$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa File: b685dd41-8f09-47b5-8997-53c2dc02d7af.roa (raw, json) Hash identifier: BtUMTrvmpo284DnIXzDheneX71Slm9+ZZarKvfvdjI4= Subject key identifier: CB:E5:9A:DA:97:F8:DE:9B:14:C2:F5:1D:9E:48:A7:24:2D:A2:A7:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56C26E89F5CC5620B49A371B70E1B4E522D44AAF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa Signing time: Mon 14 Apr 2025 15:10:19 +0000 ROA not before: Mon 14 Apr 2025 15:10:19 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c2:6e:89:f5:cc:56:20:b4:9a:37:1b:70:e1:b4:e5:22:d4:4a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:10:19 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=4cb6dde173873ec352919157ec03ae06bc1dbd3c1c644b6fb9ab11a1aa087966, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:db:c4:7f:c7:f9:c3:4c:29:93:0a:a6:ac:9e: a3:97:ad:8f:af:d0:19:c5:cb:8f:b5:b5:18:dd:8d: 20:e2:49:b0:8f:2f:69:4a:fd:b4:95:28:7e:16:f9: 93:5b:a0:58:a2:16:d5:9e:7d:35:df:77:b8:ed:f0: 0b:ab:ab:f8:47:fe:c1:70:9a:93:b1:fe:d4:99:f9: 56:89:46:c4:34:32:b7:51:df:34:a9:e7:16:b5:56: 96:3f:e9:47:b7:49:df:71:94:2d:12:2a:74:4a:82: a8:73:99:4b:b1:3b:7a:7c:dd:07:72:94:0d:03:65: 21:1c:a0:36:c7:69:b4:4d:69:c4:98:fd:2c:f4:e4: 3c:81:4c:04:a3:cd:e1:2f:b1:99:b1:41:c7:3f:11: 7f:81:58:f3:20:ff:98:e0:3e:8c:1a:dd:05:c6:62: aa:e6:28:a1:ec:87:1b:5c:a6:30:87:31:22:ad:85: bb:2b:5c:7e:e7:6d:62:c9:37:89:57:fb:e9:58:dd: 0a:46:ac:95:00:bf:db:5e:1b:a7:e0:45:93:ad:92: 88:17:8f:4d:d5:9c:d6:da:0d:cd:53:e1:b9:59:0a: 14:3e:9e:0e:c2:2a:9d:7e:8d:5b:95:df:21:a9:2b: 6f:e1:50:16:f6:47:1c:6e:e0:f2:d1:a2:a7:89:59: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E5:9A:DA:97:F8:DE:9B:14:C2:F5:1D:9E:48:A7:24:2D:A2:A7:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.94.0/24 Signature Algorithm: sha256WithRSAEncryption 78:cd:7a:1c:3f:60:cf:a8:e0:7b:56:45:47:d7:74:12:15:7e: 08:e0:37:be:cb:cd:e7:c0:23:69:1d:6c:31:f0:b7:3e:e6:e6: 8e:6c:0d:55:6c:ee:3b:2e:85:31:6d:9d:a1:63:af:2d:b6:19: d0:63:2c:66:29:06:24:28:d0:52:49:14:5e:42:c9:dd:41:93: e1:62:53:6f:a4:10:6b:4f:e3:cf:fb:7e:f3:e1:28:a1:4a:a9: 28:04:78:2d:b2:fe:22:64:55:1d:3a:36:59:75:03:df:10:13: bb:ae:b5:f9:66:91:5d:64:27:e5:a3:30:25:65:16:59:2b:96: fa:56:c5:18:df:db:c6:32:2f:77:df:29:57:18:68:14:01:3a: 24:0f:99:bb:07:18:06:43:ca:ea:6c:f9:fd:4a:7d:93:4f:2e: 4c:9e:b1:7e:c6:24:19:8d:3b:ea:cd:2e:9d:14:ac:f3:00:3a: 3e:5b:3b:78:ef:f8:51:de:e0:d3:68:17:f5:3a:c3:ed:be:6f: 4c:39:fc:c9:79:d3:56:fb:a6:b7:7b:27:61:41:d9:e1:ee:b7: 4f:2f:af:ef:1d:3a:09:d3:c0:eb:fe:7d:86:fd:9d:f8:76:f7: 49:39:f2:07:80:21:a6:56:03:82:c5:f5:af:b6:25:6c:4f:ee: 74:a8:5d:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVsJuifXMViC0mjcbcOG05SLUSq8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUxMDE5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2I2ZGRlMTczODczZWMzNTI5MTkxNTdlYzAzYWUwNmJj MWRiZDNjMWM2NDRiNmZiOWFiMTFhMWFhMDg3OTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU28R/x/nDTCmTCqasnqOXrY+v0BnFy4+1tRjdjSDiSbCP L2lK/bSVKH4W+ZNboFiiFtWefTXfd7jt8Aurq/hH/sFwmpOx/tSZ+VaJRsQ0MrdR 3zSp5xa1VpY/6Ue3Sd9xlC0SKnRKgqhzmUuxO3p83QdylA0DZSEcoDbHabRNacSY /Sz05DyBTASjzeEvsZmxQcc/EX+BWPMg/5jgPowa3QXGYqrmKKHshxtcpjCHMSKt hbsrXH7nbWLJN4lX++lY3QpGrJUAv9teG6fgRZOtkogXj03VnNbaDc1T4blZChQ+ ng7CKp1+jVuV3yGpK2/hUBb2Rxxu4PLRoqeJWXEJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy+Wa2pf43psUwvUdnkinJC2ip58wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2ODVkZDQxLThmMDktNDdiNS04OTk3LTUzYzJkYzAyZDdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC4SF4wDQYJKoZIhvcNAQELBQADggEBAHjNehw/YM+o4HtWRUfXdBIVfgjg N77LzefAI2kdbDHwtz7m5o5sDVVs7jsuhTFtnaFjry22GdBjLGYpBiQo0FJJFF5C yd1Bk+FiU2+kEGtP48/7fvPhKKFKqSgEeC2y/iJkVR06Nll1A98QE7uutflmkV1k J+WjMCVlFlkrlvpWxRjf28YyL3ffKVcYaBQBOiQPmbsHGAZDyups+f1KfZNPLkye sX7GJBmNO+rNLp0UrPMAOj5bO3jv+FHe4NNoF/U6w+2+b0w5/Ml501b7prd7J2FB 2eHut08vr+8dOgnTwOv+fYb9nfh290k58geAIaZWA4LF9a+2JWxP7nSoXcQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:55 2025 by rpki-client