$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa File: da94c098-b098-48ba-b22f-f15736f15d14.roa (raw, json) Hash identifier: bub3wBb2VzlPtZXFdBxiV8ZxpKXpRmoL4Bpk3pXVhoQ= Subject key identifier: A5:CD:E2:37:3E:0B:E6:C1:B8:E8:3B:92:BD:12:2D:A9:D1:1C:55:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 135F0AF9C9B2E6488447815B699D919857CEE62E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa Signing time: Tue 22 Apr 2025 15:00:20 +0000 ROA not before: Tue 22 Apr 2025 15:00:20 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5f:0a:f9:c9:b2:e6:48:84:47:81:5b:69:9d:91:98:57:ce:e6:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:00:20 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=71e224c019e697c8a08438ee3a5d7e0d2c8bc124d7964c7c056c63f48b1c626e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:eb:26:df:21:83:4f:d6:1e:17:9b:96:5a: d7:2e:1c:40:3a:12:10:76:35:92:32:6f:f4:85:45: 17:41:80:42:73:fd:2d:34:31:f0:9e:5f:ea:cc:74: fb:1f:77:c3:ce:c0:01:ed:dd:f1:37:45:70:7b:4f: 46:42:df:dc:41:72:a5:cc:a5:bb:a9:38:49:ce:c2: 37:80:a3:6c:d5:8f:fe:7f:fe:df:8b:1b:41:a8:2a: ce:44:ef:8b:41:dc:63:7d:00:1d:01:fa:a3:aa:fe: 4b:31:dc:a8:2a:38:2f:9c:a6:53:47:39:c7:27:69: b0:d0:2e:6e:8f:96:40:24:68:81:8d:9f:29:b9:ef: 40:bb:94:9e:7d:b3:0d:3c:4d:e8:52:0f:b6:21:8f: 4f:cb:29:f6:0a:b8:9c:3e:0a:45:c2:fe:80:1a:b0: 0c:aa:7b:00:be:c6:52:75:af:e0:56:fc:45:5f:2f: 7e:cf:31:9c:81:f8:d7:8c:a3:79:d4:af:1d:56:4a: bf:69:d6:2a:1f:e3:70:3a:a5:30:8d:3b:c2:f6:bd: ca:df:b1:22:e9:40:f6:46:6a:ac:6b:57:b5:81:c6: f3:aa:b7:54:70:98:9c:75:4b:55:84:90:fa:c8:14: cb:24:fe:05:ee:f7:99:a9:4b:47:75:2f:24:e1:b2: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:CD:E2:37:3E:0B:E6:C1:B8:E8:3B:92:BD:12:2D:A9:D1:1C:55:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.100.0/22 Signature Algorithm: sha256WithRSAEncryption 02:b2:58:d4:67:87:f8:74:b9:14:5d:0c:40:93:f7:51:dd:a6: 18:0d:5f:4e:e7:46:5d:3e:26:d1:5e:4e:08:cb:b4:25:b9:8b: a7:38:35:83:6b:59:4b:8c:33:2e:64:99:14:74:97:c8:25:96: 2f:2f:d1:e3:a8:00:e9:36:1a:64:94:ea:de:8d:f5:63:f5:ab: 32:93:9f:82:4a:29:e9:04:5b:10:7b:98:c0:64:8b:68:ca:f0: 6d:7d:d0:9b:be:dc:c7:9c:83:fa:8c:60:7d:73:7c:96:98:4f: c4:e6:a8:7d:af:43:54:51:cb:32:d3:07:59:ee:4d:7a:36:56: 22:27:0a:25:44:40:8c:25:5c:e3:d7:50:27:30:e3:85:da:4e: 4b:97:52:7c:36:e2:6b:c1:df:ff:3c:6b:d3:83:06:c6:c6:9a: 2d:59:48:3d:f0:48:e0:6f:a1:a9:0d:40:93:af:08:fa:27:46: e3:1b:d3:63:fe:99:cf:c2:cf:9c:f0:9a:d2:40:ed:9c:97:db: 41:50:06:0f:11:37:0e:8f:4f:1d:0f:28:6e:ef:94:d7:34:1d: e8:ea:d0:76:98:44:b4:8d:10:14:a9:28:4c:01:d7:fd:62:0a: 11:4d:aa:65:32:af:e7:e1:e9:a0:6c:c6:13:18:1e:7c:d6:ae: 99:e2:0a:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE18K+cmy5kiER4FbaZ2RmFfO5i4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUwMDIwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWUyMjRjMDE5ZTY5N2M4YTA4NDM4ZWUzYTVkN2UwZDJj OGJjMTI0ZDc5NjRjN2MwNTZjNjNmNDhiMWM2MjZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39usm3yGDT9YeF5uWWtcuHEA6EhB2NZIyb/SFRRdBgEJz /S00MfCeX+rMdPsfd8POwAHt3fE3RXB7T0ZC39xBcqXMpbupOEnOwjeAo2zVj/5/ /t+LG0GoKs5E74tB3GN9AB0B+qOq/ksx3KgqOC+cplNHOccnabDQLm6PlkAkaIGN nym570C7lJ59sw08TehSD7Yhj0/LKfYKuJw+CkXC/oAasAyqewC+xlJ1r+BW/EVf L37PMZyB+NeMo3nUrx1WSr9p1iof43A6pTCNO8L2vcrfsSLpQPZGaqxrV7WBxvOq t1RwmJx1S1WEkPrIFMsk/gXu95mpS0d1LyThspQtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpc3iNz4L5sG46DuSvRItqdEcVVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhOTRjMDk4LWIwOTgtNDhiYS1iMjJmLWYxNTczNmYxNWQxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsmQwDQYJKoZIhvcNAQELBQADggEBAAKyWNRnh/h0uRRdDECT91HdphgN X07nRl0+JtFeTgjLtCW5i6c4NYNrWUuMMy5kmRR0l8glli8v0eOoAOk2GmSU6t6N 9WP1qzKTn4JKKekEWxB7mMBki2jK8G190Ju+3Mecg/qMYH1zfJaYT8TmqH2vQ1RR yzLTB1nuTXo2ViInCiVEQIwlXOPXUCcw44XaTkuXUnw24mvB3/88a9ODBsbGmi1Z SD3wSOBvoakNQJOvCPonRuMb02P+mc/Cz5zwmtJA7ZyX20FQBg8RNw6PTx0PKG7v lNc0Hejq0HaYRLSNEBSpKEwB1/1iChFNqmUyr+fh6aBsxhMYHnzWrpniCt0= -----END CERTIFICATE-----Generated at Sat Apr 26 19:12:33 2025 by rpki-client