$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa File: dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa (raw, json) Hash identifier: WTZ28foHiHlGHQ4OeZYvLzWtkMnvtUwoEbD7Nsht58o= Subject key identifier: F8:96:84:04:6B:4F:61:A3:D0:D9:7C:33:20:25:26:BD:D9:3E:34:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37798234104D139E31FF13A63C5D7341FD9C0B2A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa Signing time: Tue 08 Apr 2025 00:41:18 +0000 ROA not before: Tue 08 Apr 2025 00:41:18 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:79:82:34:10:4d:13:9e:31:ff:13:a6:3c:5d:73:41:fd:9c:0b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:41:18 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=531576456ffa7d2cf9bcc2728f453483838bc02e6ac3ddd7e937ed4c32595342, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:26:ca:f6:90:16:99:0d:75:44:07:85:32:aa: 8f:87:07:36:26:4d:4b:c3:f8:87:e5:0f:fb:23:cb: dd:ba:af:a6:1e:90:ad:b5:42:4d:6d:e5:c2:b8:6a: 4f:bd:de:3c:ab:f1:59:60:7d:e9:26:07:ab:64:7e: 28:f8:c9:0b:57:8e:59:85:ba:5e:39:d0:86:bb:4a: d0:45:06:f2:a8:e1:f6:e3:b1:c0:9a:53:64:95:67: c1:9e:e6:11:ab:b3:9b:3e:69:bb:23:5f:f2:5b:4f: 48:14:f7:59:a9:71:3a:fd:e8:37:45:9f:9d:49:39: db:25:91:d2:96:96:1c:28:04:1e:76:af:4b:1c:6e: 1a:eb:96:7e:02:73:30:f8:a8:8d:30:cc:5d:6e:ae: ec:fd:d1:72:bf:55:53:f7:ea:35:ed:f5:f4:16:6c: 11:30:bc:04:02:35:d9:a4:32:51:2b:f2:4c:98:39: 5b:b2:43:c7:c7:f9:6c:34:7b:2d:6e:61:a3:17:63: 28:23:5a:e9:62:ff:16:49:91:6e:fe:28:6c:e7:6e: 2b:0f:a9:c1:f6:12:6e:62:7c:ac:5d:a8:49:b9:60: 8f:ff:d6:65:67:ca:90:79:aa:a6:21:d1:8c:c1:42: 18:ba:07:6f:a7:b0:0a:ef:0f:e2:2e:62:03:6c:5b: 9a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:96:84:04:6B:4F:61:A3:D0:D9:7C:33:20:25:26:BD:D9:3E:34:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.80.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:d4:d9:a8:06:b8:c4:61:6d:d9:81:56:67:ea:d7:44:cd:c4: 5e:42:66:b6:73:b2:60:2a:c0:e5:60:eb:a5:1c:fc:38:f9:76: 92:58:10:ce:61:c2:33:d4:b8:31:a9:c1:a5:43:d3:a3:3c:09: 58:24:96:13:a4:78:4c:cd:13:88:b6:55:7c:d9:a8:0c:c6:b5: 43:b7:7e:18:e0:fa:00:77:4e:1b:10:6e:8a:d9:ca:49:12:ed: 00:7c:cc:dc:e0:72:86:63:dc:9f:1b:17:5d:db:0b:1c:67:32: cc:b2:72:0c:88:75:cf:8e:15:c2:78:e0:3b:c1:47:c7:69:57: 93:2a:8b:9d:cb:b9:ae:82:0a:b8:64:2b:2b:97:f0:0e:e8:d9: 2c:2b:10:e9:bb:c8:6c:f5:7a:84:55:c4:56:0d:68:ee:41:5b: b2:45:00:3c:11:f6:4b:bc:1f:5f:a6:7d:40:d3:75:7d:58:2a: c6:a0:17:c9:fa:7c:71:8d:c0:23:09:9f:c1:be:cf:73:c0:cc: dd:b6:61:98:20:32:4f:32:84:7c:6b:08:f0:64:f3:f4:19:21: f0:bb:a5:b5:2b:e4:0d:7c:e9:5e:0d:58:02:19:4a:75:68:ed: 54:80:c3:b8:f6:bb:99:7b:37:46:85:e0:8e:24:61:4f:4d:39: b9:f4:d5:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN3mCNBBNE54x/xOmPF1zQf2cCyowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA0MTE4WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzE1NzY0NTZmZmE3ZDJjZjliY2MyNzI4ZjQ1MzQ4Mzgz OGJjMDJlNmFjM2RkZDdlOTM3ZWQ0YzMyNTk1MzQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLJsr2kBaZDXVEB4Uyqo+HBzYmTUvD+IflD/sjy926r6Ye kK21Qk1t5cK4ak+93jyr8VlgfekmB6tkfij4yQtXjlmFul450Ia7StBFBvKo4fbj scCaU2SVZ8Ge5hGrs5s+absjX/JbT0gU91mpcTr96DdFn51JOdslkdKWlhwoBB52 r0scbhrrln4CczD4qI0wzF1uruz90XK/VVP36jXt9fQWbBEwvAQCNdmkMlEr8kyY OVuyQ8fH+Ww0ey1uYaMXYygjWuli/xZJkW7+KGznbisPqcH2Em5ifKxdqEm5YI// 1mVnypB5qqYh0YzBQhi6B2+nsArvD+IuYgNsW5oHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+JaEBGtPYaPQ2XwzICUmvdk+NKUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlYTI2MmQwLWU3ZTMtNGJlNC05ZjNkLWUxMmUxYmJjZDg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6FAwDQYJKoZIhvcNAQELBQADggEBAH7U2agGuMRhbdmBVmfq10TNxF5C ZrZzsmAqwOVg66Uc/Dj5dpJYEM5hwjPUuDGpwaVD06M8CVgklhOkeEzNE4i2VXzZ qAzGtUO3fhjg+gB3ThsQborZykkS7QB8zNzgcoZj3J8bF13bCxxnMsyycgyIdc+O FcJ44DvBR8dpV5Mqi53Lua6CCrhkKyuX8A7o2SwrEOm7yGz1eoRVxFYNaO5BW7JF ADwR9ku8H1+mfUDTdX1YKsagF8n6fHGNwCMJn8G+z3PAzN22YZggMk8yhHxrCPBk 8/QZIfC7pbUr5A186V4NWAIZSnVo7VSAw7j2u5l7N0aF4I4kYU9NObn01R0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:49:26 2025 by rpki-client