$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15603e2-1081-4c05-adfa-05ce585182e4.roa File: f15603e2-1081-4c05-adfa-05ce585182e4.roa (raw, json) Hash identifier: B/SjyrUu3XaNzEFAAR4dhe5EYADxB69lhFx0Enf8dYo= Subject key identifier: 06:80:CE:E8:33:03:AE:47:D4:31:98:DB:2B:55:E1:0C:D6:39:F3:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D6C3AC4EFE2527D9670EB613E612C1B3BB78151 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15603e2-1081-4c05-adfa-05ce585182e4.roa Signing time: Mon 14 Apr 2025 15:21:32 +0000 ROA not before: Mon 14 Apr 2025 15:21:32 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:6c:3a:c4:ef:e2:52:7d:96:70:eb:61:3e:61:2c:1b:3b:b7:81:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:21:32 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=69dc364dc7c9e30c3d32aa6fac27d06489f22c26c091495a587f6be50c34fb14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:9f:b9:d8:ea:fb:b7:b3:cf:a0:00:46:2c: 8f:65:19:bd:14:c9:ce:6a:0e:f6:60:b2:4d:12:a8: 4f:24:d3:3b:fe:9b:df:28:cb:b1:05:a5:8f:9e:25: 28:52:34:a3:2e:22:85:44:c4:25:74:49:fb:a7:94: b5:2b:ef:4b:a3:7d:a3:b9:11:42:9b:93:f5:d3:64: b2:af:a3:1c:a0:5f:3a:77:c2:20:4a:aa:ff:a6:a8: 36:e0:3f:1e:67:72:71:ed:46:1a:34:69:f9:c8:9e: bf:0a:27:d0:24:fe:34:5c:dc:b9:a1:c3:db:db:f1: 4e:48:68:59:6f:6a:ec:e8:3f:46:4e:c1:df:78:63: f8:b2:3a:9c:d5:01:94:a2:c8:0e:3e:b4:e0:32:d4: d6:88:a7:4c:5a:3b:5a:05:2b:88:73:20:3c:24:0c: cf:66:e5:93:4d:86:95:3d:03:da:b9:99:18:60:da: d7:3a:53:b4:f0:8b:09:70:b8:90:d1:7f:01:94:ef: 4e:bd:b9:b4:1e:00:fc:cc:03:f6:c9:76:cf:dd:ac: c2:af:ea:b4:1d:77:55:cd:d0:1f:b6:8d:cc:50:b3: c2:c3:ff:f0:84:4a:1c:3f:cf:7b:29:2c:c7:35:5f: 8e:32:c3:44:88:2e:61:36:ad:74:79:f0:79:7a:d5: 9e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:80:CE:E8:33:03:AE:47:D4:31:98:DB:2B:55:E1:0C:D6:39:F3:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15603e2-1081-4c05-adfa-05ce585182e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption bb:83:d4:13:d9:67:4d:e5:a7:2b:d0:b0:b8:1f:b6:d0:cd:83: 09:ce:cf:84:54:29:7a:26:87:12:aa:8d:b7:bd:e5:e4:bd:12: b0:8f:e0:ae:fc:95:2e:0e:d4:23:d2:a1:65:25:f2:d7:c2:80: d7:26:00:e7:34:95:78:c3:a6:45:3d:6c:53:ea:09:4e:85:26: 37:4f:5e:87:37:12:31:0a:a8:80:56:43:57:09:08:e1:52:1a: e8:98:a8:12:79:8d:aa:79:f0:7b:3c:2f:7c:af:f0:40:5e:79: ac:08:e3:17:4d:99:1f:43:69:3c:7a:5e:8b:e8:8c:f8:03:37: b0:2a:a5:5f:72:a3:6b:0e:10:4a:47:6d:8d:f7:9f:6d:3f:29: 25:6e:b9:35:22:fb:a8:c3:79:5b:d3:5a:0c:f1:3d:36:22:22: 89:79:be:9c:f3:10:3c:1a:af:3a:06:7f:5e:87:be:6c:a3:8f: 66:27:7e:d1:79:4b:bb:f6:d1:a6:12:d9:56:29:77:3d:a1:fb: c0:9f:4f:f5:8e:1c:c8:82:ab:a4:c0:40:fb:8e:91:4e:cd:14: 1f:32:18:95:08:24:b8:ae:37:5e:c8:e6:be:16:a5:0c:fb:8f: fb:fc:5b:33:87:4d:81:7a:99:a0:71:a2:51:f0:d9:cc:0f:12: 60:71:ac:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfWw6xO/iUn2WcOthPmEsGzu3gVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMTMyWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWRjMzY0ZGM3YzllMzBjM2QzMmFhNmZhYzI3ZDA2NDg5 ZjIyYzI2YzA5MTQ5NWE1ODdmNmJlNTBjMzRmYjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8n5+52Or7t7PPoABGLI9lGb0Uyc5qDvZgsk0SqE8k0zv+ m98oy7EFpY+eJShSNKMuIoVExCV0SfunlLUr70ujfaO5EUKbk/XTZLKvoxygXzp3 wiBKqv+mqDbgPx5ncnHtRho0afnInr8KJ9Ak/jRc3Lmhw9vb8U5IaFlvauzoP0ZO wd94Y/iyOpzVAZSiyA4+tOAy1NaIp0xaO1oFK4hzIDwkDM9m5ZNNhpU9A9q5mRhg 2tc6U7TwiwlwuJDRfwGU7069ubQeAPzMA/bJds/drMKv6rQdd1XN0B+2jcxQs8LD //CEShw/z3spLMc1X44yw0SILmE2rXR58Hl61Z7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBoDO6DMDrkfUMZjbK1XhDNY589cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxNTYwM2UyLTEwODEtNGMwNS1hZGZhLTA1Y2U1ODUxODJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4SCAwDQYJKoZIhvcNAQELBQADggEBALuD1BPZZ03lpyvQsLgfttDNgwnO z4RUKXomhxKqjbe95eS9ErCP4K78lS4O1CPSoWUl8tfCgNcmAOc0lXjDpkU9bFPq CU6FJjdPXoc3EjEKqIBWQ1cJCOFSGuiYqBJ5jap58Hs8L3yv8EBeeawI4xdNmR9D aTx6XovojPgDN7AqpV9yo2sOEEpHbY33n20/KSVuuTUi+6jDeVvTWgzxPTYiIol5 vpzzEDwarzoGf16Hvmyjj2YnftF5S7v20aYS2VYpdz2h+8CfT/WOHMiCq6TAQPuO kU7NFB8yGJUIJLiuN17I5r4WpQz7j/v8WzOHTYF6maBxolHw2cwPEmBxrO0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:19 2025 by rpki-client