$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9a6d2b4-6eb6-4846-9180-7b5ff8440cf0.roa File: d9a6d2b4-6eb6-4846-9180-7b5ff8440cf0.roa (raw, json) Hash identifier: VBF2wMgtc/7jBCyldqKzjgz+ETulcYxUuAekg0yh8g8= Subject key identifier: 36:A1:94:03:B1:C2:CC:51:27:A0:81:96:61:E2:78:45:0E:9C:73:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1053FD74D76A0388CA5643B7E39242639B79F238 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9a6d2b4-6eb6-4846-9180-7b5ff8440cf0.roa Signing time: Tue 22 Apr 2025 00:01:25 +0000 ROA not before: Tue 22 Apr 2025 00:01:25 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:53:fd:74:d7:6a:03:88:ca:56:43:b7:e3:92:42:63:9b:79:f2:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:01:25 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=9ea72abc2a225482270996e0d3de91889fc7f80f46217f406bda40b672973e92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:56:61:2e:9e:f2:c6:f0:8c:3b:02:77:02: e5:77:96:b9:10:5e:ef:63:0a:9e:4e:58:63:62:37: a1:8f:91:a2:2e:e0:08:ae:bc:a0:f4:2c:26:3a:c6: 20:04:0d:9e:1c:73:92:99:4a:8a:01:2b:17:4b:69: a1:23:e9:0a:0f:20:23:c9:ce:22:33:68:b2:b8:9f: 3c:c1:94:5a:0f:60:4b:77:71:2e:37:41:79:5e:da: 30:06:24:16:1d:8b:a0:ba:f1:0e:46:67:36:a8:47: 36:c2:84:73:5f:a9:4d:c4:45:6a:e0:9b:cf:7b:31: e6:31:a2:17:de:ea:b2:3a:6b:35:68:3c:93:65:f5: 2d:ea:eb:d7:19:f4:7a:43:0e:4c:40:6b:2d:86:4a: 45:d0:0f:37:81:62:61:e2:6e:29:b0:60:b0:58:89: 54:6f:26:98:fc:a2:90:cf:3b:9e:ff:c5:dd:32:4c: f3:7c:a9:f0:57:df:b5:5d:ef:d4:ab:eb:ff:35:bc: 27:ed:cf:bc:f5:45:ee:54:43:b2:f9:e2:90:52:6e: 1a:1a:cb:9b:58:c2:47:21:56:34:56:91:48:a4:f9: d8:15:78:99:af:af:b2:9f:bd:20:49:cb:ef:8f:66: e6:59:ac:cb:ba:4c:22:d3:d0:89:b1:e1:97:5e:49: 42:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A1:94:03:B1:C2:CC:51:27:A0:81:96:61:E2:78:45:0E:9C:73:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9a6d2b4-6eb6-4846-9180-7b5ff8440cf0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.88.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:73:87:2a:54:d6:de:d3:d0:71:f5:fd:ca:00:a1:89:4c:8d: 2c:2a:ef:34:ac:8d:64:8c:a3:45:43:39:cd:e8:96:d8:75:d3: 32:05:33:2b:8f:96:06:d3:ed:5e:89:33:0c:66:8b:47:23:9e: 67:c4:5e:aa:ff:d0:8a:04:e1:f6:c7:83:d9:ad:a2:62:da:69: 78:02:b2:80:42:35:32:f3:48:88:b8:df:06:98:e1:df:34:83: f6:69:68:cc:bc:fd:18:51:9d:ec:32:91:51:a2:7b:42:00:fa: bf:be:57:ee:35:b1:18:e7:71:29:74:16:e3:3a:00:0d:f9:0e: 61:97:84:1a:4f:b3:df:5c:24:f2:2a:4d:8e:82:58:28:26:8d: 6b:8b:51:78:3a:fa:ea:6f:88:af:b9:e8:6e:cd:25:b8:8d:b3: 2b:6e:4b:77:ed:cd:57:86:3e:57:b2:7d:4d:9a:46:83:f2:b2: bc:6c:42:01:6c:b3:0c:b6:59:53:9b:33:0a:d2:ab:ac:16:2f: 7f:16:75:68:dd:25:39:9e:a8:79:85:05:fb:8f:75:fd:5a:5b: ac:00:fd:70:50:8a:3a:62:97:45:9a:1c:67:c1:0d:ef:5e:7b: 0f:f8:9c:d9:9d:19:f1:8e:28:70:63:32:bd:22:30:43:ec:0a: 62:0f:2c:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEFP9dNdqA4jKVkO345JCY5t58jgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMTI1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWE3MmFiYzJhMjI1NDgyMjcwOTk2ZTBkM2RlOTE4ODlm YzdmODBmNDYyMTdmNDA2YmRhNDBiNjcyOTczZTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5bVZhLp7yxvCMOwJ3AuV3lrkQXu9jCp5OWGNiN6GPkaIu 4AiuvKD0LCY6xiAEDZ4cc5KZSooBKxdLaaEj6QoPICPJziIzaLK4nzzBlFoPYEt3 cS43QXle2jAGJBYdi6C68Q5GZzaoRzbChHNfqU3ERWrgm897MeYxohfe6rI6azVo PJNl9S3q69cZ9HpDDkxAay2GSkXQDzeBYmHibimwYLBYiVRvJpj8opDPO57/xd0y TPN8qfBX37Vd79Sr6/81vCftz7z1Re5UQ7L54pBSbhoay5tYwkchVjRWkUik+dgV eJmvr7KfvSBJy++PZuZZrMu6TCLT0Imx4ZdeSUJ5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNqGUA7HCzFEnoIGWYeJ4RQ6cc3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5YTZkMmI0LTZlYjYtNDg0Ni05MTgwLTdiNWZmODQ0MGNmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBslgwDQYJKoZIhvcNAQELBQADggEBAE9zhypU1t7T0HH1/coAoYlMjSwq 7zSsjWSMo0VDOc3olth10zIFMyuPlgbT7V6JMwxmi0cjnmfEXqr/0IoE4fbHg9mt omLaaXgCsoBCNTLzSIi43waY4d80g/ZpaMy8/RhRnewykVGie0IA+r++V+41sRjn cSl0FuM6AA35DmGXhBpPs99cJPIqTY6CWCgmjWuLUXg6+upviK+56G7NJbiNsytu S3ftzVeGPleyfU2aRoPysrxsQgFsswy2WVObMwrSq6wWL38WdWjdJTmeqHmFBfuP df1aW6wA/XBQijpil0WaHGfBDe9eew/4nNmdGfGOKHBjMr0iMEPsCmIPLDM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:29 2025 by rpki-client