$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa File: c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa (raw, json) Hash identifier: 7dyplzB9LM6mZviF8lDZT2UKUWPvWbQurCqWOtXk3PM= Subject key identifier: 2A:F8:63:5D:EA:0B:62:61:B2:B7:59:AC:79:C3:8F:FE:EE:63:FD:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B291B6B70E11A4B485B29D4D2223E9D8685DF4C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa Signing time: Wed 23 Apr 2025 00:51:03 +0000 ROA not before: Wed 23 Apr 2025 00:51:03 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:29:1b:6b:70:e1:1a:4b:48:5b:29:d4:d2:22:3e:9d:86:85:df:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:03 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=382243380b19083ef4b67361d21b5fe0a17b9dcff55f1aa04360322212d286f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e1:13:6e:89:28:7c:f2:89:16:62:96:6d:aa: fd:2e:73:98:79:f2:ce:f9:71:e3:f1:fa:ca:16:ed: d3:2f:5a:01:79:58:46:87:77:59:89:75:5e:aa:ae: d2:9d:4a:da:0c:03:48:77:bb:56:2c:4b:d4:34:c9: 63:06:51:b0:cb:a5:95:7c:25:7f:4e:a0:fd:da:2c: 8e:06:ad:6c:32:95:49:44:65:f0:54:9a:64:58:1e: c0:21:3e:0f:6e:7a:9d:9b:1c:2a:b6:c1:af:fe:34: 24:cd:1f:24:7f:cd:bc:6e:81:d9:8f:28:e0:54:c7: e7:62:95:5e:ea:40:75:b1:cc:eb:af:ca:d1:b9:5b: e4:e2:e4:3e:1c:e1:49:b2:d7:09:66:04:df:0d:d7: 12:9f:ea:a6:ff:e0:ab:8f:40:8b:f2:d1:30:45:bb: 16:e7:a1:d4:95:30:e6:4c:9d:61:91:ee:5f:69:b0: ac:49:94:90:34:80:4f:fe:2c:21:54:53:f0:15:02: f8:82:4f:fc:b6:40:6b:f1:9f:32:55:2f:4c:95:73: 07:d6:ef:21:99:d2:2c:e7:04:9e:da:78:d8:d5:c8: e7:81:7a:81:da:91:42:9a:07:bd:85:a8:e1:72:05: cb:98:02:82:8c:af:00:83:53:70:8e:38:50:b3:bb: 5f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F8:63:5D:EA:0B:62:61:B2:B7:59:AC:79:C3:8F:FE:EE:63:FD:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/19 Signature Algorithm: sha256WithRSAEncryption 26:4e:18:c7:49:d9:da:8f:e7:25:c3:68:f1:f2:d3:ba:3d:b4: 73:ac:88:c2:a3:b4:69:2c:90:59:99:5b:93:f6:be:96:b5:50: d4:76:89:4d:b1:7c:91:5a:00:4d:5a:fd:08:93:92:78:a7:f3: a8:d4:ad:75:09:64:bd:1c:dd:d3:e1:c0:21:5f:a7:9f:8c:14: dd:fe:45:75:61:39:e4:67:7c:6b:b8:ac:91:a0:6c:dd:5f:47: 36:3a:fd:d8:0e:85:4e:ee:bd:76:fd:9a:11:9f:07:f6:6e:32: 4f:0e:7a:53:cf:d5:50:87:fe:00:1e:c9:fb:21:90:d2:69:6a: 5d:47:ad:03:25:45:78:49:19:96:fa:ff:82:35:ef:77:8d:dc: e4:39:b7:6a:b6:ef:b7:72:aa:f0:91:10:54:5f:76:d9:ba:be: 8f:8f:10:5b:9a:9a:cc:1c:8a:3d:ac:25:cb:26:21:d3:05:46: c3:00:8c:18:d1:07:b4:37:1c:63:8f:86:75:e8:ae:3b:10:ef: cd:59:6e:39:46:cc:b0:2c:e2:f1:26:2d:98:44:74:08:e0:1c: 7a:bb:5a:37:c8:59:c6:fa:e2:b1:40:0f:d6:b8:32:0e:f7:d1: 24:6d:b4:ac:bb:f3:0f:f7:ae:25:3a:f8:99:de:6b:66:aa:cf: fd:31:d7:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSykba3DhGktIWynU0iI+nYaF30wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTAzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODIyNDMzODBiMTkwODNlZjRiNjczNjFkMjFiNWZlMGEx N2I5ZGNmZjU1ZjFhYTA0MzYwMzIyMjEyZDI4NmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa4RNuiSh88okWYpZtqv0uc5h58s75cePx+soW7dMvWgF5 WEaHd1mJdV6qrtKdStoMA0h3u1YsS9Q0yWMGUbDLpZV8JX9OoP3aLI4GrWwylUlE ZfBUmmRYHsAhPg9uep2bHCq2wa/+NCTNHyR/zbxugdmPKOBUx+dilV7qQHWxzOuv ytG5W+Ti5D4c4Umy1wlmBN8N1xKf6qb/4KuPQIvy0TBFuxbnodSVMOZMnWGR7l9p sKxJlJA0gE/+LCFUU/AVAviCT/y2QGvxnzJVL0yVcwfW7yGZ0iznBJ7aeNjVyOeB eoHakUKaB72FqOFyBcuYAoKMrwCDU3COOFCzu1+7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKvhjXeoLYmGyt1msecOP/u5j/eQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4YWFiNDZjLWJkNWMtNDhiMS1hZGQ3LTZmNTVmZmMyZWY5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXM7OAwDQYJKoZIhvcNAQELBQADggEBACZOGMdJ2dqP5yXDaPHy07o9tHOs iMKjtGkskFmZW5P2vpa1UNR2iU2xfJFaAE1a/QiTknin86jUrXUJZL0c3dPhwCFf p5+MFN3+RXVhOeRnfGu4rJGgbN1fRzY6/dgOhU7uvXb9mhGfB/ZuMk8OelPP1VCH /gAeyfshkNJpal1HrQMlRXhJGZb6/4I173eN3OQ5t2q277dyqvCREFRfdtm6vo+P EFuamswcij2sJcsmIdMFRsMAjBjRB7Q3HGOPhnXorjsQ781ZbjlGzLAs4vEmLZhE dAjgHHq7WjfIWcb64rFAD9a4Mg730SRttKy78w/3riU6+Jnea2aqz/0x1+Y= -----END CERTIFICATE-----Generated at Sat Apr 26 13:15:45 2025 by rpki-client