$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa File: e968971f-95ed-4299-906a-f72c00ea6e69.roa (raw, json) Hash identifier: zmdlLXyCL+z2WVMCtU0rynIxN75GXC0xNRZsMPdeUOw= Subject key identifier: 32:F9:0E:73:52:97:E0:54:8B:45:DD:62:42:C9:6F:C4:84:16:6D:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D6AB759B16ABE6E4123BA54DF2100FC8C7C6F92 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa Signing time: Fri 04 Apr 2025 00:00:26 +0000 ROA not before: Fri 04 Apr 2025 00:00:26 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6a:b7:59:b1:6a:be:6e:41:23:ba:54:df:21:00:fc:8c:7c:6f:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:00:26 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=758320d3d7a40dd9ddbec5320c0a0fca28efc0d90f5b8552e903fcc9467b0414, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:62:58:6c:f9:15:65:2d:55:0b:f7:af:97:b4: 64:1e:05:24:91:e4:59:95:fe:78:9e:94:64:57:eb: aa:49:0b:7e:34:a5:d6:43:f0:dc:ae:97:9b:a7:89: f5:25:64:ca:9c:97:31:dc:32:03:91:45:b7:4a:69: 38:bc:5e:e9:25:a2:7f:e8:58:31:e0:2c:71:98:8f: ff:9f:60:dc:b5:24:c4:26:8a:98:7f:0b:ac:4b:36: 8c:8a:d8:00:ea:42:5c:fb:30:0e:e2:cb:8d:68:f7: 18:8d:96:4f:9e:2b:69:4d:b1:b5:04:28:ed:57:42: 16:2f:f0:ab:bf:3c:31:47:82:85:f2:69:97:7e:dd: ad:63:70:73:49:80:66:6f:e5:a5:09:47:0a:b9:fe: da:fc:68:c8:f9:5a:d5:27:ce:ea:3d:7d:29:5b:0a: 1c:63:3a:a3:18:a1:af:70:04:43:4b:12:61:bf:f0: 93:f8:de:75:9d:97:95:06:39:8a:61:52:3b:d7:04: c0:38:46:99:ed:b7:df:2f:e2:84:bf:d9:4e:c9:f5: 42:20:17:4a:82:0b:23:7f:6a:9d:61:b6:b1:e2:ed: e9:18:05:5a:1f:d3:f6:ed:ef:22:47:44:29:e9:0a: e1:5b:9b:16:d9:ea:67:ec:fb:11:02:ab:15:e0:71: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F9:0E:73:52:97:E0:54:8B:45:DD:62:42:C9:6F:C4:84:16:6D:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.64.0/18 Signature Algorithm: sha256WithRSAEncryption d3:02:f6:2d:c7:f0:37:bb:ff:63:d6:2f:25:01:be:06:b7:9c: f9:eb:5f:d4:1c:e8:62:10:74:31:9b:cc:a1:ef:2b:7f:50:a4: 60:e7:a9:fa:cc:45:07:35:1e:1e:e7:81:4d:63:96:2f:cb:7d: 7b:1f:00:2a:ce:53:07:1b:95:6b:79:ac:05:02:c9:f6:91:72: f7:a3:fd:6d:cc:5a:92:dd:ba:f2:5a:81:60:0c:26:f5:41:c9: 3e:58:c3:31:0c:4f:d2:71:12:5e:c3:01:04:8f:9e:5c:c3:2f: 0d:0b:d2:bf:33:88:b0:27:e4:75:a4:79:8d:28:3d:a3:5f:be: 4e:0d:79:43:d7:10:6d:d2:e3:05:e8:6a:35:4a:ad:c5:e0:d1: 6b:e3:fb:c8:19:c0:56:a9:9a:38:ac:9d:24:3c:29:34:9d:68: d9:a2:65:2c:f5:7a:ba:f2:bc:6c:17:92:3e:64:4c:5b:19:09: 6e:b1:cf:07:12:1e:8a:35:28:eb:cb:78:64:66:60:76:53:c1: 89:3d:08:f6:3f:5f:27:dc:23:e4:1f:6e:db:c9:ba:cb:85:9e: 64:39:38:ae:b8:95:63:14:ea:24:de:31:7c:5c:38:82:74:89: a5:19:d5:67:e5:d1:7e:3d:8e:64:7c:0c:95:56:86:7e:61:3f: 0a:8a:29:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPWq3WbFqvm5BI7pU3yEA/Ix8b5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMDI2WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTgzMjBkM2Q3YTQwZGQ5ZGRiZWM1MzIwYzBhMGZjYTI4 ZWZjMGQ5MGY1Yjg1NTJlOTAzZmNjOTQ2N2IwNDE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJYlhs+RVlLVUL96+XtGQeBSSR5FmV/nielGRX66pJC340 pdZD8Nyul5unifUlZMqclzHcMgORRbdKaTi8Xuklon/oWDHgLHGYj/+fYNy1JMQm iph/C6xLNoyK2ADqQlz7MA7iy41o9xiNlk+eK2lNsbUEKO1XQhYv8Ku/PDFHgoXy aZd+3a1jcHNJgGZv5aUJRwq5/tr8aMj5WtUnzuo9fSlbChxjOqMYoa9wBENLEmG/ 8JP43nWdl5UGOYphUjvXBMA4Rpntt98v4oS/2U7J9UIgF0qCCyN/ap1htrHi7ekY BVof0/bt7yJHRCnpCuFbmxbZ6mfs+xECqxXgcQp/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMvkOc1KX4FSLRd1iQslvxIQWbX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5Njg5NzFmLTk1ZWQtNDI5OS05MDZhLWY3MmMwMGVhNmU2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5EAwDQYJKoZIhvcNAQELBQADggEBANMC9i3H8De7/2PWLyUBvga3nPnr X9Qc6GIQdDGbzKHvK39QpGDnqfrMRQc1Hh7ngU1jli/LfXsfACrOUwcblWt5rAUC yfaRcvej/W3MWpLduvJagWAMJvVByT5YwzEMT9JxEl7DAQSPnlzDLw0L0r8ziLAn 5HWkeY0oPaNfvk4NeUPXEG3S4wXoajVKrcXg0Wvj+8gZwFapmjisnSQ8KTSdaNmi ZSz1erryvGwXkj5kTFsZCW6xzwcSHoo1KOvLeGRmYHZTwYk9CPY/XyfcI+QfbtvJ usuFnmQ5OK64lWMU6iTeMXxcOIJ0iaUZ1Wfl0X49jmR8DJVWhn5hPwqKKUI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:14:39 2025 by rpki-client