$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa File: f2fe5322-91ca-4110-b210-af46310a9592.roa (raw, json) Hash identifier: +wA0sJPF4JmbxdPyVJvCVbeoBaCb/Lj9utKIskd5YWs= Subject key identifier: 3D:67:69:F5:E0:CC:64:F8:22:C9:28:56:C0:D9:EC:8F:F3:91:AC:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58006B383CE5CB363C131CBBBA2CB2A69AC59693 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa Signing time: Mon 07 Apr 2025 15:20:12 +0000 ROA not before: Mon 07 Apr 2025 15:20:12 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 166.92.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:00:6b:38:3c:e5:cb:36:3c:13:1c:bb:ba:2c:b2:a6:9a:c5:96:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:20:12 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=e4a92613b95f14a9221ac12b0981fb6161b681f2ed79e8a2b2f1684ba5a53c78, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cd:ae:ba:0a:09:7a:28:7f:77:8c:1c:3e:a2: d9:67:4b:b2:b8:dc:a2:b8:2f:88:9a:8d:32:f4:f7: 47:2c:16:80:35:14:06:40:ea:59:7e:71:e9:ad:b4: aa:c5:a8:08:a1:6f:77:7a:12:aa:5f:48:f7:f8:fd: 66:15:71:2f:00:ad:ef:99:ca:fb:73:4d:94:f7:c0: 77:cd:22:df:d3:e4:b5:fc:2f:e1:62:01:85:8b:2b: b1:48:32:f4:ee:ae:fe:50:c9:b2:02:ae:68:70:63: 65:6a:83:eb:42:66:c0:10:69:90:63:ad:fe:62:69: 6f:67:0d:34:bf:68:f2:7a:47:8e:f8:a9:b4:12:1a: 3a:25:5a:8f:ed:2e:5f:59:1f:73:77:2f:c8:26:ca: ed:84:db:40:a3:b5:67:40:88:3a:37:ce:c5:02:14: 40:a7:90:b3:52:f4:d9:d3:d3:a4:b0:f4:7b:64:a5: a8:44:1e:82:bd:e2:48:c5:3a:3b:9e:e3:32:f5:1c: d0:9c:b8:54:2c:0c:e8:5d:39:e1:a1:bc:0d:ce:cf: 21:e6:20:55:78:92:73:ba:17:5f:43:5b:03:4d:23: e5:1a:64:6c:27:96:43:fe:1a:e3:17:63:e8:0b:f8: 2b:e2:f2:51:28:5a:f4:bb:cb:2e:c4:4e:4c:7c:16: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:67:69:F5:E0:CC:64:F8:22:C9:28:56:C0:D9:EC:8F:F3:91:AC:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.92.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:fe:57:f4:63:bd:12:85:ce:52:97:55:a8:82:29:94:80:fa: b3:d4:5f:18:da:3e:bd:2e:73:42:6e:90:49:5e:5d:cc:3d:69: 4b:4d:71:d6:88:fa:4d:8c:29:e0:fd:96:00:0e:ac:76:ba:49: 0e:7f:85:50:1c:ea:92:c5:8a:85:20:52:12:1c:6e:b9:f1:72: 9f:fb:90:e1:5a:92:9a:77:29:a9:f4:38:ac:f8:27:20:a1:01: 05:06:67:47:06:21:d7:f5:f6:93:ad:4c:2f:ab:37:a2:7b:e8: 4e:3e:5e:6b:0b:c2:e3:0d:54:c0:d4:f1:9c:e2:8d:6c:34:f5: 7c:c7:af:cb:49:b1:ac:db:d6:22:fb:61:aa:47:8d:7a:7b:79: 4a:1d:d4:97:f8:b8:de:e5:b4:2c:18:54:f1:a1:8a:6b:ce:a2: c4:17:d3:69:b5:85:61:5a:e0:e7:a2:c1:cb:27:d1:bd:8e:ec: 98:3f:e1:ec:e2:b1:44:e6:43:e4:ab:94:10:ff:53:3e:e7:ad: a7:8c:cd:8f:1f:bc:65:a2:36:41:f9:57:b0:ca:84:f3:36:c5: a8:b8:d5:6a:00:41:62:b5:01:ab:8c:19:02:bf:98:89:78:7c: a3:23:87:22:f8:c7:aa:90:16:8c:2a:54:98:dd:b6:80:de:f0: 0a:9e:d4:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWABrODzlyzY8Exy7uiyypprFlpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUyMDEyWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGE5MjYxM2I5NWYxNGE5MjIxYWMxMmIwOTgxZmI2MTYx YjY4MWYyZWQ3OWU4YTJiMmYxNjg0YmE1YTUzYzc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChza66Cgl6KH93jBw+otlnS7K43KK4L4iajTL090csFoA1 FAZA6ll+cemttKrFqAihb3d6EqpfSPf4/WYVcS8Are+ZyvtzTZT3wHfNIt/T5LX8 L+FiAYWLK7FIMvTurv5QybICrmhwY2Vqg+tCZsAQaZBjrf5iaW9nDTS/aPJ6R474 qbQSGjolWo/tLl9ZH3N3L8gmyu2E20CjtWdAiDo3zsUCFECnkLNS9NnT06Sw9Htk pahEHoK94kjFOjue4zL1HNCcuFQsDOhdOeGhvA3OzyHmIFV4knO6F19DWwNNI+Ua ZGwnlkP+GuMXY+gL+Cvi8lEoWvS7yy7ETkx8Fo6PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPWdp9eDMZPgiyShWwNnsj/ORrEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyZmU1MzIyLTkxY2EtNDExMC1iMjEwLWFmNDYzMTBhOTU5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmXDANBgkqhkiG9w0BAQsFAAOCAQEAj/5X9GO9EoXOUpdVqIIplID6s9Rf GNo+vS5zQm6QSV5dzD1pS01x1oj6TYwp4P2WAA6sdrpJDn+FUBzqksWKhSBSEhxu ufFyn/uQ4VqSmncpqfQ4rPgnIKEBBQZnRwYh1/X2k61ML6s3onvoTj5eawvC4w1U wNTxnOKNbDT1fMevy0mxrNvWIvthqkeNent5Sh3Ul/i43uW0LBhU8aGKa86ixBfT abWFYVrg56LByyfRvY7smD/h7OKxROZD5KuUEP9TPuetp4zNjx+8ZaI2QflXsMqE 8zbFqLjVagBBYrUBq4wZAr+YiXh8oyOHIvjHqpAWjCpUmN22gN7wCp7Unw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:31 2025 by rpki-client