$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa File: c1d2c06d-5355-465b-8d51-dfef82b5d000.roa (raw, json) Hash identifier: K4tJwY6tgB6yPHRBKePFLQPF+uvd+ZRLVn4D3vKjWSM= Subject key identifier: BF:02:F5:CF:4C:F9:51:8B:EE:23:04:26:58:43:50:05:27:46:9E:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A4D5D5A8F470B25CF83E759759EE5069C7D0FEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa Signing time: Wed 02 Apr 2025 00:10:26 +0000 ROA not before: Wed 02 Apr 2025 00:10:26 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.99.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4d:5d:5a:8f:47:0b:25:cf:83:e7:59:75:9e:e5:06:9c:7d:0f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:10:26 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=082879b71071331ac9ff4b82d272a1ab410ab930e0953108a91337b19b911b9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:66:00:a1:64:ab:b9:c9:ae:11:0a:b6:66: df:8d:3c:2f:40:0b:93:25:03:57:d1:f2:31:81:bf: c4:2f:af:ae:98:4f:a1:18:08:e4:6a:e1:0e:4e:a7: b4:92:ea:e1:70:20:5d:7b:74:ad:01:9e:af:ca:0f: d2:75:c8:5a:77:76:27:df:20:61:d6:70:2c:a9:bd: f3:fc:53:95:ca:39:ad:31:31:ff:fb:17:a8:28:54: 7a:66:07:3f:bb:d0:0c:8e:4d:11:fb:17:31:a6:6f: df:e7:f6:18:09:eb:cd:45:d3:15:dd:62:6f:37:08: f9:48:d9:4b:ba:6d:19:23:56:5f:35:a2:e5:90:0a: 56:dc:2d:eb:9f:c0:8d:67:dc:04:6e:4c:3f:97:7e: da:fb:9c:b4:7d:99:e3:a2:a2:71:b8:77:ec:06:98: a7:10:9a:f7:b1:84:97:a1:02:ef:cb:af:1f:d4:e7: 13:44:d9:ab:16:cb:c6:d0:40:4a:af:a8:8f:e7:6f: de:c3:50:e4:70:d5:30:f7:f4:ce:9b:0c:df:e3:08: b3:5d:aa:39:a5:1d:7e:20:23:40:09:fd:89:1b:6a: 4d:f6:b2:ea:dc:12:12:70:5e:f3:38:00:02:a5:f6: 3c:fe:3f:65:b7:1f:3c:b4:c7:4c:cd:e6:12:ae:23: c8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:02:F5:CF:4C:F9:51:8B:EE:23:04:26:58:43:50:05:27:46:9E:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1d2c06d-5355-465b-8d51-dfef82b5d000.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.99.128.0/17 Signature Algorithm: sha256WithRSAEncryption 93:13:d1:4f:94:68:8d:f6:95:12:7c:40:f3:a9:5b:9b:b5:2b: 84:56:21:a1:58:ea:26:b0:dd:c3:cd:1d:d5:1e:cb:61:aa:f0: c8:f5:c0:a8:bb:9a:f3:c4:1c:1f:be:af:d6:f0:c5:e2:d8:a3: a1:0f:53:fb:e1:67:dd:95:bd:98:71:66:c1:86:fd:2e:3f:f0: 89:0d:3a:21:00:fd:c5:20:1e:f3:4b:c4:d6:dd:60:b9:16:1d: 23:1c:0d:ef:a4:ce:30:f5:a7:81:31:bf:fc:5b:d9:dd:03:b3: d6:b5:66:fd:2c:05:d6:ea:0a:91:10:92:47:ce:8f:36:dd:2b: d1:ec:6e:7c:fd:c5:70:14:57:77:d3:f9:16:57:66:77:e8:c0: e4:19:63:7b:52:c4:85:10:ea:1c:06:b9:07:2d:72:f1:21:43: 9e:cb:1c:33:f9:7c:38:c3:71:5f:fe:6d:a0:9c:47:89:f2:86: a3:a6:e8:91:1b:76:18:c8:75:03:a3:76:02:b2:d6:8a:f6:3c: 65:44:3e:9e:22:61:de:5e:5e:66:7c:86:98:54:8c:18:57:93: 3e:83:e3:6b:32:a4:1c:36:aa:33:71:17:57:a0:a9:a8:56:73: f4:ef:24:82:3f:e8:f6:c8:2d:97:a6:eb:ce:94:8c:1c:59:9e: 8b:d7:81:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUek1dWo9HCyXPg+dZdZ7lBpx9D+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAxMDI2WhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODI4NzliNzEwNzEzMzFhYzlmZjRiODJkMjcyYTFhYjQx MGFiOTMwZTA5NTMxMDhhOTEzMzdiMTliOTExYjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+DWYAoWSrucmuEQq2Zt+NPC9AC5MlA1fR8jGBv8Qvr66Y T6EYCORq4Q5Op7SS6uFwIF17dK0Bnq/KD9J1yFp3diffIGHWcCypvfP8U5XKOa0x Mf/7F6goVHpmBz+70AyOTRH7FzGmb9/n9hgJ681F0xXdYm83CPlI2Uu6bRkjVl81 ouWQClbcLeufwI1n3ARuTD+Xftr7nLR9meOionG4d+wGmKcQmvexhJehAu/Lrx/U 5xNE2asWy8bQQEqvqI/nb97DUORw1TD39M6bDN/jCLNdqjmlHX4gI0AJ/Ykbak32 surcEhJwXvM4AAKl9jz+P2W3Hzy0x0zN5hKuI8htAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvwL1z0z5UYvuIwQmWENQBSdGngcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxZDJjMDZkLTUzNTUtNDY1Yi04ZDUxLWRmZWY4MmI1ZDAwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAehY4AwDQYJKoZIhvcNAQELBQADggEBAJMT0U+UaI32lRJ8QPOpW5u1K4RW IaFY6iaw3cPNHdUey2Gq8Mj1wKi7mvPEHB++r9bwxeLYo6EPU/vhZ92VvZhxZsGG /S4/8IkNOiEA/cUgHvNLxNbdYLkWHSMcDe+kzjD1p4Exv/xb2d0Ds9a1Zv0sBdbq CpEQkkfOjzbdK9Hsbnz9xXAUV3fT+RZXZnfowOQZY3tSxIUQ6hwGuQctcvEhQ57L HDP5fDjDcV/+baCcR4nyhqOm6JEbdhjIdQOjdgKy1or2PGVEPp4iYd5eXmZ8hphU jBhXkz6D42sypBw2qjNxF1egqahWc/TvJII/6PbILZem686UjBxZnovXgTE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:04:02 2025 by rpki-client