$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa File: fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa (raw, json) Hash identifier: hLrMWSOzXKN73qSGk6U4ECexCfqBvfYl2Z71j7dY+Mg= Subject key identifier: 59:A9:73:33:BA:90:71:ED:F5:93:4D:77:D6:AB:12:3A:5D:B2:D9:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 374910885924BB267C5980B112473B3A9D8EF350 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa Signing time: Wed 16 Apr 2025 00:11:03 +0000 ROA not before: Wed 16 Apr 2025 00:11:03 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:49:10:88:59:24:bb:26:7c:59:80:b1:12:47:3b:3a:9d:8e:f3:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:11:03 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=71ca3e3d8fbd65fe41a7db90b974c8eae41be2a96cf5b1772452331beef765a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bd:cf:b0:f8:16:88:3c:06:58:c5:b7:45:55: 6d:b0:d5:f1:8e:c9:00:b4:30:6d:fa:d5:ff:85:21: 13:e7:69:e3:b5:43:69:da:7f:84:94:f8:c7:71:4e: bc:21:42:10:dc:cd:fc:7a:e8:6f:83:04:8a:b9:56: dc:d1:6a:47:4b:7e:69:2a:dc:f2:84:98:79:d0:37: 77:6e:72:73:66:0a:c2:e0:a6:05:e6:13:9f:34:3e: 5b:2b:16:2a:b5:ef:b4:75:ae:20:03:a1:00:c0:c3: 65:39:99:53:ed:e3:78:6f:4a:37:1d:17:7d:36:01: e2:8c:6b:0b:9a:1d:f4:39:72:2c:17:24:64:c0:5c: 6a:d4:4a:ae:42:a4:41:47:9e:e0:32:48:7c:c9:f4: ee:43:1a:3f:47:64:4f:7a:7e:83:73:55:3b:d3:12: d1:a0:7b:fd:1e:70:00:63:6d:e2:5d:5f:03:39:6f: f6:ea:19:0a:65:4f:04:6e:71:72:b8:70:f8:7c:eb: 93:9d:54:28:f1:5b:8e:bc:68:7b:db:10:f3:0d:f6: 55:b3:e6:24:f0:79:99:b2:ba:7f:e4:75:83:21:bb: a2:fb:95:eb:5a:7b:39:d1:82:10:39:bb:37:06:6a: 21:3c:93:4f:51:e9:2e:99:fb:c2:75:28:bd:e6:6d: 8c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A9:73:33:BA:90:71:ED:F5:93:4D:77:D6:AB:12:3A:5D:B2:D9:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:fa:3f:67:51:1a:cb:a9:15:6c:45:d0:ed:bd:d9:da:99:7f: 4e:d4:ef:c6:4c:b6:6c:70:77:54:9c:4e:fe:4f:5a:50:8e:0d: 7a:5a:fb:fa:88:e5:6b:02:95:a4:fe:cd:45:1f:5c:79:38:bd: 80:e4:e4:ef:84:76:ca:82:c6:95:71:39:30:ec:e6:09:99:aa: 1e:b4:b7:54:15:09:cd:84:ea:73:66:2b:8f:f6:e0:0c:95:2b: 2f:df:4a:69:67:3a:66:d1:31:32:fd:8e:71:e3:c6:1e:af:a8: b4:88:29:84:07:a4:ef:2a:5d:36:2b:13:35:31:01:6e:7d:66: ec:6b:3a:db:94:6a:2b:4a:23:ed:7c:a4:e3:54:0b:45:e9:6d: d0:41:67:f6:5c:e1:36:fc:b3:cc:7a:80:1e:8d:de:a6:7d:23: e5:19:d9:ff:46:43:9d:01:19:cf:83:0e:90:cf:e5:91:90:a1: 7f:05:5c:b4:d2:20:4a:de:a5:2c:da:89:07:9a:00:4a:81:51: 76:d2:96:4c:e8:a1:5d:74:26:02:77:df:0d:21:43:c8:f2:29: 6b:73:4e:da:ea:8b:06:1b:2b:3d:50:4d:33:fa:29:2c:86:2b: 9f:19:41:79:46:d7:97:04:93:e6:58:b9:e6:ce:9e:03:bd:94: 30:19:f8:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN0kQiFkkuyZ8WYCxEkc7Op2O81AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAxMTAzWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWNhM2UzZDhmYmQ2NWZlNDFhN2RiOTBiOTc0YzhlYWU0 MWJlMmE5NmNmNWIxNzcyNDUyMzMxYmVlZjc2NWE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3vc+w+BaIPAZYxbdFVW2w1fGOyQC0MG361f+FIRPnaeO1 Q2naf4SU+MdxTrwhQhDczfx66G+DBIq5VtzRakdLfmkq3PKEmHnQN3ducnNmCsLg pgXmE580PlsrFiq177R1riADoQDAw2U5mVPt43hvSjcdF302AeKMawuaHfQ5ciwX JGTAXGrUSq5CpEFHnuAySHzJ9O5DGj9HZE96foNzVTvTEtGge/0ecABjbeJdXwM5 b/bqGQplTwRucXK4cPh865OdVCjxW468aHvbEPMN9lWz5iTweZmyun/kdYMhu6L7 letaeznRghA5uzcGaiE8k09R6S6Z+8J1KL3mbYx1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWalzM7qQce31k0131qsSOl2y2VIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZmI5YjNkLWQ4YWMtNGJkNC04YzFmLTM3ZGMyZjNjMGNlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBFVjANBgkqhkiG9w0BAQsFAAOCAQEAPfo/Z1Eay6kVbEXQ7b3Z2pl/TtTv xky2bHB3VJxO/k9aUI4Nelr7+ojlawKVpP7NRR9ceTi9gOTk74R2yoLGlXE5MOzm CZmqHrS3VBUJzYTqc2Yrj/bgDJUrL99KaWc6ZtExMv2OcePGHq+otIgphAek7ypd NisTNTEBbn1m7Gs625RqK0oj7Xyk41QLRelt0EFn9lzhNvyzzHqAHo3epn0j5RnZ /0ZDnQEZz4MOkM/lkZChfwVctNIgSt6lLNqJB5oASoFRdtKWTOihXXQmAnffDSFD yPIpa3NO2uqLBhsrPVBNM/opLIYrnxlBeUbXlwST5li55s6eA72UMBn4FA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:19 2025 by rpki-client