$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa File: f4bf070f-56bb-49f0-b05e-fa1524276572.roa (raw, json) Hash identifier: NrlqbWm0jvCsHet5jB04150vo4PnPR9ppu6UXDIELV0= Subject key identifier: E6:A5:2F:8E:9A:CC:D7:8C:A2:37:14:EC:36:DA:23:C1:10:63:2C:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42ECF7419050E6ABBF7817B8EE8BA3DE5EE319BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa Signing time: Fri 25 Apr 2025 15:10:57 +0000 ROA not before: Fri 25 Apr 2025 15:10:57 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.2.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ec:f7:41:90:50:e6:ab:bf:78:17:b8:ee:8b:a3:de:5e:e3:19:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:10:57 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=9fe77c38e49843f0d9e6552c18514715b68302ba0428e157c2f3d6f741ea5d87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:03:59:3a:24:ee:96:f3:7e:da:d8:88:4a:03: 4f:97:f2:1b:9f:35:6b:7c:13:f3:a9:bb:14:18:58: 4f:01:03:0a:7a:11:ba:39:37:ef:76:98:ba:ab:5a: 5b:7a:c6:2e:97:6c:8c:70:8c:71:b4:9b:74:c2:a1: ea:5f:d8:35:31:b3:9b:db:7b:09:e4:29:9c:e9:ab: 2f:b2:4c:90:59:d8:85:d6:95:94:31:3b:56:ab:7b: f9:34:10:47:13:a6:16:ae:a2:aa:8d:10:1d:99:e4: 65:67:c4:bb:68:a7:71:e2:b3:72:a2:5c:cd:bd:f2: 91:f6:5a:7e:50:6c:32:c7:29:b3:23:bc:49:ce:ec: ca:1b:56:ec:7a:b6:4a:5d:81:de:8f:51:d6:90:f3: ec:67:8f:df:d6:21:3e:de:a1:c5:f5:c6:d3:19:7b: 15:e8:c0:8d:97:22:e1:e0:30:76:35:97:9a:51:0c: db:d5:2c:64:6f:60:a8:9b:be:5e:06:5e:8e:c5:d4: 31:9b:07:c6:32:69:59:a2:3b:2c:03:66:5c:2e:ae: b4:9c:ee:b6:50:a2:36:7e:fe:9c:95:84:84:ea:a0: 7f:73:a2:22:ed:f3:71:22:cc:f9:6a:7e:3d:6e:e2: 92:3d:fe:0a:7d:a0:ec:7a:4a:a4:ab:aa:89:ad:1b: 91:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A5:2F:8E:9A:CC:D7:8C:A2:37:14:EC:36:DA:23:C1:10:63:2C:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.2.160.0/19 Signature Algorithm: sha256WithRSAEncryption 0a:7d:34:60:ce:e1:29:cd:32:79:55:f1:4c:ea:1f:d2:f8:6d: db:3e:6e:16:57:d6:f2:b5:58:f3:fd:12:68:ff:21:08:36:8e: f5:58:04:84:2b:50:be:12:c9:2e:66:b4:2f:c4:9a:4b:ab:c4: c0:a3:24:45:9e:71:c4:a5:88:49:9c:3e:ac:43:a5:8f:e5:cd: 07:c8:4b:ca:d2:20:84:bb:c3:db:c9:10:db:71:7d:e2:d5:8a: 81:18:71:37:3b:39:bf:57:63:ca:ed:d8:28:d0:a4:89:b2:76: f7:28:a6:71:b3:df:5b:ac:27:6b:97:86:1a:94:00:88:04:38: a1:57:05:20:11:75:da:9e:4e:bb:9c:e8:ac:3b:69:8f:58:4c: 3f:fb:46:4a:4b:2d:cd:c1:dc:56:f7:20:c9:62:eb:a5:84:29: 9b:3e:bf:3d:5c:e8:ca:cf:ec:b0:18:e4:dc:bb:84:57:4d:d8: a8:31:7f:43:7d:cc:61:87:07:23:42:54:c5:09:73:7e:52:91: 90:d9:f0:e5:62:d9:61:8c:cb:f8:ad:a8:81:00:b7:64:b2:10: e8:96:14:c3:59:eb:c6:98:e9:8b:cf:09:e1:de:4c:2b:31:4e: 9e:4f:1b:d2:10:e4:45:cd:bd:5c:8f:48:ab:96:50:b9:d8:22: 57:70:ac:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQuz3QZBQ5qu/eBe47ouj3l7jGb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUxMDU3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmU3N2MzOGU0OTg0M2YwZDllNjU1MmMxODUxNDcxNWI2 ODMwMmJhMDQyOGUxNTdjMmYzZDZmNzQxZWE1ZDg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClA1k6JO6W837a2IhKA0+X8hufNWt8E/OpuxQYWE8BAwp6 Ebo5N+92mLqrWlt6xi6XbIxwjHG0m3TCoepf2DUxs5vbewnkKZzpqy+yTJBZ2IXW lZQxO1are/k0EEcTphauoqqNEB2Z5GVnxLtop3His3KiXM298pH2Wn5QbDLHKbMj vEnO7MobVux6tkpdgd6PUdaQ8+xnj9/WIT7eocX1xtMZexXowI2XIuHgMHY1l5pR DNvVLGRvYKibvl4GXo7F1DGbB8YyaVmiOywDZlwurrSc7rZQojZ+/pyVhITqoH9z oiLt83EizPlqfj1u4pI9/gp9oOx6SqSrqomtG5FbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5qUvjprM14yiNxTsNtojwRBjLIMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0YmYwNzBmLTU2YmItNDlmMC1iMDVlLWZhMTUyNDI3NjU3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAqAwDQYJKoZIhvcNAQELBQADggEBAAp9NGDO4SnNMnlV8UzqH9L4bds+ bhZX1vK1WPP9Emj/IQg2jvVYBIQrUL4SyS5mtC/EmkurxMCjJEWeccSliEmcPqxD pY/lzQfIS8rSIIS7w9vJENtxfeLVioEYcTc7Ob9XY8rt2CjQpImydvcopnGz31us J2uXhhqUAIgEOKFXBSARddqeTruc6Kw7aY9YTD/7RkpLLc3B3Fb3IMli66WEKZs+ vz1c6MrP7LAY5Ny7hFdN2Kgxf0N9zGGHByNCVMUJc35SkZDZ8OVi2WGMy/itqIEA t2SyEOiWFMNZ68aY6YvPCeHeTCsxTp5PG9IQ5EXNvVyPSKuWULnYIldwrB0= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:09 2025 by rpki-client