$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa File: e00517b8-99d8-4957-a0d5-9380af850fc2.roa (raw, json) Hash identifier: dcYk7ZyWVrwyp0GhyM2ObkWCn3tCPfNHKa2Z9Xw3+3A= Subject key identifier: 19:92:1E:C1:37:0F:F9:24:6F:B4:05:02:79:72:8F:47:0C:15:76:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02192CBF2C15EAB07DB4DC81E50AD635EE898E99 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa Signing time: Tue 15 Apr 2025 00:20:31 +0000 ROA not before: Tue 15 Apr 2025 00:20:31 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:19:2c:bf:2c:15:ea:b0:7d:b4:dc:81:e5:0a:d6:35:ee:89:8e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:20:31 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=d352c0fbafade3cbddaddebbb3aa115dd28f9dfebeb217df62b8b8d38bfd45c7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f5:ad:03:86:4f:5a:5a:b7:35:31:e4:4a:10: c6:58:60:61:0c:4d:9d:6b:e4:69:b7:d7:3e:ee:7f: 0d:d8:88:e7:81:c0:9c:bd:55:81:76:88:9d:d1:e3: 80:1f:56:0b:e0:ae:88:2a:bf:7b:74:7e:b9:5a:bc: 1f:d4:9e:df:52:91:f2:3b:4c:98:90:28:e5:17:fc: e8:33:74:86:e0:d5:01:48:9d:e8:3e:9a:5f:f6:52: ac:32:07:20:d1:0f:c4:41:24:0f:1c:01:51:4c:7d: 00:a6:7b:17:23:f4:bc:a9:0e:bb:03:b0:e7:62:15: 78:38:cd:05:57:33:bd:d3:c6:6d:78:97:b6:cc:50: 82:25:a7:4a:1c:58:cc:d6:37:77:b3:28:10:95:12: c6:a3:fd:2b:b8:29:d4:9f:1e:22:3b:7b:03:88:35: 0c:5a:5b:fc:64:c4:55:2e:2a:94:9f:e1:47:0f:17: 4c:7c:7c:8c:d3:25:28:a4:71:fb:b8:ab:6a:ef:92: 50:2d:e0:c6:7f:76:c2:61:21:94:bf:13:84:46:cb: a9:f2:a6:82:1c:e1:c4:9b:ea:91:4c:7d:59:fd:0e: ab:f3:b9:fc:07:06:58:f6:e3:89:57:db:5b:ae:c3: 21:02:7d:bd:d2:6a:1d:cb:c8:a4:e3:10:66:04:4e: 59:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:92:1E:C1:37:0F:F9:24:6F:B4:05:02:79:72:8F:47:0C:15:76:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption d0:ca:19:e9:98:fe:87:33:c4:40:9c:a4:71:2e:ce:4a:09:5b: 9c:e3:28:ba:2e:9d:5e:0d:8c:d7:28:b3:0f:13:78:09:df:88: 16:14:d7:60:f1:e0:88:d1:28:b2:76:fd:15:18:ea:89:0c:06: 23:5f:ed:31:f7:1f:c0:51:1f:7a:9e:f2:c3:98:c8:e7:17:a1: 54:0a:e5:9f:d8:cb:25:34:f0:30:96:5e:e7:07:62:b6:3f:21: 3a:14:c4:29:5f:73:0c:74:c8:94:0d:43:e3:42:39:dd:9d:39: 56:98:d0:50:91:04:bc:d9:b7:7d:58:e2:6a:99:b4:b1:80:e1: 17:7e:15:21:54:ed:22:55:76:6d:58:39:35:2e:5c:e4:d1:b9: e6:95:67:a9:19:3d:e7:58:80:35:45:08:ca:cc:5f:3e:96:ad: 12:8c:d7:b0:31:15:b5:54:bd:3e:39:e1:62:01:5d:51:93:de: 21:9a:63:8c:52:96:79:d2:47:a3:25:9b:6e:02:d2:2e:2d:93: d7:2a:bb:9d:01:ae:31:57:35:32:43:92:f6:12:1a:73:ff:ae: c7:02:3f:3e:d8:c4:94:cb:37:b0:ed:a5:cd:2f:17:c2:10:2f: e9:b6:15:b1:92:a8:ed:4d:7e:de:4d:f2:be:2b:64:74:ab:de: fd:fb:bc:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAhksvywV6rB9tNyB5QrWNe6JjpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAyMDMxWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzUyYzBmYmFmYWRlM2NiZGRhZGRlYmJiM2FhMTE1ZGQy OGY5ZGZlYmViMjE3ZGY2MmI4YjhkMzhiZmQ0NWM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj9a0Dhk9aWrc1MeRKEMZYYGEMTZ1r5Gm31z7ufw3YiOeB wJy9VYF2iJ3R44AfVgvgrogqv3t0frlavB/Unt9SkfI7TJiQKOUX/OgzdIbg1QFI neg+ml/2UqwyByDRD8RBJA8cAVFMfQCmexcj9LypDrsDsOdiFXg4zQVXM73Txm14 l7bMUIIlp0ocWMzWN3ezKBCVEsaj/Su4KdSfHiI7ewOINQxaW/xkxFUuKpSf4UcP F0x8fIzTJSikcfu4q2rvklAt4MZ/dsJhIZS/E4RGy6nypoIc4cSb6pFMfVn9Dqvz ufwHBlj244lX21uuwyECfb3Sah3LyKTjEGYETlk3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGZIewTcP+SRvtAUCeXKPRwwVdtQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwMDUxN2I4LTk5ZDgtNDk1Ny1hMGQ1LTkzODBhZjg1MGZjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBANDKGemY/oczxECcpHEuzkoJW5zj KLounV4NjNcosw8TeAnfiBYU12Dx4IjRKLJ2/RUY6okMBiNf7TH3H8BRH3qe8sOY yOcXoVQK5Z/YyyU08DCWXucHYrY/IToUxClfcwx0yJQNQ+NCOd2dOVaY0FCRBLzZ t31Y4mqZtLGA4Rd+FSFU7SJVdm1YOTUuXOTRueaVZ6kZPedYgDVFCMrMXz6WrRKM 17AxFbVUvT454WIBXVGT3iGaY4xSlnnSR6Mlm24C0i4tk9cqu50BrjFXNTJDkvYS GnP/rscCPz7YxJTLN7Dtpc0vF8IQL+m2FbGSqO1Nft5N8r4rZHSr3v37vGk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:18 2025 by rpki-client