$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa File: bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa (raw, json) Hash identifier: DMAmZRCias2fcp4rKMJ5Hrl0eSu54LK0WC5zlvi+2M4= Subject key identifier: 31:C6:14:BC:DA:EC:5A:8D:1E:D5:C3:D6:F9:97:2E:D8:C0:A8:8F:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DAA32EEFBADBBB75E9FFA6A71FBA25B1F165E82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa Signing time: Thu 17 Apr 2025 20:07:17 +0000 ROA not before: Thu 17 Apr 2025 20:07:17 +0000 ROA not after: Thu 22 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 95.40.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:aa:32:ee:fb:ad:bb:b7:5e:9f:fa:6a:71:fb:a2:5b:1f:16:5e:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 17 20:07:17 2025 GMT Not After : May 22 23:59:59 2025 GMT Subject: serialNumber=20b2d54fca42e88b3c0776b344e526e4b0fdeeaf781e9952bf2f98cfc4c40329, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0f:1f:ee:fd:ae:c8:bf:9a:51:ad:c4:d8:27: 99:02:0f:95:73:2c:54:f0:84:85:08:8f:52:4d:98: 8d:e2:6b:8a:33:5f:22:49:36:91:52:07:7b:b1:0a: a5:a0:ad:ac:a5:5e:a5:76:55:b6:54:81:9f:60:f6: 9d:0c:dd:21:a5:66:30:36:74:f9:e5:55:86:4c:ff: 85:18:77:92:e4:66:78:2b:68:3d:1e:76:e7:8d:1e: ad:75:fe:17:4d:ae:16:d5:f4:54:d2:4e:a2:f3:83: 7a:e2:01:ba:01:b7:d0:03:fb:67:a1:fd:db:cc:67: 66:0b:e9:0f:d4:c9:4f:a7:9d:16:95:e8:fa:09:c9: 48:f1:e9:e1:a5:10:01:dc:e0:bd:56:d0:17:9f:57: 94:5f:0c:89:0b:ec:6a:62:a2:f5:86:61:30:29:0f: 10:21:db:a6:b4:b1:87:18:e2:c8:9e:fe:87:6b:28: 59:b2:4d:31:39:3c:de:ea:e6:d0:d2:ce:70:f3:34: 1e:ba:52:3d:e9:64:3a:a1:53:40:51:01:f3:fe:5d: d0:a7:92:f2:0e:4d:57:0c:43:75:76:7a:3b:98:a9: b4:a2:83:f5:9c:3b:f0:b2:35:23:58:56:4f:87:48: cc:02:2b:63:98:b8:33:b3:2b:a5:5f:4a:ec:d1:54: 52:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C6:14:BC:DA:EC:5A:8D:1E:D5:C3:D6:F9:97:2E:D8:C0:A8:8F:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.40.0.0/15 Signature Algorithm: sha256WithRSAEncryption bc:7a:aa:3a:94:5e:d4:43:15:e6:36:18:50:59:9d:95:94:c7: a2:46:8a:96:f3:bc:9b:64:b8:1a:d4:5e:e4:ef:f5:40:22:7f: 63:c5:4d:02:96:ec:ac:d9:48:c1:df:43:4d:e5:66:66:98:47: 90:4a:02:da:65:82:d1:f9:6e:4c:5b:e1:b8:f3:5e:6b:46:3d: ed:e1:d0:42:3a:fd:49:42:90:fd:1f:15:7e:75:cf:8b:de:11: b0:82:6c:59:1e:2c:8b:2c:74:19:5e:04:14:9d:67:58:76:08: 9e:df:67:b9:38:69:8a:06:3c:b9:01:76:1c:12:32:4e:d3:05: cd:eb:cb:c3:d5:57:2f:6d:15:19:7c:95:9b:4a:0f:af:2c:3c: 1d:2a:4b:f6:c3:7f:d0:6e:17:65:b0:29:95:64:1a:49:ff:bb: 26:76:64:21:f9:8a:4d:54:5b:da:7f:80:f6:30:36:c3:74:03: 2f:b2:cf:d4:25:c2:20:81:01:46:a3:f2:90:8a:6d:d8:8b:9b: 08:e1:73:44:a4:78:71:42:20:45:4e:78:5b:f8:af:01:1b:11: c5:26:55:a6:da:e8:01:20:01:45:00:5b:b3:d0:c6:d2:0c:86: fd:63:6b:15:95:1b:12:15:a4:0d:d1:58:af:6a:4a:53:db:84: e9:02:10:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPaoy7vutu7den/pqcfuiWx8WXoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE3MjAwNzE3WhcNMjUwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGIyZDU0ZmNhNDJlODhiM2MwNzc2YjM0NGU1MjZlNGIw ZmRlZWFmNzgxZTk5NTJiZjJmOThjZmM0YzQwMzI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqDx/u/a7Iv5pRrcTYJ5kCD5VzLFTwhIUIj1JNmI3ia4oz XyJJNpFSB3uxCqWgraylXqV2VbZUgZ9g9p0M3SGlZjA2dPnlVYZM/4UYd5LkZngr aD0edueNHq11/hdNrhbV9FTSTqLzg3riAboBt9AD+2eh/dvMZ2YL6Q/UyU+nnRaV 6PoJyUjx6eGlEAHc4L1W0BefV5RfDIkL7GpiovWGYTApDxAh26a0sYcY4sie/odr KFmyTTE5PN7q5tDSznDzNB66Uj3pZDqhU0BRAfP+XdCnkvIOTVcMQ3V2ejuYqbSi g/WcO/CyNSNYVk+HSMwCK2OYuDOzK6VfSuzRVFIvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMcYUvNrsWo0e1cPW+Zcu2MCoj3YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmZDVjNWIyLTY5MGUtNDBlYS1iNTlhLTg3ZmM2NjM5MDRhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFfKDANBgkqhkiG9w0BAQsFAAOCAQEAvHqqOpRe1EMV5jYYUFmdlZTHokaK lvO8m2S4GtRe5O/1QCJ/Y8VNApbsrNlIwd9DTeVmZphHkEoC2mWC0fluTFvhuPNe a0Y97eHQQjr9SUKQ/R8VfnXPi94RsIJsWR4siyx0GV4EFJ1nWHYInt9nuThpigY8 uQF2HBIyTtMFzevLw9VXL20VGXyVm0oPryw8HSpL9sN/0G4XZbAplWQaSf+7JnZk IfmKTVRb2n+A9jA2w3QDL7LP1CXCIIEBRqPykIpt2IubCOFzRKR4cUIgRU54W/iv ARsRxSZVptroASABRQBbs9DG0gyG/WNrFZUbEhWkDdFYr2pKU9uE6QIQNA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:48 2025 by rpki-client