$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d556d4ad-3617-4c1e-8e59-ecf8fec0873e.roa File: d556d4ad-3617-4c1e-8e59-ecf8fec0873e.roa (raw, json) Hash identifier: ktH0gVlk4gCoxFBziixfR5dS4DJxVmATH0nGaMcec2M= Subject key identifier: A5:82:D2:E0:E8:22:A2:27:EA:79:E0:4B:77:AD:9F:BD:4A:65:E0:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40EED897F1E60DB312DAB34750C904E5B9800DB8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d556d4ad-3617-4c1e-8e59-ecf8fec0873e.roa Signing time: Mon 14 Apr 2025 15:10:26 +0000 ROA not before: Mon 14 Apr 2025 15:10:26 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ee:d8:97:f1:e6:0d:b3:12:da:b3:47:50:c9:04:e5:b9:80:0d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:10:26 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=c58c0c01e845e251387be788f5dba80d4ea4b4dabdeaa2d04ffdbb1382617600, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b6:51:94:9f:7e:61:58:5a:34:27:70:3b:61: 3c:48:45:46:4e:95:32:dc:ae:59:00:b5:21:53:2d: ac:ed:09:41:e9:1f:b3:60:80:c2:0c:4c:3d:30:70: 08:93:28:fa:67:51:c9:1e:77:95:7f:8a:ec:8d:d1: 40:e2:5f:00:d8:5f:94:ea:47:7e:db:d9:cc:e4:e5: 04:2f:f7:f9:13:4b:ec:05:94:1c:4a:ca:01:6b:51: 2c:24:45:9f:ca:8b:95:0b:31:00:93:93:93:8c:bf: 0b:07:df:ef:2d:fb:9f:3a:95:ac:8d:f6:45:d1:3a: 3c:3b:ca:19:52:db:2e:6a:ba:81:f1:e1:b7:0f:2a: 91:f4:c5:2b:00:19:37:58:1a:31:a5:ad:ae:a0:cb: f4:97:d8:48:44:1a:4a:27:64:28:24:ce:1c:ee:6f: b3:52:fc:d1:30:88:9c:68:8e:8d:1c:40:7c:8b:a2: 95:17:48:a4:08:81:0e:9f:79:40:9e:ea:e8:84:c1: 76:f4:8f:5e:e8:35:ad:50:83:7e:88:41:e8:53:73: 4d:ba:33:a3:53:9b:64:fa:bd:0d:a8:03:ed:6d:8a: 79:ad:f8:56:b8:75:2e:0c:82:0e:ee:b2:54:a1:83: 16:1d:10:26:ee:82:82:32:82:9c:c0:d8:e0:0d:90: 63:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:82:D2:E0:E8:22:A2:27:EA:79:E0:4B:77:AD:9F:BD:4A:65:E0:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d556d4ad-3617-4c1e-8e59-ecf8fec0873e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.93.0/24 Signature Algorithm: sha256WithRSAEncryption 82:17:af:cd:a0:b4:01:b3:a2:90:f2:33:68:38:d4:81:2d:b5: fa:74:c8:34:e3:9e:1b:d5:92:1b:74:84:c1:6a:f9:b9:38:ba: 5d:8e:02:f7:b8:3f:66:ad:94:29:cf:9a:bd:b4:4d:81:0a:d8: 98:83:80:c7:97:ed:c9:6d:ca:13:cd:86:ba:69:7c:58:f5:6b: a2:02:b1:1d:cd:02:b6:63:38:c7:bb:5c:ed:1e:dc:12:8a:48: 96:01:e1:af:07:5a:a5:3e:a2:88:1b:c2:96:df:dc:64:91:3f: fd:20:8c:13:2c:a0:d1:9e:54:1b:28:7a:5f:92:92:65:db:cb: 40:6f:7c:01:eb:de:42:ef:c8:1a:eb:f7:1e:d3:d5:86:8d:69: 71:37:c7:e5:69:a1:5c:d2:c7:4c:6e:ac:50:33:af:f2:cd:23: 4d:5d:cb:30:21:5f:9d:74:2d:4f:86:dd:44:32:49:99:4d:13: e2:4a:ab:65:a3:ef:fc:36:e5:3e:89:02:be:bf:a1:00:46:bb: fd:f5:0f:ad:d4:fd:7e:e9:53:8d:b9:4c:d0:38:99:f0:c9:98: fa:04:92:9f:57:60:16:37:d2:4b:85:eb:ba:cb:cc:44:6b:f3: 60:79:69:a7:1b:09:c2:f3:c7:11:24:ab:ec:28:91:c2:42:1d: 3e:8c:fc:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQO7Yl/HmDbMS2rNHUMkE5bmADbgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUxMDI2WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNThjMGMwMWU4NDVlMjUxMzg3YmU3ODhmNWRiYTgwZDRl YTRiNGRhYmRlYWEyZDA0ZmZkYmIxMzgyNjE3NjAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdtlGUn35hWFo0J3A7YTxIRUZOlTLcrlkAtSFTLaztCUHp H7NggMIMTD0wcAiTKPpnUcked5V/iuyN0UDiXwDYX5TqR37b2czk5QQv9/kTS+wF lBxKygFrUSwkRZ/Ki5ULMQCTk5OMvwsH3+8t+586layN9kXROjw7yhlS2y5quoHx 4bcPKpH0xSsAGTdYGjGlra6gy/SX2EhEGkonZCgkzhzub7NS/NEwiJxojo0cQHyL opUXSKQIgQ6feUCe6uiEwXb0j17oNa1Qg36IQehTc026M6NTm2T6vQ2oA+1tinmt +Fa4dS4Mgg7uslShgxYdECbugoIygpzA2OANkGNZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpYLS4OgioifqeeBLd62fvUpl4LYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1NTZkNGFkLTM2MTctNGMxZS04ZTU5LWVjZjhmZWMwODczZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC4SF0wDQYJKoZIhvcNAQELBQADggEBAIIXr82gtAGzopDyM2g41IEttfp0 yDTjnhvVkht0hMFq+bk4ul2OAve4P2atlCnPmr20TYEK2JiDgMeX7cltyhPNhrpp fFj1a6ICsR3NArZjOMe7XO0e3BKKSJYB4a8HWqU+oogbwpbf3GSRP/0gjBMsoNGe VBsoel+SkmXby0BvfAHr3kLvyBrr9x7T1YaNaXE3x+VpoVzSx0xurFAzr/LNI01d yzAhX510LU+G3UQySZlNE+JKq2Wj7/w25T6JAr6/oQBGu/31D63U/X7pU425TNA4 mfDJmPoEkp9XYBY30kuF67rLzERr82B5aacbCcLzxxEkq+wokcJCHT6M/Cw= -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:45 2025 by rpki-client