$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa File: d92cf84d-536c-4213-86c8-c97fdb4209dc.roa (raw, json) Hash identifier: DK4U0bOtTq5Y20yyjoGsvzPAYWlFXB7GOgDxEKkCJPc= Subject key identifier: 97:3C:A4:C3:69:F7:C8:A3:F4:92:13:AF:27:5A:42:AD:EC:F1:26:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 248C429A0C8A71A1D8077D82A4C8B9A4EABFF683 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa Signing time: Fri 25 Apr 2025 00:41:20 +0000 ROA not before: Fri 25 Apr 2025 00:41:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8c:42:9a:0c:8a:71:a1:d8:07:7d:82:a4:c8:b9:a4:ea:bf:f6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2078ac66225efea0cca2cbb802b8a11fe599f489fb5b2a2ae673d478d61dcc91, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:d4:55:6e:01:1d:60:a0:62:f3:bd:bf:bb: eb:5e:8f:49:3a:2a:5e:4d:c7:70:60:95:43:cf:a8: 9b:29:a9:96:bc:e9:be:c6:b1:99:a5:91:39:d2:ba: 87:f9:dd:3f:4a:2c:5e:ba:d1:4c:03:71:fd:57:70: 2c:18:fe:2f:1e:23:03:49:51:90:60:ea:fe:16:70: 3b:73:8f:e4:4d:b3:33:36:86:97:b3:b7:3a:87:02: 49:de:99:dd:b7:cb:3d:ef:f5:42:4e:f7:75:8d:9a: 66:40:08:4f:78:e1:e9:3b:72:35:4f:5e:8b:67:aa: b1:7c:43:3b:7b:14:6d:db:0a:1d:56:2a:b2:61:df: 4b:2e:59:e2:58:c6:a1:08:5d:86:57:5d:12:7e:0e: 8c:b7:ec:2d:65:d4:f5:10:61:63:07:46:39:24:d9: 93:43:34:12:af:ec:ad:84:21:04:b1:53:59:3d:d4: bb:1e:71:04:fe:1b:46:17:13:d7:b9:44:fd:1a:c7: d6:42:2c:6d:87:6c:f4:42:7a:a7:26:72:ec:5c:af: 84:f6:2c:0a:a5:ee:d9:19:99:e6:00:d1:06:d2:56: 98:90:d9:e2:3b:6b:43:e8:9e:ae:91:6f:be:b3:67: 83:c6:70:9f:85:9e:ac:7c:60:7d:b5:92:a6:ad:01: 06:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3C:A4:C3:69:F7:C8:A3:F4:92:13:AF:27:5A:42:AD:EC:F1:26:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:60:18:bf:62:d1:61:19:35:6f:b9:f6:f4:0c:3f:6e:b9:0f: 55:d5:51:38:f6:22:2a:3b:91:ac:3e:00:c7:92:a4:91:a0:ac: 20:f5:a9:7f:d8:ac:5e:6f:97:c3:ac:d7:1b:a0:51:98:82:09: 29:9c:34:44:d0:7f:bb:83:ef:7d:10:25:2a:d8:32:fd:fc:52: b1:ae:cc:11:bd:85:91:3b:8d:57:4f:72:29:ef:ed:5d:51:30: 92:b2:1c:70:74:89:d6:93:12:98:7d:23:b5:43:4a:87:53:5c: e4:12:f9:35:56:87:95:6a:19:2f:1b:9b:48:c8:a2:20:ce:af: cf:16:b1:31:d3:2b:a9:84:65:ac:b5:2f:d7:ee:82:7b:b9:79: e8:3b:2f:dd:a3:3e:b0:bc:fd:52:c4:6a:e7:ff:3e:ba:2e:80: 50:80:a3:60:db:fc:08:90:ae:f4:be:fe:6a:2c:8c:4c:a6:bd: 27:8c:60:a2:18:6d:45:66:14:3b:5e:77:74:a1:54:58:c1:1a: 6c:0d:05:21:a1:f4:ad:ff:cd:2b:8a:47:52:66:8c:d9:2a:9e: bf:94:f6:ff:fa:bd:9c:0d:76:92:57:ed:df:5b:9c:15:12:d6: aa:d2:15:89:10:90:58:c0:03:29:76:ba:1b:ce:81:16:3b:52: 37:9b:8b:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJIxCmgyKcaHYB32CpMi5pOq/9oMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MTIwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDc4YWM2NjIyNWVmZWEwY2NhMmNiYjgwMmI4YTExZmU1 OTlmNDg5ZmI1YjJhMmFlNjczZDQ3OGQ2MWRjYzkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFnNRVbgEdYKBi872/u+tej0k6Kl5Nx3BglUPPqJspqZa8 6b7GsZmlkTnSuof53T9KLF660UwDcf1XcCwY/i8eIwNJUZBg6v4WcDtzj+RNszM2 hpeztzqHAknemd23yz3v9UJO93WNmmZACE944ek7cjVPXotnqrF8Qzt7FG3bCh1W KrJh30suWeJYxqEIXYZXXRJ+Doy37C1l1PUQYWMHRjkk2ZNDNBKv7K2EIQSxU1k9 1LsecQT+G0YXE9e5RP0ax9ZCLG2HbPRCeqcmcuxcr4T2LAql7tkZmeYA0QbSVpiQ 2eI7a0Ponq6Rb76zZ4PGcJ+Fnqx8YH21kqatAQbhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlzykw2n3yKP0khOvJ1pCrezxJicwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5MmNmODRkLTUzNmMtNDIxMy04NmM4LWM5N2ZkYjQyMDlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAYmAYv2LRYRk1b7n29Aw/brkPVdVR OPYiKjuRrD4Ax5KkkaCsIPWpf9isXm+Xw6zXG6BRmIIJKZw0RNB/u4PvfRAlKtgy /fxSsa7MEb2FkTuNV09yKe/tXVEwkrIccHSJ1pMSmH0jtUNKh1Nc5BL5NVaHlWoZ LxubSMiiIM6vzxaxMdMrqYRlrLUv1+6Ce7l56Dsv3aM+sLz9UsRq5/8+ui6AUICj YNv8CJCu9L7+aiyMTKa9J4xgohhtRWYUO153dKFUWMEabA0FIaH0rf/NK4pHUmaM 2Sqev5T2//q9nA12klft31ucFRLWqtIViRCQWMADKXa6G86BFjtSN5uLRQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:09 2025 by rpki-client