$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa File: b3c97cba-7083-48f3-8280-ad90bc3bee59.roa (raw, json) Hash identifier: BbqtS7Ky701wbPQrx3+9//205tDot7yk/74M5qYJqqA= Subject key identifier: F1:16:11:E5:8C:06:4E:D8:C8:4D:E9:B5:37:DF:66:82:E4:23:B5:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45BA31E9B10B40095F802863C8DB906ED1A00D1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa Signing time: Wed 09 Apr 2025 00:01:42 +0000 ROA not before: Wed 09 Apr 2025 00:01:42 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.10.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ba:31:e9:b1:0b:40:09:5f:80:28:63:c8:db:90:6e:d1:a0:0d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:01:42 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=5151d1bb4b7f6156d93ecc96553032bc51c6369a698edff7703c106504174ee2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:7f:52:74:07:14:1f:02:6a:55:89:45:94: 2a:b2:1e:66:ee:81:6f:e0:22:2b:b1:65:bb:b0:41: cd:7b:56:51:c8:20:0a:5f:11:45:cb:3c:e2:96:35: 5e:db:d2:b6:4f:99:a9:9d:14:04:45:8a:11:e8:08: 80:29:58:f3:0b:f2:6b:c2:dc:3f:d5:95:f9:67:1c: 0e:4d:0a:52:1a:f3:2d:86:2f:af:44:5d:59:b3:62: 16:6a:83:4d:2a:1f:ce:6a:8c:ab:62:9d:cf:b1:aa: 75:43:53:1a:de:f7:fa:f8:f6:27:1f:e3:0f:64:bf: 17:77:89:57:7f:f4:1f:d7:f0:0a:e8:12:ff:80:08: d5:63:48:f3:4d:ca:e2:9f:62:84:fb:dc:88:10:e0: 21:cc:d5:d0:f6:22:79:53:a4:c6:f1:73:ab:1b:5b: 7a:0e:3d:ba:bf:56:c8:02:68:2a:49:e8:87:5b:65: 55:2d:39:70:8a:72:0e:ae:83:6b:4a:47:b8:ef:bc: ec:b5:77:65:67:55:b2:b4:58:f0:b7:07:ac:f8:60: 27:5f:1a:b4:6a:c7:1b:1d:4e:95:0d:db:25:5a:a0: 31:e8:41:44:24:b5:88:5b:2f:9a:74:16:68:66:ef: ce:be:e5:a2:8b:87:6b:8c:ca:2f:df:85:7f:1a:4f: 27:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:16:11:E5:8C:06:4E:D8:C8:4D:E9:B5:37:DF:66:82:E4:23:B5:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.10.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:3a:e1:10:cf:b5:b6:1e:f1:94:f6:59:3f:89:a4:94:84:38: 74:d5:ae:0c:25:a0:4d:0d:e1:38:f1:bb:70:2f:ad:6e:13:27: 26:11:d5:8a:51:92:f0:87:f8:e4:b3:8e:db:95:63:a3:50:2a: 3c:9b:ea:92:86:bf:f8:22:26:d8:ff:e9:54:9e:b9:96:02:be: af:8b:93:64:84:d9:55:f8:34:47:ca:d7:ba:c7:4a:0d:ba:21: 40:7b:f4:46:33:b6:37:0b:6c:62:aa:cb:9e:90:dd:7d:88:8c: 73:9e:f6:5b:68:fe:3e:a0:45:4b:5d:29:5a:7a:7d:f1:16:1c: df:08:fb:90:fe:cf:4a:08:e6:40:c0:a9:4a:b3:44:e7:a9:c4: 7a:0d:c8:38:b2:5e:b8:90:c8:83:e1:b3:60:4a:90:b1:9b:cf: 2c:e4:1d:ce:46:e8:75:c8:0f:9c:a1:d0:fc:49:a2:b1:6b:94: 30:0c:a4:82:76:f8:da:6f:5d:b4:4a:45:ed:ad:2c:56:bb:1b: cf:39:ea:37:e8:5c:a9:e2:d3:98:f8:f1:fa:d8:46:bd:ad:b1: 73:31:89:e8:22:a5:6d:f2:26:2f:4b:02:b4:07:60:b8:8f:03: b4:ca:9e:eb:ad:30:85:2b:57:af:c9:29:00:46:a6:34:a6:78: f5:9d:58:4f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURbox6bELQAlfgChjyNuQbtGgDRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAwMTQyWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTUxZDFiYjRiN2Y2MTU2ZDkzZWNjOTY1NTMwMzJiYzUx YzYzNjlhNjk4ZWRmZjc3MDNjMTA2NTA0MTc0ZWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpI39SdAcUHwJqVYlFlCqyHmbugW/gIiuxZbuwQc17VlHI IApfEUXLPOKWNV7b0rZPmamdFARFihHoCIApWPML8mvC3D/VlflnHA5NClIa8y2G L69EXVmzYhZqg00qH85qjKtinc+xqnVDUxre9/r49icf4w9kvxd3iVd/9B/X8Aro Ev+ACNVjSPNNyuKfYoT73IgQ4CHM1dD2InlTpMbxc6sbW3oOPbq/VsgCaCpJ6Idb ZVUtOXCKcg6ug2tKR7jvvOy1d2VnVbK0WPC3B6z4YCdfGrRqxxsdTpUN2yVaoDHo QUQktYhbL5p0Fmhm786+5aKLh2uMyi/fhX8aTyfdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8RYR5YwGTtjITem1N99mguQjtSswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYzk3Y2JhLTcwODMtNDhmMy04MjgwLWFkOTBiYzNiZWU1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDACjANBgkqhkiG9w0BAQsFAAOCAQEAQTrhEM+1th7xlPZZP4mklIQ4dNWu DCWgTQ3hOPG7cC+tbhMnJhHVilGS8If45LOO25Vjo1AqPJvqkoa/+CIm2P/pVJ65 lgK+r4uTZITZVfg0R8rXusdKDbohQHv0RjO2NwtsYqrLnpDdfYiMc572W2j+PqBF S10pWnp98RYc3wj7kP7PSgjmQMCpSrNE56nEeg3IOLJeuJDIg+GzYEqQsZvPLOQd zkbodcgPnKHQ/EmisWuUMAykgnb42m9dtEpF7a0sVrsbzznqN+hcqeLTmPjx+thG va2xczGJ6CKlbfImL0sCtAdguI8DtMqe660whStXr8kpAEamNKZ49Z1YTw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:37 2025 by rpki-client