$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa File: cffa990e-6fc2-4b61-89ad-172287c16758.roa (raw, json) Hash identifier: wztW1Enly8Gs1YFYxvqupI/s4AnEWN9OGvGgogdDMuM= Subject key identifier: 70:0F:70:53:51:EE:B4:99:EB:5D:92:6F:FD:83:15:7D:BA:FB:CF:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12B9D94FC307ECB4BD32555F8B2CDE0E9B9CBA57 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa Signing time: Wed 02 Apr 2025 00:21:04 +0000 ROA not before: Wed 02 Apr 2025 00:21:04 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.122.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b9:d9:4f:c3:07:ec:b4:bd:32:55:5f:8b:2c:de:0e:9b:9c:ba:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:21:04 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=111087c9ea2641910c1a8b55b070f5105635201d245a01d7bbe682a832973dbe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:36:f0:d2:2a:22:49:fc:9b:fc:ab:b6:57:2e: ff:2f:25:c9:59:3d:bd:b0:69:2f:9c:5a:0a:f9:25: 41:b7:31:59:57:5d:a3:22:eb:57:51:b9:79:5e:2a: 36:2b:18:28:28:3b:5d:c6:90:0d:a8:97:3d:3c:ac: 06:63:8c:0a:42:d3:65:4b:b1:89:09:e6:d2:3c:61: 9d:aa:19:a8:9d:10:69:7a:a7:c9:60:b6:44:92:1f: bd:e6:25:6d:03:b0:84:4f:f1:a4:24:d5:62:e3:a8: 50:01:b7:e6:e6:ef:dc:69:b7:c1:88:b1:f9:8a:49: 0f:13:98:82:1e:0e:74:5a:be:29:38:80:ef:2b:f0: 9f:e7:9a:53:2a:01:4d:ea:31:be:b8:be:09:21:3a: f6:80:51:98:e0:56:9b:6f:11:83:a2:5d:ed:1b:db: e1:90:68:54:92:55:4b:10:fd:ed:9d:90:c8:3d:04: 3d:18:25:35:3a:bf:8c:82:43:05:c6:97:40:0c:50: 53:74:a1:ea:a4:8d:ad:05:d9:69:e2:12:2c:8e:97: 67:38:b7:b1:47:c2:c6:33:f2:33:b3:b7:68:55:71: 1b:f8:c1:55:1e:db:64:41:36:49:02:ab:7f:27:ec: b6:d5:f8:21:52:51:8c:15:16:b4:61:5a:9b:92:3b: 3c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0F:70:53:51:EE:B4:99:EB:5D:92:6F:FD:83:15:7D:BA:FB:CF:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:d7:90:4e:ac:99:9e:b6:09:5d:67:5b:7e:57:b8:78:75:62: 02:96:14:e2:04:03:25:77:e7:0b:9e:09:8e:c0:61:5f:00:95: c7:22:39:d3:b6:57:5e:ed:94:56:6b:0b:36:75:10:e1:5e:c3: b5:95:51:f7:7e:6b:80:17:39:91:97:85:d7:44:35:e1:ba:e7: 45:76:86:5b:84:94:be:26:ae:fb:8a:8e:15:f8:24:a3:57:b0: 0d:cd:6b:ae:cc:bb:23:54:4e:6a:ac:ec:d2:74:d9:74:40:00: 2f:48:70:33:42:1d:c6:23:f4:84:87:a9:eb:c2:32:31:a0:71: 75:bc:5d:87:5d:49:cb:89:59:76:1b:86:7b:3e:f1:a6:6c:78: 4f:d3:0c:1e:0e:fc:93:d1:8d:f9:20:38:cb:f0:5e:d5:4c:90: f1:38:20:14:e0:be:9f:3f:6d:13:55:9f:eb:14:8f:a8:7f:fe: a8:90:68:6b:cd:1d:b4:7a:a9:71:fe:c9:7d:b9:e4:c8:1c:e9: 0c:d4:5b:ff:5e:e0:f2:56:6a:28:6f:62:a6:dd:f5:78:19:32: 42:1e:76:fa:56:85:e4:74:e1:71:5a:c8:6c:6a:11:01:b9:28: 89:0c:96:0a:e2:1b:53:15:36:3e:1b:20:94:46:31:e1:c3:63: 1e:4e:85:49 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUErnZT8MH7LS9MlVfiyzeDpuculcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAyMTA0WhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTEwODdjOWVhMjY0MTkxMGMxYThiNTViMDcwZjUxMDU2 MzUyMDFkMjQ1YTAxZDdiYmU2ODJhODMyOTczZGJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkNvDSKiJJ/Jv8q7ZXLv8vJclZPb2waS+cWgr5JUG3MVlX XaMi61dRuXleKjYrGCgoO13GkA2olz08rAZjjApC02VLsYkJ5tI8YZ2qGaidEGl6 p8lgtkSSH73mJW0DsIRP8aQk1WLjqFABt+bm79xpt8GIsfmKSQ8TmIIeDnRavik4 gO8r8J/nmlMqAU3qMb64vgkhOvaAUZjgVptvEYOiXe0b2+GQaFSSVUsQ/e2dkMg9 BD0YJTU6v4yCQwXGl0AMUFN0oeqkja0F2WniEiyOl2c4t7FHwsYz8jOzt2hVcRv4 wVUe22RBNkkCq38n7LbV+CFSUYwVFrRhWpuSOzxPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcA9wU1HutJnrXZJv/YMVfbr7z94wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmZmE5OTBlLTZmYzItNGI2MS04OWFkLTE3MjI4N2MxNjc1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBNejANBgkqhkiG9w0BAQsFAAOCAQEAC9eQTqyZnrYJXWdbfle4eHViApYU 4gQDJXfnC54JjsBhXwCVxyI507ZXXu2UVmsLNnUQ4V7DtZVR935rgBc5kZeF10Q1 4brnRXaGW4SUviau+4qOFfgko1ewDc1rrsy7I1ROaqzs0nTZdEAAL0hwM0IdxiP0 hIep68IyMaBxdbxdh11Jy4lZdhuGez7xpmx4T9MMHg78k9GN+SA4y/Be1UyQ8Tgg FOC+nz9tE1Wf6xSPqH/+qJBoa80dtHqpcf7JfbnkyBzpDNRb/17g8lZqKG9ipt31 eBkyQh52+laF5HThcVrIbGoRAbkoiQyWCuIbUxU2PhsglEYx4cNjHk6FSQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:11 2025 by rpki-client