$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa File: d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa (raw, json) Hash identifier: g+1/iKnZdeZxBKWPp8fNGPn3/SSBmDFt77Upvc5e9ow= Subject key identifier: 5D:69:E2:DC:12:C8:66:BF:90:BC:B1:0A:20:03:5F:12:97:17:23:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E49B5EEA1BEBC3BED438F86F26404FFF4C3F258 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa Signing time: Fri 04 Apr 2025 00:21:08 +0000 ROA not before: Fri 04 Apr 2025 00:21:08 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:49:b5:ee:a1:be:bc:3b:ed:43:8f:86:f2:64:04:ff:f4:c3:f2:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:21:08 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=a0b752f406cd6ac73b9740c78584d78e8489c44a6991c4fb7d8e3bd1faf20bd6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:19:9f:f1:b6:2b:7b:63:0c:55:fc:14:dc: e6:df:54:fc:eb:aa:b1:fc:c3:6f:52:18:3b:9e:fc: 1b:51:3f:db:40:eb:4f:34:c3:49:88:b5:84:5e:22: a8:1b:55:a5:27:3c:e9:a1:1b:fc:58:cb:25:41:f0: ab:1f:9a:c3:70:36:8a:0c:6b:ff:52:0a:d4:02:f3: bd:5b:de:4f:78:4c:4d:ba:c7:e2:92:3d:78:8e:44: 08:23:0b:b7:9a:9e:9a:ac:4c:dd:de:a8:dc:7a:d0: 45:19:4b:18:3b:be:7d:be:b7:5f:63:c5:99:78:3c: 29:d8:ad:07:31:ce:76:42:40:47:80:81:1f:f0:5e: 51:63:77:7d:c4:e3:e1:4c:78:1f:09:73:93:56:ae: 95:59:4d:ec:98:49:3e:cd:51:90:49:2b:6f:41:64: dd:37:5a:07:78:13:3c:56:b4:7c:25:8c:83:3c:1f: 6c:05:b1:66:ac:bc:5d:0a:85:b4:6a:31:a7:32:04: 18:96:24:e1:de:29:cb:41:4c:19:b5:2f:0e:eb:8b: cd:c0:05:f6:69:9a:87:6f:11:dc:d4:85:17:e7:b2: 1c:9e:62:cd:9e:69:c2:cd:ac:8d:6d:81:fd:26:a3: e7:51:32:d5:b4:f5:67:76:64:e0:e8:94:9b:d9:83: 7c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:69:E2:DC:12:C8:66:BF:90:BC:B1:0A:20:03:5F:12:97:17:23:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.163.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:2a:a7:ab:18:45:8c:a5:fa:a9:02:4e:d9:9f:2a:0c:b8:fd: 13:e2:90:aa:9d:1e:ec:8b:e8:b1:d4:f9:8e:57:4f:e7:2d:ab: 13:c8:77:75:13:06:c6:ef:aa:06:f8:fa:05:b9:b6:41:ad:77: 92:7e:67:49:89:63:16:a1:59:5a:b7:40:3c:97:3d:1f:7d:f0: 77:6f:e7:72:6d:4d:51:8f:1f:40:f6:e6:e5:4f:f0:bc:af:a7: b3:59:eb:c8:1a:b3:0b:2a:83:23:d5:1b:bf:ba:97:9e:60:b0: 88:3d:15:d4:72:ae:33:f2:55:84:c8:7b:29:c2:9e:5e:0b:9a: 5c:59:e6:f3:da:a3:48:a3:2b:1c:d4:02:d8:03:83:d1:58:58: f0:04:d8:be:8f:da:ca:91:b2:43:32:fa:9b:f1:65:23:1a:c6: 41:d2:95:51:b4:1a:25:b0:0a:a5:ad:5a:c2:21:5f:ae:fd:75: 9f:9a:5a:f7:fd:03:b9:a4:87:a8:60:f7:59:16:d0:32:fe:77: d3:ad:35:85:eb:e1:2b:dc:f7:e6:e4:1a:f8:d6:41:60:89:87: c0:42:61:62:9a:cb:16:dc:04:52:14:87:e3:3a:d0:b7:21:ad: f8:e1:98:5f:ec:de:c9:33:d7:dc:98:59:cc:cc:5f:b2:1a:bc: 09:cc:89:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPkm17qG+vDvtQ4+G8mQE//TD8lgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAyMTA4WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGI3NTJmNDA2Y2Q2YWM3M2I5NzQwYzc4NTg0ZDc4ZTg0 ODljNDRhNjk5MWM0ZmI3ZDhlM2JkMWZhZjIwYmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3ixmf8bYre2MMVfwU3ObfVPzrqrH8w29SGDue/BtRP9tA 6080w0mItYReIqgbVaUnPOmhG/xYyyVB8KsfmsNwNooMa/9SCtQC871b3k94TE26 x+KSPXiORAgjC7eanpqsTN3eqNx60EUZSxg7vn2+t19jxZl4PCnYrQcxznZCQEeA gR/wXlFjd33E4+FMeB8Jc5NWrpVZTeyYST7NUZBJK29BZN03Wgd4EzxWtHwljIM8 H2wFsWasvF0KhbRqMacyBBiWJOHeKctBTBm1Lw7ri83ABfZpmodvEdzUhRfnshye Ys2eacLNrI1tgf0mo+dRMtW09Wd2ZODolJvZg3xrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXWni3BLIZr+QvLEKIANfEpcXIywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZGNhMmVjLTg3ZTItNDAxNC1hNWFkLTBhZmZjMDZjMmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36MwDQYJKoZIhvcNAQELBQADggEBAC4qp6sYRYyl+qkCTtmfKgy4/RPi kKqdHuyL6LHU+Y5XT+ctqxPId3UTBsbvqgb4+gW5tkGtd5J+Z0mJYxahWVq3QDyX PR998Hdv53JtTVGPH0D25uVP8Lyvp7NZ68gaswsqgyPVG7+6l55gsIg9FdRyrjPy VYTIeynCnl4LmlxZ5vPao0ijKxzUAtgDg9FYWPAE2L6P2sqRskMy+pvxZSMaxkHS lVG0GiWwCqWtWsIhX679dZ+aWvf9A7mkh6hg91kW0DL+d9OtNYXr4Svc9+bkGvjW QWCJh8BCYWKayxbcBFIUh+M60LchrfjhmF/s3skz19yYWczMX7IavAnMiYQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:52 2025 by rpki-client