$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa File: d5a67cf4-10e5-4819-91b3-5293d070d97e.roa (raw, json) Hash identifier: EjG6BhY/d+zsGvzY+HwCrd8JQ1kFh2vQ4jxlypqWAj8= Subject key identifier: 78:0E:B0:A0:AD:C5:EE:DA:9C:96:08:82:4C:5F:E0:2A:35:37:A3:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06061451BC504E162548109CAC3DA23F5EB65A0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa Signing time: Fri 04 Apr 2025 00:11:58 +0000 ROA not before: Fri 04 Apr 2025 00:11:58 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:06:14:51:bc:50:4e:16:25:48:10:9c:ac:3d:a2:3f:5e:b6:5a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:58 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=7d13fa0d60e340e3b613d5cf95649c2fb2c86358533eec9f26ed5d91c1928a6e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0b:5b:b9:55:e1:bc:f8:59:e3:af:37:2d:b5: fd:d4:5b:62:4b:6b:0d:2c:9f:e5:f3:a3:d3:4e:43: 70:e0:f7:b5:41:b2:5a:aa:ea:43:ef:c7:85:02:b2: fa:0b:c0:9b:01:0a:9b:49:11:1a:ea:41:d2:47:94: f2:95:ad:1d:88:3f:33:36:82:d6:9a:d7:bf:d8:89: 95:72:f6:0a:e8:d4:1d:54:5e:cc:ca:0b:38:8a:62: 33:49:c0:c2:7e:ae:9c:66:07:76:3b:ef:96:dc:c2: 1b:c7:37:5a:6d:2d:f1:3e:5d:12:27:44:33:e8:d3: 21:d6:2c:b5:80:3c:1e:87:cf:1e:f5:60:89:d0:9b: 80:c8:3e:6e:2c:2d:70:d1:98:4d:8e:cf:57:ed:ce: 14:e8:45:50:3a:94:f8:e0:91:32:4a:e6:6d:e9:ac: 6a:1c:81:d9:9b:bc:b4:5e:fd:38:0a:0f:12:43:51: 6f:ab:77:c1:79:70:4a:95:af:1e:26:ec:ab:9e:61: 8f:87:93:f6:18:d3:6e:92:99:9b:b3:ca:d4:cf:44: 2b:ff:03:39:eb:63:69:c0:d2:d2:d2:71:ce:9e:57: 7a:d7:a6:2c:c8:f6:7e:88:a9:4d:5b:ea:b1:43:8e: b6:3c:00:3a:d0:df:5d:9b:ae:7e:df:75:2c:a1:3e: 3d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0E:B0:A0:AD:C5:EE:DA:9C:96:08:82:4C:5F:E0:2A:35:37:A3:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.128.0/17 Signature Algorithm: sha256WithRSAEncryption 12:d7:68:42:5c:69:c4:73:24:38:2e:8b:89:c7:d0:9c:b8:77: ba:a7:c8:47:cf:68:43:6c:83:2c:b0:a9:f0:58:16:8e:01:11: ce:58:33:18:19:42:ba:f4:c0:cd:41:66:0a:0c:ae:de:6e:eb: e6:51:b2:81:7d:f6:03:e8:c8:f5:ed:75:d6:de:7a:bd:97:6f: db:75:e4:2b:8d:44:15:01:be:b1:29:16:da:78:19:0b:f3:55: 33:9e:c6:53:23:35:ea:11:37:d8:e0:9f:08:59:50:33:a1:84: b6:12:79:9d:fd:40:b3:d2:55:00:bb:39:b7:09:80:33:7f:eb: 79:21:c0:b5:b6:5c:98:a5:28:14:47:a9:e5:4f:51:ac:99:39: 27:87:5c:97:21:77:b2:83:05:59:ed:38:93:d7:39:11:f0:63: 97:85:93:08:37:c7:69:42:09:cd:13:21:b7:b6:19:3e:c1:8f: 97:02:c4:5c:6b:8c:e5:08:cf:c8:f8:6d:3a:e8:73:80:75:72: 11:2e:5f:3e:dc:b6:09:65:1e:1f:d4:cb:c8:de:d2:bb:7f:4d: 6a:0e:3a:f9:59:00:a5:a4:8e:64:22:65:5b:d2:a3:f2:95:05: 15:59:35:a5:b3:bc:0f:1b:9b:6b:27:cb:c3:35:78:02:86:a2: 1d:7b:79:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBgYUUbxQThYlSBCcrD2iP162WgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTU4WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDEzZmEwZDYwZTM0MGUzYjYxM2Q1Y2Y5NTY0OWMyZmIy Yzg2MzU4NTMzZWVjOWYyNmVkNWQ5MWMxOTI4YTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcC1u5VeG8+Fnjrzcttf3UW2JLaw0sn+Xzo9NOQ3Dg97VB slqq6kPvx4UCsvoLwJsBCptJERrqQdJHlPKVrR2IPzM2gtaa17/YiZVy9gro1B1U XszKCziKYjNJwMJ+rpxmB3Y775bcwhvHN1ptLfE+XRInRDPo0yHWLLWAPB6Hzx71 YInQm4DIPm4sLXDRmE2Oz1ftzhToRVA6lPjgkTJK5m3prGocgdmbvLRe/TgKDxJD UW+rd8F5cEqVrx4m7KueYY+Hk/YY026SmZuzytTPRCv/AznrY2nA0tLScc6eV3rX pizI9n6IqU1b6rFDjrY8ADrQ312brn7fdSyhPj3rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeA6woK3F7tqclgiCTF/gKjU3o3swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1YTY3Y2Y0LTEwZTUtNDgxOS05MWIzLTUyOTNkMDcwZDk3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcjNoAwDQYJKoZIhvcNAQELBQADggEBABLXaEJcacRzJDgui4nH0Jy4d7qn yEfPaENsgyywqfBYFo4BEc5YMxgZQrr0wM1BZgoMrt5u6+ZRsoF99gPoyPXtddbe er2Xb9t15CuNRBUBvrEpFtp4GQvzVTOexlMjNeoRN9jgnwhZUDOhhLYSeZ39QLPS VQC7ObcJgDN/63khwLW2XJilKBRHqeVPUayZOSeHXJchd7KDBVntOJPXORHwY5eF kwg3x2lCCc0TIbe2GT7Bj5cCxFxrjOUIz8j4bTroc4B1chEuXz7ctgllHh/Uy8je 0rt/TWoOOvlZAKWkjmQiZVvSo/KVBRVZNaWzvA8bm2sny8M1eAKGoh17eVY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:04 2025 by rpki-client