$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1349cb6-6dc7-4e12-b939-a4504b738f1d.roa File: f1349cb6-6dc7-4e12-b939-a4504b738f1d.roa (raw, json) Hash identifier: OyvEDk4M9gvi60ZKr+SS+u1G7tO8YZaUuqPXiEwlblo= Subject key identifier: BF:D6:A2:19:C2:9C:17:0C:2A:C5:AF:AE:CA:DE:EA:4F:2A:85:3D:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D403EB8161B303E1EA7D3F4CAC602D8A8921B67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1349cb6-6dc7-4e12-b939-a4504b738f1d.roa Signing time: Wed 23 Apr 2025 00:21:56 +0000 ROA not before: Wed 23 Apr 2025 00:21:56 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:40:3e:b8:16:1b:30:3e:1e:a7:d3:f4:ca:c6:02:d8:a8:92:1b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:21:56 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=734f5342eccad3864b5ecdfed489c6f0922deca0da812dbc98cda4d98206a019, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:85:b6:57:80:77:35:54:a6:74:ca:0b:3c:3e: 76:52:1b:f2:a0:6a:a7:95:3a:0f:0a:47:87:ac:4b: f4:04:77:e6:cd:bc:4b:7d:5e:4d:a8:38:b7:4a:77: 5f:4c:e6:62:3b:20:60:f1:71:2d:33:75:50:b4:28: 55:b7:94:0b:7e:26:20:7f:1a:b7:f5:b1:11:58:aa: 82:3b:07:51:0d:a6:2e:ce:58:de:10:4e:46:78:a3: fc:15:92:fa:4e:35:4b:d6:f5:b3:92:42:98:d2:88: 22:38:58:78:f7:1b:d9:c9:9b:aa:00:94:39:90:97: 99:13:a4:dc:07:02:3e:6a:ad:5c:d8:23:df:d2:ee: 60:e7:7c:b2:cb:e0:86:10:e7:66:84:1a:d5:ab:87: f3:2a:0e:d3:48:c3:91:ee:25:dd:da:5d:08:50:b1: 32:5a:6b:a0:e6:49:f1:29:e3:68:ea:5d:b2:49:d6: e6:d1:f0:d0:c2:f0:82:a7:bd:99:6b:09:d3:68:dd: 55:86:f7:54:d7:e0:3a:60:93:e8:09:ca:07:2b:db: 51:6c:de:7e:cf:f6:3d:4e:fa:d6:22:41:04:13:bc: 0a:64:b2:43:8e:a9:15:10:d4:ee:20:0c:15:da:be: 90:1f:e6:5b:3b:71:90:2e:52:d6:9d:fe:ea:67:9e: 0e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D6:A2:19:C2:9C:17:0C:2A:C5:AF:AE:CA:DE:EA:4F:2A:85:3D:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1349cb6-6dc7-4e12-b939-a4504b738f1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.128.0/17 Signature Algorithm: sha256WithRSAEncryption d5:6c:41:0e:c8:a8:4f:45:98:55:51:cf:8d:a8:5a:1a:7c:c9: a8:27:4c:84:8d:e4:0a:cd:c5:55:33:3c:08:14:2b:8f:39:0b: 52:b2:d9:b3:fe:15:64:6d:be:e0:af:0d:00:70:69:c8:ca:c4: 24:c9:03:87:5c:9a:84:e5:a2:e9:08:1d:99:cf:c8:1c:9d:b5: e7:d5:67:0d:81:cb:e6:b7:4d:be:66:a8:ee:7c:10:9b:ee:e0: f8:6e:3f:5e:b1:ed:b0:44:d1:58:0b:c2:83:59:ae:13:a7:6e: 8a:ce:fe:ec:9a:e3:0e:0c:7e:e6:4b:3e:e9:e7:ef:f2:9a:83: 7d:8e:6a:fc:6e:11:69:46:2b:9e:0c:40:2a:06:98:d8:3b:ca: 5c:3b:ef:6b:82:88:63:18:b0:38:cb:6c:c0:71:24:2c:6a:5b: 4d:29:85:c7:cf:d9:0c:d9:7d:64:4d:85:a1:81:8b:b3:8b:7d: ae:48:87:eb:bf:9a:37:91:d3:24:10:86:f8:10:c7:96:bc:ad: c7:12:07:a8:df:67:cb:b1:d2:1c:75:eb:f1:68:a5:c8:bf:81: c9:91:25:be:50:1c:e8:72:8b:e6:86:a8:e2:bc:ae:d7:10:24: b0:a0:dd:3a:db:58:f0:7e:1c:17:f4:b9:0d:27:38:56:f8:8c: a4:99:5e:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbUA+uBYbMD4ep9P0ysYC2KiSG2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAyMTU2WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzRmNTM0MmVjY2FkMzg2NGI1ZWNkZmVkNDg5YzZmMDky MmRlY2EwZGE4MTJkYmM5OGNkYTRkOTgyMDZhMDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/hbZXgHc1VKZ0ygs8PnZSG/KgaqeVOg8KR4esS/QEd+bN vEt9Xk2oOLdKd19M5mI7IGDxcS0zdVC0KFW3lAt+JiB/Grf1sRFYqoI7B1ENpi7O WN4QTkZ4o/wVkvpONUvW9bOSQpjSiCI4WHj3G9nJm6oAlDmQl5kTpNwHAj5qrVzY I9/S7mDnfLLL4IYQ52aEGtWrh/MqDtNIw5HuJd3aXQhQsTJaa6DmSfEp42jqXbJJ 1ubR8NDC8IKnvZlrCdNo3VWG91TX4Dpgk+gJygcr21Fs3n7P9j1O+tYiQQQTvApk skOOqRUQ1O4gDBXavpAf5ls7cZAuUtad/upnng6/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv9aiGcKcFwwqxa+uyt7qTyqFPUMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxMzQ5Y2I2LTZkYzctNGUxMi1iOTM5LWE0NTA0YjczOGYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdrFYAwDQYJKoZIhvcNAQELBQADggEBANVsQQ7IqE9FmFVRz42oWhp8yagn TISN5ArNxVUzPAgUK485C1Ky2bP+FWRtvuCvDQBwacjKxCTJA4dcmoTloukIHZnP yBydtefVZw2By+a3Tb5mqO58EJvu4PhuP16x7bBE0VgLwoNZrhOnborO/uya4w4M fuZLPunn7/Kag32OavxuEWlGK54MQCoGmNg7ylw772uCiGMYsDjLbMBxJCxqW00p hcfP2QzZfWRNhaGBi7OLfa5Ih+u/mjeR0yQQhvgQx5a8rccSB6jfZ8ux0hx16/Fo pci/gcmRJb5QHOhyi+aGqOK8rtcQJLCg3TrbWPB+HBf0uQ0nOFb4jKSZXqU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:43 2025 by rpki-client