$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa File: bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa (raw, json) Hash identifier: YWC2DKf0mVkXIzk5D5uInY0qvco8OeFMxpULvICn+3s= Subject key identifier: 53:A8:DF:79:B4:2F:FD:9E:8A:5E:A3:25:6A:8A:08:B1:3E:49:5B:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38A8809EBD1C3AB80095CDBF851CBB68A0B40F5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa Signing time: Wed 23 Apr 2025 00:10:27 +0000 ROA not before: Wed 23 Apr 2025 00:10:27 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a8:80:9e:bd:1c:3a:b8:00:95:cd:bf:85:1c:bb:68:a0:b4:0f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:10:27 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=1364dc1ce684c950c3c742ca4638422eb4e6574ef8b5afff3cf28319380b3731, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d0:a7:a4:54:78:d1:4c:c8:0e:39:88:67:fb: 7f:99:d5:b0:7f:d1:c7:40:c3:f1:89:26:27:4f:79: af:80:ae:59:bd:65:91:73:7e:3c:d0:e9:4a:50:14: 0b:b4:c5:36:c7:05:5f:8a:47:c8:53:de:db:e7:17: 53:82:58:41:7f:ee:c9:c7:98:81:dd:97:d8:c7:26: 3a:2f:67:b8:1a:de:41:38:0f:1f:21:63:1b:0f:59: 9c:30:db:99:36:80:72:02:ed:6a:55:6b:c0:bb:b3: 14:20:f3:cf:1a:07:56:93:26:31:6c:a9:45:18:6a: 9d:b0:18:53:6c:1d:7c:73:f6:f5:74:4f:f6:ea:34: 89:46:ef:4f:6c:27:38:51:ac:b3:4a:98:e8:26:1e: 52:e0:43:84:c2:e1:16:af:7d:37:d6:69:21:be:a3: 69:35:23:86:9b:65:5f:75:f2:b3:76:48:68:13:58: a4:52:d1:66:a8:00:57:7f:34:6b:b1:dd:c4:01:d1: a8:ce:26:d6:77:fb:a3:58:78:82:79:ab:fa:ed:85: 51:11:ee:9b:f6:bd:f7:5b:78:c8:64:0c:94:37:6a: a4:60:fe:68:a6:8c:fc:4d:15:43:6c:b5:9c:89:e9: fa:24:ab:8a:92:14:98:b7:45:7e:24:2a:bd:1d:2f: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A8:DF:79:B4:2F:FD:9E:8A:5E:A3:25:6A:8A:08:B1:3E:49:5B:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption c2:dd:f8:59:9e:f2:fc:ee:68:ec:bf:77:c4:3b:73:66:a2:e9: d3:e2:49:86:66:11:99:ba:0b:c7:75:5c:5c:3d:44:5a:68:2b: b8:5a:1f:a6:c2:74:89:a2:d6:67:d3:45:f0:a6:ca:be:f3:a1: 03:b8:44:10:4d:d4:ca:de:5b:76:53:2c:92:77:21:c5:e1:7e: 64:dd:02:7a:54:75:e0:75:8c:3f:34:2f:f7:2b:f4:50:b1:3a: 27:fb:51:e4:42:d6:4d:11:2d:17:07:29:8c:03:d1:77:b5:7a: ea:c8:5a:c4:6b:5d:d0:ae:8c:7f:b2:3d:c4:c0:5d:04:53:c0: 31:de:f6:22:e3:fc:68:1c:be:f8:ed:88:f8:09:76:3e:e3:cb: 3e:dd:51:7a:26:aa:f0:b6:b1:4c:1e:c1:92:16:cb:7b:46:86: b7:3e:f1:58:b0:2d:93:d6:88:d2:66:fa:be:25:48:5f:73:4a: 8d:b0:49:7b:9b:fb:db:86:e0:28:8a:be:24:0d:9d:83:db:a9: a7:e2:d2:10:da:af:f9:6c:af:cf:c8:26:15:f2:08:e1:05:65: 96:8b:4d:f8:1d:89:ad:90:22:51:88:ed:15:d0:7b:99:49:38: d9:56:c6:be:7e:65:ae:d9:86:02:9d:82:7d:aa:2d:d0:b2:23: 5c:14:47:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOKiAnr0cOrgAlc2/hRy7aKC0D1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAxMDI3WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzY0ZGMxY2U2ODRjOTUwYzNjNzQyY2E0NjM4NDIyZWI0 ZTY1NzRlZjhiNWFmZmYzY2YyODMxOTM4MGIzNzMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+0KekVHjRTMgOOYhn+3+Z1bB/0cdAw/GJJidPea+Arlm9 ZZFzfjzQ6UpQFAu0xTbHBV+KR8hT3tvnF1OCWEF/7snHmIHdl9jHJjovZ7ga3kE4 Dx8hYxsPWZww25k2gHIC7WpVa8C7sxQg888aB1aTJjFsqUUYap2wGFNsHXxz9vV0 T/bqNIlG709sJzhRrLNKmOgmHlLgQ4TC4RavfTfWaSG+o2k1I4abZV918rN2SGgT WKRS0WaoAFd/NGux3cQB0ajOJtZ3+6NYeIJ5q/rthVER7pv2vfdbeMhkDJQ3aqRg /mimjPxNFUNstZyJ6fokq4qSFJi3RX4kKr0dL6LzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU6jfebQv/Z6KXqMlaooIsT5JWy0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNmRkYWU2LWMwODMtNDRkNS1iNThkLTZjYzQzOGNmNGQ1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFrFpwwDQYJKoZIhvcNAQELBQADggEBAMLd+Fme8vzuaOy/d8Q7c2ai6dPi SYZmEZm6C8d1XFw9RFpoK7haH6bCdImi1mfTRfCmyr7zoQO4RBBN1MreW3ZTLJJ3 IcXhfmTdAnpUdeB1jD80L/cr9FCxOif7UeRC1k0RLRcHKYwD0Xe1eurIWsRrXdCu jH+yPcTAXQRTwDHe9iLj/GgcvvjtiPgJdj7jyz7dUXomqvC2sUwewZIWy3tGhrc+ 8ViwLZPWiNJm+r4lSF9zSo2wSXub+9uG4CiKviQNnYPbqafi0hDar/lsr8/IJhXy COEFZZaLTfgdia2QIlGI7RXQe5lJONlWxr5+Za7ZhgKdgn2qLdCyI1wUR18= -----END CERTIFICATE-----Generated at Sat Apr 26 13:24:25 2025 by rpki-client