$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa File: f730b889-bcb1-4f8b-8454-416b86668fa0.roa (raw, json) Hash identifier: tygl8hxBzXAwzBUY3cks0UyP0Oz0niSqIR3j4uOVe+A= Subject key identifier: 12:8F:9D:66:FF:EA:AF:90:60:5B:41:32:53:E2:AE:91:CD:86:23:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EC9AD9BAAE51E648052B573358BBBD2937F48AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa Signing time: Tue 22 Apr 2025 15:40:12 +0000 ROA not before: Tue 22 Apr 2025 15:40:12 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c9:ad:9b:aa:e5:1e:64:80:52:b5:73:35:8b:bb:d2:93:7f:48:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:40:12 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=57e4569725ff706a6dc28065d85c5757b6fa92035b9f9e1a2189f66b298e488e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:1b:e4:8b:f5:b2:31:18:c3:40:51:73:d3:9a: 94:f7:b3:c5:83:31:9c:19:7a:21:0f:64:0e:8c:c8: 48:c5:88:99:dd:3f:71:04:88:90:1c:fc:d6:38:fb: d1:11:42:a2:96:b6:c4:81:dc:85:97:64:0b:ad:7d: 9a:ff:ca:57:37:a7:3c:76:9a:20:4b:34:c7:3f:f2: d6:e5:bd:4e:91:3e:83:fe:5d:0d:92:8a:87:0a:b3: be:c8:43:7c:ad:77:22:34:8e:06:ad:d0:81:0e:4a: c4:a4:67:92:49:53:f3:d8:8f:8d:e2:13:10:f8:a7: d9:5f:64:9b:05:ed:55:e2:89:24:dd:56:98:00:d2: 78:29:bb:bf:a4:63:91:a1:09:37:df:99:b0:bc:77: 5a:f9:68:ef:7d:59:2b:d7:b5:0a:d9:f2:d1:e7:48: 91:f9:f2:0e:56:4a:26:38:00:98:e1:a6:b6:7d:d8: 0d:94:00:b7:0f:8d:44:1e:da:26:6b:e6:af:52:fb: ae:f0:29:a5:a4:7a:7e:ac:e3:17:1e:7b:54:b9:39: 1e:37:16:84:09:9c:23:ac:8c:22:7b:d1:ca:d1:9a: 95:27:be:21:1c:38:7b:9f:96:fd:8c:06:e4:44:45: b7:3e:09:80:25:77:dd:e9:c3:95:a7:43:d9:e3:19: fc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8F:9D:66:FF:EA:AF:90:60:5B:41:32:53:E2:AE:91:CD:86:23:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.104.0/21 Signature Algorithm: sha256WithRSAEncryption 01:46:30:90:2e:78:d5:a1:35:28:37:4c:9d:ac:93:67:e0:c9: a9:25:18:81:f9:8e:45:8d:d1:16:62:d7:60:d1:5b:7d:a0:75: 8c:e6:05:e5:77:cd:23:14:b1:f2:ad:2f:cc:49:f5:1c:d8:7b: 50:60:f2:83:ae:63:4f:f6:a3:cb:fa:56:7d:b2:9a:ba:88:31: 29:90:40:d7:6c:28:68:02:79:ba:92:cb:a9:4e:29:90:de:1f: b2:61:b4:4b:a6:cf:c4:eb:7d:f5:0f:89:41:3f:e9:e1:08:fa: f6:e7:51:60:cd:c9:cc:11:c9:b4:0a:d9:57:20:4a:a0:11:56: 97:f6:9e:17:5e:64:b3:0d:44:5c:e6:26:75:48:c6:a2:76:d4: 50:90:17:10:8d:22:ea:34:25:0d:7f:b3:aa:ed:ff:57:56:be: 4e:68:36:30:9b:1f:2c:98:bf:92:8a:10:c9:d0:23:fb:83:f1: 75:1f:9e:18:4b:32:1b:52:54:10:3f:7b:fc:85:31:76:b6:cc: 03:7d:d7:f7:35:fa:0f:32:f2:80:63:a4:e9:ab:05:b0:86:68: f7:1f:50:93:9f:9a:49:c9:e2:fc:14:2e:c5:c3:2b:39:39:2e: a3:80:c1:53:47:67:e1:83:ec:15:c5:76:91:0b:6b:b4:69:16: 0a:bb:75:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTsmtm6rlHmSAUrVzNYu70pN/SKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTU0MDEyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2U0NTY5NzI1ZmY3MDZhNmRjMjgwNjVkODVjNTc1N2I2 ZmE5MjAzNWI5ZjllMWEyMTg5ZjY2YjI5OGU0ODhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD5G+SL9bIxGMNAUXPTmpT3s8WDMZwZeiEPZA6MyEjFiJnd P3EEiJAc/NY4+9ERQqKWtsSB3IWXZAutfZr/ylc3pzx2miBLNMc/8tblvU6RPoP+ XQ2SiocKs77IQ3ytdyI0jgat0IEOSsSkZ5JJU/PYj43iExD4p9lfZJsF7VXiiSTd VpgA0ngpu7+kY5GhCTffmbC8d1r5aO99WSvXtQrZ8tHnSJH58g5WSiY4AJjhprZ9 2A2UALcPjUQe2iZr5q9S+67wKaWken6s4xcee1S5OR43FoQJnCOsjCJ70crRmpUn viEcOHuflv2MBuRERbc+CYAld93pw5WnQ9njGfyJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEo+dZv/qr5BgW0EyU+Kukc2GI4gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3MzBiODg5LWJjYjEtNGY4Yi04NDU0LTQxNmI4NjY2OGZhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBsmgwDQYJKoZIhvcNAQELBQADggEBAAFGMJAueNWhNSg3TJ2sk2fgyakl GIH5jkWN0RZi12DRW32gdYzmBeV3zSMUsfKtL8xJ9RzYe1Bg8oOuY0/2o8v6Vn2y mrqIMSmQQNdsKGgCebqSy6lOKZDeH7JhtEumz8TrffUPiUE/6eEI+vbnUWDNycwR ybQK2VcgSqARVpf2nhdeZLMNRFzmJnVIxqJ21FCQFxCNIuo0JQ1/s6rt/1dWvk5o NjCbHyyYv5KKEMnQI/uD8XUfnhhLMhtSVBA/e/yFMXa2zAN91/c1+g8y8oBjpOmr BbCGaPcfUJOfmknJ4vwULsXDKzk5LqOAwVNHZ+GD7BXFdpELa7RpFgq7dfQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:50 2025 by rpki-client