65: 42:a3:23:fb:0d:39:c3:75:da:ac:af:dd:65:cb:a2:18:14:d6: e5:8e:37:b3:92:d7:81:2e:ae:ab:26:ba:e0:43:66:9a:f0:c4: 89:af:3a:10:b0:f6:89:a5:e6:42:a1:92:bd:71:01:06:63:1d: fe:f8:08:73:79:9f:f5:df:72:3f:bb:31:3f:d6:a9:d9:5d:24: 6a:03:7a:e9:12:f4:2f:4c:38:62:f3:35:2a:2b:eb:ec:18:d2: 78:05:8c:30:1b:c8:9a:b7:a6:fc:b6:91:b0:bb:a3:1d:24:31: 2a:70:db:4a:44:ee:92:44:22:e6:9a:5c:de:d2:36:92:b5:5e: 42:a4:b9:2d:dd:a4:2e:17:c7:dc:23:86:81:43:56:2c:a0:8f: a5:dd:b1:92:91:96:35:e6:6a:98:f0:37:70:dc:18:1b:5e:b2: e0:f3:76:14:9d:1d:81:63:4b:ea:61:ed:a1:9f:89:b6:d1:b7: 71:5b:cb:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ+sv4+E25nunBOv7b4qW44YilLcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMTU4WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDUwNmFlNDNmMzA2NWQwNzk1NDJjY2IyYWQwMzFiZTRl YjUxMDI4Mzk3YTMxNDE0MDM4ZDI0YzY3ZjJkMTM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCddS8Xk5bNSmIKyBRWlItNyuzP784G+5kv2k2rnRboSWJY tljM+VsdpAvtUJl9cVKh6MfdY3L3DA3Xm5TEB9PeVu9YE5pIzc/3RU+PlKTMHWLw YNhYkUQUc3InphCDYZI31eecxKI7RZSb8Tf6/htDpKcUadvsOZhqYN+EQfehfmYt CkIFuZiLcDEbmD+2B3Oo0SNNmtEZ9YpXKCwbTz8XSrxkeNBK5CM7CBXwAwbY+h+h lqWP9YQwGbtyRVbuEgiYS4kEAMLmhwHyKbpB3Z5vfXxwL6vtFArNS7hH0iBhyVSd UmmCmyoCBDMLK1yNd4n1iCvXRFX25HSLBKDxWlGLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8ycGY5k3XlkqELyYctPlhMHhUq4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyYzNjNDY3LTAzNTctNDEyYy04ZjIxLTcwMTEzZjI2ZTE2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALNrLAwDQYJKoZIhvcNAQELBQADggEBAB6ZCDR6nW1iELVRq/3uUyUSsY4x vXQs7F8i6/OvOw7j60GZOmBj0dqbC6LazLiVhKADgffMZyiBJnT0CaTYh0lAxzuC NTuWZUKjI/sNOcN12qyv3WXLohgU1uWON7OS14EurqsmuuBDZprwxImvOhCw9oml 5kKhkr1xAQZjHf74CHN5n/Xfcj+7MT/WqdldJGoDeukS9C9MOGLzNSor6+wY0ngF jDAbyJq3pvy2kbC7ox0kMSpw20pE7pJEIuaaXN7SNpK1XkKkuS3dpC4Xx9wjhoFD Viygj6XdsZKRljXmapjwN3DcGBtesuDzdhSdHYFjS+ph7aGfibbRt3Fby4U= -----END CERTIFICATE-----Generated at Sat Apr 26 16:01:49 2025 by rpki-client