$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa File: be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa (raw, json) Hash identifier: BnLnSdIXl1RaxCOg7xI/2pa+SFQTmP3cyV/9rLGnKWM= Subject key identifier: F3:41:8B:A8:3B:5D:53:5A:E1:F1:AC:F2:2F:DC:B6:8A:92:F9:75:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FD1451809E20F7137328C13016320616D5E4536 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa Signing time: Mon 14 Apr 2025 15:22:14 +0000 ROA not before: Mon 14 Apr 2025 15:22:14 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:d1:45:18:09:e2:0f:71:37:32:8c:13:01:63:20:61:6d:5e:45:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:22:14 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=e84031a8826766f6da228c54cc1e03c10ca09e678b2879b46208c7f217292bb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3d:22:d6:27:31:29:f8:80:fa:37:5b:18:68: 1a:c0:84:96:be:b6:0f:b2:81:2b:49:03:a2:09:1d: 6e:81:64:c1:37:1d:0a:a1:91:03:18:59:f6:1e:f1: 2f:59:b4:95:fd:fc:9c:40:ad:70:db:2a:79:90:cc: 6a:3a:8c:c4:38:f2:70:74:4f:cf:2f:74:ae:3c:07: f1:26:ec:9a:01:b3:ee:8a:80:b2:2e:07:88:47:e2: b8:7c:af:94:af:2b:3d:43:73:3a:56:49:a5:81:e7: f6:96:da:e7:ff:71:2f:09:fa:d2:62:30:b6:70:48: dc:f4:fa:c5:c1:58:1d:0c:b6:d9:23:b4:51:2f:b4: 82:e0:06:b6:e8:6c:e0:7c:ac:32:f1:bf:81:4a:c8: 24:1f:1f:5f:78:8a:d2:4d:16:e1:2f:e8:32:53:01: 4e:6f:96:a7:49:f9:df:19:ae:a3:86:5c:3f:f0:cb: 23:b8:b2:5f:88:9f:1b:c8:94:b7:83:2c:b3:44:71: 62:44:c0:73:19:fb:d4:7e:b8:e4:bb:01:0f:fd:d4: 3a:0d:93:75:b4:07:69:41:8b:29:b9:6f:cc:13:3e: 04:88:7e:c4:86:bc:08:ce:3f:02:c3:20:da:0a:48: b0:d1:cd:fc:54:dc:fc:dc:02:e8:1b:1f:fa:03:c7: 75:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:41:8B:A8:3B:5D:53:5A:E1:F1:AC:F2:2F:DC:B6:8A:92:F9:75:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:a0:66:6d:50:75:0b:c9:17:9a:68:f7:65:f7:de:e1:e0:f0: 2e:1c:af:94:3b:43:24:9c:c3:a5:9b:ff:fc:7a:21:9c:34:29: 14:31:a9:53:7f:3b:62:b1:c3:f4:30:f9:34:c1:42:b3:35:42: 45:99:94:cb:1d:c7:d5:1f:99:56:71:e6:bd:21:f6:30:16:1e: a8:af:57:97:05:d7:90:dd:0b:18:40:71:c5:ae:3c:a5:cd:eb: 77:38:81:d2:60:de:57:f9:8d:2d:b0:5b:a3:c1:56:43:37:da: 49:33:e1:0b:be:3e:05:bd:3c:72:39:4b:94:5e:a1:51:2b:d0: 36:49:fd:34:99:aa:3f:1b:e5:ce:79:4d:ab:f2:f8:8e:a3:3d: 5d:c3:e4:bb:5f:11:50:1d:e6:f2:9c:91:8c:57:15:d7:2a:bd: d9:14:22:90:a1:b0:14:34:2e:bd:1e:47:4b:3c:23:a9:4c:89: 44:e5:30:5f:74:2c:2d:38:31:47:24:c7:2a:a6:7d:a9:29:4a: a5:6c:f4:75:ee:35:c0:d7:39:b9:db:0f:6b:29:1b:59:81:65: d4:2d:4d:db:6b:f2:fd:9c:aa:60:f3:22:b9:25:f4:c3:f8:66: 93:03:f7:44:f0:c2:01:26:92:0c:8d:d5:55:0a:6e:76:7c:41: e1:8e:15:83 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf9FFGAniD3E3MowTAWMgYW1eRTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMjE0WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODQwMzFhODgyNjc2NmY2ZGEyMjhjNTRjYzFlMDNjMTBj YTA5ZTY3OGIyODc5YjQ2MjA4YzdmMjE3MjkyYmI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEPSLWJzEp+ID6N1sYaBrAhJa+tg+ygStJA6IJHW6BZME3 HQqhkQMYWfYe8S9ZtJX9/JxArXDbKnmQzGo6jMQ48nB0T88vdK48B/Em7JoBs+6K gLIuB4hH4rh8r5SvKz1DczpWSaWB5/aW2uf/cS8J+tJiMLZwSNz0+sXBWB0Mttkj tFEvtILgBrbobOB8rDLxv4FKyCQfH194itJNFuEv6DJTAU5vlqdJ+d8ZrqOGXD/w yyO4sl+InxvIlLeDLLNEcWJEwHMZ+9R+uOS7AQ/91DoNk3W0B2lBiym5b8wTPgSI fsSGvAjOPwLDINoKSLDRzfxU3PzcAugbH/oDx3XZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU80GLqDtdU1rh8azyL9y2ipL5deEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlODM3YTFiLTMyYzQtNDliMS05YjIwLTNiOGU0ZDhlMDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDRVjANBgkqhkiG9w0BAQsFAAOCAQEAaKBmbVB1C8kXmmj3Zffe4eDwLhyv lDtDJJzDpZv//HohnDQpFDGpU387YrHD9DD5NMFCszVCRZmUyx3H1R+ZVnHmvSH2 MBYeqK9XlwXXkN0LGEBxxa48pc3rdziB0mDeV/mNLbBbo8FWQzfaSTPhC74+Bb08 cjlLlF6hUSvQNkn9NJmqPxvlznlNq/L4jqM9XcPku18RUB3m8pyRjFcV1yq92RQi kKGwFDQuvR5HSzwjqUyJROUwX3QsLTgxRyTHKqZ9qSlKpWz0de41wNc5udsPaykb WYFl1C1N22vy/ZyqYPMiuSX0w/hmkwP3RPDCASaSDI3VVQpudnxB4Y4Vgw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:50 2025 by rpki-client