$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json) Hash identifier: 3QdRMZ2+Q7O/n37A2YVGe1vH8TpbMo38p0VWdHkeQ+E= Subject key identifier: 06:38:96:3C:4A:C8:8F:F6:AE:D1:DE:49:BF:3D:DD:5D:88:08:48:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 567B140BAD37827EE5BCE23AE50832FDC27990AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa Signing time: Fri 04 Apr 2025 00:11:53 +0000 ROA not before: Fri 04 Apr 2025 00:11:53 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:7b:14:0b:ad:37:82:7e:e5:bc:e2:3a:e5:08:32:fd:c2:79:90:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:53 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=2440ba4396bbd1f81102ba2fdd4dee9b05e016a0a9e7029ff1755ccff363eb09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:21:b2:ab:d5:48:b0:27:c0:0d:11:ac:53:cd: 7e:96:33:43:dc:cc:7d:e9:66:b6:f3:01:52:7b:b4: fd:d8:12:1c:32:7e:e7:1e:c1:df:2b:69:bc:d3:27: 9a:04:58:87:67:99:47:65:e7:02:d1:ae:8b:b8:8a: 50:26:3f:83:22:f9:ca:bc:27:f4:66:36:b3:46:45: ff:cc:02:7d:39:ee:12:0b:11:03:ba:c1:75:31:c1: a9:90:66:f9:ff:63:a0:0a:f7:18:eb:cf:e2:d3:75: 96:ab:33:95:aa:ee:97:f4:bd:7b:93:ac:d0:8e:a5: 25:46:68:b3:41:00:a4:34:d5:34:2d:5c:35:24:c8: ae:94:63:da:32:74:65:7d:58:3b:d7:f3:53:ad:04: 6d:cc:d3:d1:6c:4c:46:09:73:33:ad:03:cc:21:8a: 65:f6:c7:c6:05:b6:07:57:c0:71:a2:c4:37:67:a7: 36:59:a4:61:65:df:a5:6a:a9:65:6b:01:51:ef:29: 71:12:cc:a0:c6:68:37:b0:ee:fe:f1:42:d6:18:c9: f5:7c:2b:be:f3:1e:74:4a:d6:80:73:37:b1:bf:d0: 6a:bb:28:79:fb:99:ee:91:90:f5:97:0a:df:1b:c9: eb:b3:a7:dc:ee:41:07:59:d0:74:6c:a0:4b:32:55: a5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:38:96:3C:4A:C8:8F:F6:AE:D1:DE:49:BF:3D:DD:5D:88:08:48:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption 56:50:6b:48:30:38:38:74:9e:1e:e3:a6:e7:86:ac:9c:12:4b: 42:10:d5:f9:35:d9:3e:b2:70:91:81:3e:bf:c9:7e:91:66:31: 6a:87:54:6e:70:d2:b4:bd:d5:09:48:c2:4b:d8:88:c1:43:96: 47:47:0f:93:c3:8e:bf:b9:d6:f8:d9:e1:b5:eb:62:9b:5b:c0: 9a:9a:3a:7e:67:de:99:3c:f7:62:ee:5c:2f:40:32:08:54:0c: cb:0c:6c:e3:c1:20:89:35:b4:9b:0b:42:12:cf:1f:57:24:cf: 59:08:8b:20:f2:69:b4:9c:11:6c:c7:b0:76:31:e8:de:d1:13: 26:59:a6:16:c9:94:98:03:f2:76:be:2b:43:5b:bf:be:7c:76: d3:e9:9a:13:5d:f9:11:a9:33:c0:97:95:56:d2:47:dd:e0:87: 05:ef:2f:b6:a1:90:29:26:88:bc:ee:ac:c3:16:04:37:6a:9d: c8:53:90:62:3a:f5:86:39:9a:74:57:26:fa:e2:80:ea:43:61: b4:4b:1b:61:5f:dc:a4:75:5c:63:04:0a:f6:2c:f8:a2:94:0b: 9d:6a:8c:14:10:d5:df:aa:08:ec:7f:76:5e:2d:99:54:38:b7: ef:fb:a0:48:2d:82:94:26:54:cc:67:b5:ef:d7:97:93:c8:77: 6b:d4:f6:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVnsUC603gn7lvOI65Qgy/cJ5kKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTUzWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDQwYmE0Mzk2YmJkMWY4MTEwMmJhMmZkZDRkZWU5YjA1 ZTAxNmEwYTllNzAyOWZmMTc1NWNjZmYzNjNlYjA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3IbKr1UiwJ8ANEaxTzX6WM0PczH3pZrbzAVJ7tP3YEhwy fucewd8rabzTJ5oEWIdnmUdl5wLRrou4ilAmP4Mi+cq8J/RmNrNGRf/MAn057hIL EQO6wXUxwamQZvn/Y6AK9xjrz+LTdZarM5Wq7pf0vXuTrNCOpSVGaLNBAKQ01TQt XDUkyK6UY9oydGV9WDvX81OtBG3M09FsTEYJczOtA8whimX2x8YFtgdXwHGixDdn pzZZpGFl36VqqWVrAVHvKXESzKDGaDew7v7xQtYYyfV8K77zHnRK1oBzN7G/0Gq7 KHn7me6RkPWXCt8byeuzp9zuQQdZ0HRsoEsyVaWbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBjiWPErIj/au0d5Jvz3dXYgISPgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5OTgwMWViLTJhZDYtNDhlYS04ODI3LTBmMmFkYTA3YjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKTANBgkqhkiG9w0BAQsFAAOCAQEAVlBrSDA4OHSeHuOm54asnBJLQhDV +TXZPrJwkYE+v8l+kWYxaodUbnDStL3VCUjCS9iIwUOWR0cPk8OOv7nW+Nnhteti m1vAmpo6fmfemTz3Yu5cL0AyCFQMywxs48EgiTW0mwtCEs8fVyTPWQiLIPJptJwR bMewdjHo3tETJlmmFsmUmAPydr4rQ1u/vnx20+maE135EakzwJeVVtJH3eCHBe8v tqGQKSaIvO6swxYEN2qdyFOQYjr1hjmadFcm+uKA6kNhtEsbYV/cpHVcYwQK9iz4 opQLnWqMFBDV36oI7H92Xi2ZVDi37/ugSC2ClCZUzGe179eXk8h3a9T2jg== -----END CERTIFICATE-----Generated at Sat Apr 26 23:00:45 2025 by rpki-client