$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec239bda-5a50-4b9d-afec-c178a10d8a78.roa File: ec239bda-5a50-4b9d-afec-c178a10d8a78.roa (raw, json) Hash identifier: FsIMMnDilRPH9laBpRla4HUnRc+WpcFStBJVcgYw2rI= Subject key identifier: F2:BF:FC:C0:1A:8B:2A:36:8B:A5:69:C7:FA:68:4B:10:56:7C:6E:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 068CE0F932F10E95B2F1B486734F51428C35205B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec239bda-5a50-4b9d-afec-c178a10d8a78.roa Signing time: Wed 23 Apr 2025 00:51:49 +0000 ROA not before: Wed 23 Apr 2025 00:51:49 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8c:e0:f9:32:f1:0e:95:b2:f1:b4:86:73:4f:51:42:8c:35:20:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:49 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=098f5b401b1f7c75ebbbf00ddefcb49d0a10c21730a7c6f8ec33bb5c88d517f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:89:ba:8c:89:39:d9:2d:18:c4:6d:f5:68:ff: 45:05:af:de:07:9e:3c:4f:34:42:77:fe:77:ba:69: 7d:cb:aa:7f:7c:3e:59:51:af:76:b4:41:1b:1f:f9: 48:13:1b:36:43:87:82:99:36:87:1e:45:11:51:2c: 14:ba:be:93:2e:49:69:92:bc:e1:11:a5:8a:d8:ee: d1:3e:a0:6e:9c:3d:20:fa:1b:db:28:46:e9:23:b0: de:fa:f5:8c:1a:a6:bb:40:78:93:9d:2b:64:85:d6: 3c:39:67:cd:7d:c5:bc:68:26:66:59:30:83:1d:78: ca:0a:51:5c:b8:ae:8b:25:20:fe:53:9f:b4:f2:b2: 50:c7:1e:52:14:b1:31:0f:5f:6b:64:cc:95:13:a4: 57:ea:bc:07:d8:11:7e:07:16:dc:0a:fd:be:e4:ab: 81:75:53:6e:2d:79:0f:b5:74:67:cc:5b:34:0a:be: 41:70:26:e8:06:ea:2e:99:34:8f:95:d3:69:c8:4b: ca:a7:3d:ad:b2:53:c5:9f:6b:19:ca:f9:03:ad:48: 80:b7:0b:44:ac:22:7e:4b:b5:8a:84:79:52:a9:ec: 78:38:e6:e1:92:f4:42:78:75:d9:99:04:30:48:82: b1:6a:74:df:54:6f:3d:04:59:dc:54:8f:15:21:27: 95:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BF:FC:C0:1A:8B:2A:36:8B:A5:69:C7:FA:68:4B:10:56:7C:6E:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec239bda-5a50-4b9d-afec-c178a10d8a78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.64.0/18 Signature Algorithm: sha256WithRSAEncryption c6:d1:01:3e:ca:09:f3:b9:9f:c9:9f:15:88:3d:88:d0:e5:b7: 12:cf:62:1a:03:81:0f:d5:51:aa:77:5a:0a:cc:bc:3f:7a:0c: 3a:e8:81:34:6b:99:83:09:50:97:1a:30:83:5c:8b:61:39:3f: d4:18:07:a7:12:a8:e6:53:af:9c:db:72:ae:63:46:f5:00:e8: 02:89:dd:9d:28:7c:cd:00:81:0b:19:12:9c:08:e2:46:3b:6b: 7d:21:1c:e4:25:8b:53:f1:61:98:9a:5c:e2:fb:5a:74:d9:d6: 38:91:52:e8:3a:c4:5b:13:80:e6:20:04:99:29:f9:0a:55:49: c9:3e:cc:90:b1:c4:57:0c:52:4e:d1:3b:d1:ea:fd:2a:8e:5b: 45:e8:70:5e:c9:fe:a0:c5:e3:87:5a:52:b4:a0:a8:65:57:5e: 57:fb:c8:95:84:38:2f:da:1b:24:fe:72:6c:27:88:95:41:fd: 39:27:07:7b:e8:38:76:c5:e0:dd:70:8b:ee:f6:da:0c:02:9e: 97:ab:21:a6:7c:af:2e:82:cf:68:99:d8:e6:17:7d:36:a2:33: da:d6:5e:66:56:ed:82:b7:7f:77:6b:9b:fb:ee:95:56:7e:54: c9:7b:a7:6d:16:53:2c:33:b4:81:60:85:b0:f0:9a:04:af:a6: 87:b0:8e:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBozg+TLxDpWy8bSGc09RQow1IFswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTQ5WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOThmNWI0MDFiMWY3Yzc1ZWJiYmYwMGRkZWZjYjQ5ZDBh MTBjMjE3MzBhN2M2ZjhlYzMzYmI1Yzg4ZDUxN2YzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJibqMiTnZLRjEbfVo/0UFr94HnjxPNEJ3/ne6aX3Lqn98 PllRr3a0QRsf+UgTGzZDh4KZNoceRRFRLBS6vpMuSWmSvOERpYrY7tE+oG6cPSD6 G9soRukjsN769YwaprtAeJOdK2SF1jw5Z819xbxoJmZZMIMdeMoKUVy4roslIP5T n7TyslDHHlIUsTEPX2tkzJUTpFfqvAfYEX4HFtwK/b7kq4F1U24teQ+1dGfMWzQK vkFwJugG6i6ZNI+V02nIS8qnPa2yU8WfaxnK+QOtSIC3C0SsIn5LtYqEeVKp7Hg4 5uGS9EJ4ddmZBDBIgrFqdN9Ubz0EWdxUjxUhJ5WrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8r/8wBqLKjaLpWnH+mhLEFZ8bn8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjMjM5YmRhLTVhNTAtNGI5ZC1hZmVjLWMxNzhhMTBkOGE3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugUAwDQYJKoZIhvcNAQELBQADggEBAMbRAT7KCfO5n8mfFYg9iNDltxLP YhoDgQ/VUap3WgrMvD96DDrogTRrmYMJUJcaMINci2E5P9QYB6cSqOZTr5zbcq5j RvUA6AKJ3Z0ofM0AgQsZEpwI4kY7a30hHOQli1PxYZiaXOL7WnTZ1jiRUug6xFsT gOYgBJkp+QpVSck+zJCxxFcMUk7RO9Hq/SqOW0XocF7J/qDF44daUrSgqGVXXlf7 yJWEOC/aGyT+cmwniJVB/TknB3voOHbF4N1wi+722gwCnperIaZ8ry6Cz2iZ2OYX fTaiM9rWXmZW7YK3f3drm/vulVZ+VMl7p20WUywztIFghbDwmgSvpoewjss= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:17 2025 by rpki-client