$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa File: c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa (raw, json) Hash identifier: OIQG1tvQiqf6oU4K9I3EYFJmp1zdUkH04sc4cvkoVmg= Subject key identifier: 35:C8:61:35:94:FA:C5:45:21:E7:89:73:2B:CE:9C:D4:B0:DE:67:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 649C1CFDA43F4B18749E7D1A305C7F1EB599A164 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa Signing time: Fri 25 Apr 2025 00:41:24 +0000 ROA not before: Fri 25 Apr 2025 00:41:24 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9c:1c:fd:a4:3f:4b:18:74:9e:7d:1a:30:5c:7f:1e:b5:99:a1:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:24 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ff85bb1732cb9b78bdec01ea14174cfdd16b6433efb772dca9f023f78fe55099, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:77:95:9e:d2:28:7b:75:89:a2:5f:49:bf:fa: 7e:8e:99:8d:46:f6:0e:c3:df:cc:f3:8c:e3:95:c9: 55:00:a9:31:33:92:10:cd:46:0a:7b:64:07:3c:64: ec:1e:1c:95:c0:5f:e6:ae:ae:15:d5:9b:8d:45:30: ab:67:30:ee:93:17:c6:95:3e:70:b7:09:fc:f1:8f: da:31:6f:1f:a5:b5:99:5b:3c:05:ee:9f:8b:ee:60: 75:04:7b:b1:f4:99:e2:cc:1b:13:e3:c2:c4:8d:86: 2c:1e:e0:17:25:15:c4:d8:2e:02:35:03:10:b9:0e: 62:60:4b:ee:24:59:19:5a:dc:3f:84:11:d9:3d:ea: b1:99:ef:4b:e7:4d:27:47:4b:c2:ed:ae:eb:e0:c4: 53:17:27:dd:1e:78:53:75:09:2d:72:b5:1b:10:1a: 4e:d1:23:70:76:60:b2:d1:5b:e6:44:89:01:fa:11: 4c:bf:cf:6c:74:39:d5:00:19:5d:a9:a2:de:f0:d8: 65:a1:fc:8e:f6:8e:99:5c:3d:a1:8d:38:84:cd:91: a9:7a:01:85:14:a0:ca:3f:e4:a9:e6:b7:03:a4:4e: 3c:91:af:2d:76:32:1c:36:b0:c0:6d:47:ab:0d:5c: 4e:ec:63:fe:15:c6:6f:9b:d1:ba:68:af:7e:1d:a1: 38:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C8:61:35:94:FA:C5:45:21:E7:89:73:2B:CE:9C:D4:B0:DE:67:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:3c:da:e1:99:fb:43:44:9d:58:f4:80:0f:1a:ad:3d:3f:af: bb:2c:97:94:5e:b5:d2:d2:ca:f7:d8:ad:f4:df:a7:ff:01:af: 5b:54:2d:a8:31:32:66:01:b0:7b:67:ce:35:d0:2b:a8:cc:4c: 70:12:83:9f:68:8a:01:ab:c7:3d:98:73:6e:f9:6b:04:73:be: 7e:e6:39:71:64:09:37:e9:80:ed:55:6e:89:d2:27:72:b6:2f: 0c:ca:34:79:45:9c:2a:91:0a:ea:89:e4:50:eb:c8:96:1e:fc: 81:5b:c4:32:8e:42:a5:01:47:21:e1:f7:c0:ee:a0:5e:a1:83: 12:b8:41:6a:01:2e:81:20:97:e1:b0:58:c6:1f:18:0e:42:25: 20:c6:3e:f2:e3:3e:2a:fd:2c:b4:59:fd:70:52:b9:c0:65:90: 41:d5:ee:d6:35:b2:45:81:32:a0:1d:c2:7d:e4:3e:f6:ce:ec: 3f:72:dd:a5:1e:5b:2b:5b:6a:5d:8f:1f:8c:b2:bc:7e:15:34: 90:ae:bb:86:24:2c:df:d9:e2:93:a5:bf:9e:25:32:5e:75:e6: 6a:76:51:8a:16:bf:9d:56:db:4b:29:4b:1e:7f:f4:8c:a0:8f: 73:db:d7:43:4c:5f:36:72:16:24:77:38:65:bf:84:b6:11:ca: 5c:86:95:79 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZJwc/aQ/Sxh0nn0aMFx/HrWZoWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MTI0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjg1YmIxNzMyY2I5Yjc4YmRlYzAxZWExNDE3NGNmZGQx NmI2NDMzZWZiNzcyZGNhOWYwMjNmNzhmZTU1MDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVd5We0ih7dYmiX0m/+n6OmY1G9g7D38zzjOOVyVUAqTEz khDNRgp7ZAc8ZOweHJXAX+aurhXVm41FMKtnMO6TF8aVPnC3Cfzxj9oxbx+ltZlb PAXun4vuYHUEe7H0meLMGxPjwsSNhiwe4BclFcTYLgI1AxC5DmJgS+4kWRla3D+E Edk96rGZ70vnTSdHS8LtruvgxFMXJ90eeFN1CS1ytRsQGk7RI3B2YLLRW+ZEiQH6 EUy/z2x0OdUAGV2pot7w2GWh/I72jplcPaGNOITNkal6AYUUoMo/5KnmtwOkTjyR ry12Mhw2sMBtR6sNXE7sY/4Vxm+b0bpor34doThFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNchhNZT6xUUh54lzK86c1LDeZ0owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMGU2NWNkLWRkNjItNGE3OC05MDEzLTIzZTRhYTM2NjNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo4zANBgkqhkiG9w0BAQsFAAOCAQEAIjza4Zn7Q0SdWPSADxqtPT+vuyyX lF610tLK99it9N+n/wGvW1QtqDEyZgGwe2fONdArqMxMcBKDn2iKAavHPZhzbvlr BHO+fuY5cWQJN+mA7VVuidIncrYvDMo0eUWcKpEK6onkUOvIlh78gVvEMo5CpQFH IeH3wO6gXqGDErhBagEugSCX4bBYxh8YDkIlIMY+8uM+Kv0stFn9cFK5wGWQQdXu 1jWyRYEyoB3CfeQ+9s7sP3LdpR5bK1tqXY8fjLK8fhU0kK67hiQs39nik6W/niUy XnXmanZRiha/nVbbSylLHn/0jKCPc9vXQ0xfNnIWJHc4Zb+EthHKXIaVeQ== -----END CERTIFICATE-----Generated at Sat Apr 26 18:33:22 2025 by rpki-client