$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc810cd8-ce41-47c4-8b86-c9b9a8ae0321.roa File: fc810cd8-ce41-47c4-8b86-c9b9a8ae0321.roa (raw, json) Hash identifier: pvlFBry/O3bQ9foJuo8T8uuinApSO5QZKyq6hpxRsGA= Subject key identifier: FC:C6:E8:49:64:1B:97:77:27:72:1E:FD:1F:98:01:97:B3:4E:37:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2742E897CAC9440087C0E45940F3A0624E6993FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc810cd8-ce41-47c4-8b86-c9b9a8ae0321.roa Signing time: Wed 23 Apr 2025 00:50:19 +0000 ROA not before: Wed 23 Apr 2025 00:50:19 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:42:e8:97:ca:c9:44:00:87:c0:e4:59:40:f3:a0:62:4e:69:93:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:50:19 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=a8bb5b2f3d97fcae3080d251fba00bc31d17ee6d70f3b61d1ce7536e7771bf0e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:60:68:9d:27:76:a5:41:36:51:96:c2:77:ce: 3a:c9:91:02:35:91:40:01:c8:4d:39:40:bf:e9:99: 3a:4d:fa:7a:85:83:55:8b:29:6a:68:62:b6:61:3d: ef:54:ef:d1:4c:40:e5:f2:f9:1b:f7:5c:30:22:23: f9:d3:8f:88:9f:07:ab:27:e6:6c:4d:89:27:7b:a0: a6:36:a0:f6:a5:52:16:15:a1:8a:9a:b4:16:a6:c1: 07:6a:84:2b:1e:9d:f2:d9:59:6e:3d:1e:57:b4:0d: fa:1e:e5:21:ab:ac:e7:5f:05:d8:70:9c:ae:f3:ad: ab:62:8f:4e:96:88:c1:42:f0:41:41:74:c2:2f:ee: 1d:80:c2:d2:af:a6:d3:cd:3e:9d:39:bb:2c:db:61: 52:36:22:40:5f:a8:03:58:8a:05:5a:6b:00:c9:8e: de:5a:2c:c3:98:0a:a8:b3:61:af:f1:be:b5:de:6b: 44:15:55:1b:d2:af:3a:c3:9b:f9:bd:bc:74:d7:3e: 92:08:5c:f4:aa:46:c5:2b:ef:9d:99:2e:20:5b:d8: 60:c6:a8:10:ab:64:6b:42:ee:78:e5:8e:11:3b:68: cb:49:12:5f:e7:34:83:21:29:bc:dd:c7:8b:14:a5: f7:85:e8:64:e3:20:0b:c7:b3:68:ef:92:bb:84:2c: aa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C6:E8:49:64:1B:97:77:27:72:1E:FD:1F:98:01:97:B3:4E:37:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc810cd8-ce41-47c4-8b86-c9b9a8ae0321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.216.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:a7:5c:2b:95:b9:73:0a:3a:b1:79:5b:f1:99:e6:6d:4b:c4: 93:00:45:33:ed:39:7f:7d:1d:3b:f4:71:e0:36:8a:a4:0f:d2: ea:a1:b0:bd:cd:98:6e:f1:87:50:c3:59:d3:b7:31:63:3d:ba: a0:45:4e:84:83:f3:58:86:09:ce:c8:42:67:8b:96:3b:66:bf: 75:20:70:db:25:43:d7:c7:76:d4:e2:6b:ce:9d:03:2c:71:ee: 2b:45:d1:97:4c:03:55:b6:ea:e4:d7:ab:39:ee:1c:7a:45:46: 54:0d:d9:d9:93:06:07:bc:23:f2:42:cb:54:fb:13:96:69:9d: dd:f8:f4:09:17:ca:b9:d3:a5:43:9d:dc:d1:e1:fc:06:f7:3e: af:3d:a3:01:d5:53:03:33:44:f1:51:49:5e:fe:32:f5:ae:ce: 25:0c:08:15:ec:00:b2:53:0b:de:11:7c:4b:12:f0:08:9e:72: 26:25:85:0d:2b:36:8f:15:f8:6e:a5:69:62:06:dd:33:fc:1d: 69:56:f3:82:ed:7c:26:59:53:3e:e2:80:f0:e0:7d:cd:ee:24: 12:71:99:32:90:6e:55:a5:b9:94:02:a3:8a:6d:06:ae:a3:4b: 46:b3:84:2a:6b:c5:9a:ac:e7:e0:ca:9b:2f:8c:64:45:66:30: e3:63:a6:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ0Lol8rJRACHwORZQPOgYk5pk/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MDE5WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGJiNWIyZjNkOTdmY2FlMzA4MGQyNTFmYmEwMGJjMzFk MTdlZTZkNzBmM2I2MWQxY2U3NTM2ZTc3NzFiZjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPYGidJ3alQTZRlsJ3zjrJkQI1kUAByE05QL/pmTpN+nqF g1WLKWpoYrZhPe9U79FMQOXy+Rv3XDAiI/nTj4ifB6sn5mxNiSd7oKY2oPalUhYV oYqatBamwQdqhCsenfLZWW49Hle0Dfoe5SGrrOdfBdhwnK7zratij06WiMFC8EFB dMIv7h2AwtKvptPNPp05uyzbYVI2IkBfqANYigVaawDJjt5aLMOYCqizYa/xvrXe a0QVVRvSrzrDm/m9vHTXPpIIXPSqRsUr752ZLiBb2GDGqBCrZGtC7njljhE7aMtJ El/nNIMhKbzdx4sUpfeF6GTjIAvHs2jvkruELKrRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/MboSWQbl3cnch79H5gBl7NON80wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjODEwY2Q4LWNlNDEtNDdjNC04Yjg2LWM5YjlhOGFlMDMyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM7NgwDQYJKoZIhvcNAQELBQADggEBAH2nXCuVuXMKOrF5W/GZ5m1LxJMA RTPtOX99HTv0ceA2iqQP0uqhsL3NmG7xh1DDWdO3MWM9uqBFToSD81iGCc7IQmeL ljtmv3UgcNslQ9fHdtTia86dAyxx7itF0ZdMA1W26uTXqznuHHpFRlQN2dmTBge8 I/JCy1T7E5Zpnd349AkXyrnTpUOd3NHh/Ab3Pq89owHVUwMzRPFRSV7+MvWuziUM CBXsALJTC94RfEsS8AieciYlhQ0rNo8V+G6laWIG3TP8HWlW84LtfCZZUz7igPDg fc3uJBJxmTKQblWluZQCo4ptBq6jS0azhCprxZqs5+DKmy+MZEVmMONjpsc= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:15 2025 by rpki-client