$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb67440-ac4a-462e-8b15-5450c649275e.roa File: feb67440-ac4a-462e-8b15-5450c649275e.roa (raw, json) Hash identifier: SrUcpNqVi5SO1ObAo2x3/syRu1k/sG4JQvrcsbs+bpA= Subject key identifier: 72:18:B7:88:98:03:FD:DB:10:06:D5:FA:53:6E:88:2A:C5:71:0F:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BC9FFDDCB2BC5DBD533F13DA99EDA62ADDE5E99 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb67440-ac4a-462e-8b15-5450c649275e.roa Signing time: Sat 12 Apr 2025 00:01:14 +0000 ROA not before: Sat 12 Apr 2025 00:01:14 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.253.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c9:ff:dd:cb:2b:c5:db:d5:33:f1:3d:a9:9e:da:62:ad:de:5e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:01:14 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=6d831302acff30291511aa738932c5ce993e9459d97a031e677df5e15a1c22e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3c:c3:27:49:f4:55:0e:45:21:95:90:8e:57: d2:6a:ff:58:44:da:8c:96:7c:0a:a1:7e:cc:37:26: a3:4a:98:8b:18:a3:1e:24:32:64:85:3a:bf:bc:07: 01:eb:73:df:f6:fe:24:3a:f8:0a:76:15:46:f9:ad: d0:33:51:ef:8a:da:85:c1:6b:13:a2:5a:82:c4:80: 26:60:aa:8c:f7:57:6f:92:40:d0:05:df:92:dc:6c: ca:2c:8f:33:5f:7b:e1:6c:fa:aa:a2:13:f2:44:68: 29:4c:34:db:49:7f:0d:8d:c5:75:8e:4c:ee:40:60: 1c:a2:9a:b0:dd:05:ab:2e:28:a3:fe:03:48:20:94: 3d:5c:bd:da:cb:0c:44:18:5e:c4:a6:55:1d:60:6a: bd:32:d1:39:81:21:48:05:50:ba:0c:f0:de:f6:6b: d6:2c:04:65:44:9f:04:2f:d5:6a:85:ff:5a:e9:d7: a3:51:57:14:51:55:11:00:43:47:98:43:f6:50:10: 27:46:c9:e2:7e:ee:fa:d9:4c:80:b3:02:80:2b:93: 4c:ea:4c:50:9d:0c:55:f1:da:9e:63:37:2b:66:b0: 68:13:e9:a7:f0:c4:60:4a:7e:dc:73:83:fe:67:e0: da:b9:24:05:6b:87:8c:7b:a3:b9:1f:bd:e6:13:ee: 98:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:18:B7:88:98:03:FD:DB:10:06:D5:FA:53:6E:88:2A:C5:71:0F:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb67440-ac4a-462e-8b15-5450c649275e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.253.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:ea:d5:56:b1:13:36:c6:2d:59:9b:7c:72:23:08:b0:c5:25: 58:72:2c:ca:85:c6:59:3c:c3:36:58:54:55:d5:c3:2b:0d:17: ae:26:c0:95:90:14:08:fc:91:88:23:c5:4e:95:38:82:59:74: db:ed:46:41:05:5c:cc:72:ac:5a:6d:89:96:ec:ce:47:9c:dc: 27:8b:28:b8:fe:f0:dc:5b:f9:52:e6:b2:74:a6:e4:e0:c5:01: 21:99:17:18:c8:4b:09:ef:84:d8:ee:9f:46:37:ca:8a:ac:a8: 3c:b7:69:26:f2:2c:a6:1a:4d:aa:32:b5:c9:49:fe:11:6b:83: c8:51:ca:8c:3a:3e:51:2e:42:38:d4:c9:d0:67:82:63:28:ad: 83:5f:4b:30:f2:65:4f:a8:2c:5c:e3:62:5d:34:53:f8:d9:67: 75:3c:e7:fc:cb:e8:18:09:11:6e:38:17:ef:65:51:b2:72:ca: 91:9d:3b:45:f4:02:46:a7:50:28:f1:ce:88:65:a4:a5:fb:84: f8:4f:a3:c3:d0:65:f2:26:90:ac:07:ca:fa:7f:df:02:51:4d: c0:98:f5:f0:9d:0d:f0:c5:4f:5e:f7:c6:a4:f9:58:5b:75:3d: 74:1e:ad:c4:cb:1c:43:d2:ec:a0:a9:d7:02:63:88:93:ac:f5: 23:97:50:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG8n/3csrxdvVM/E9qZ7aYq3eXpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAwMTE0WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDgzMTMwMmFjZmYzMDI5MTUxMWFhNzM4OTMyYzVjZTk5 M2U5NDU5ZDk3YTAzMWU2NzdkZjVlMTVhMWMyMmUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtPMMnSfRVDkUhlZCOV9Jq/1hE2oyWfAqhfsw3JqNKmIsY ox4kMmSFOr+8BwHrc9/2/iQ6+Ap2FUb5rdAzUe+K2oXBaxOiWoLEgCZgqoz3V2+S QNAF35LcbMosjzNfe+Fs+qqiE/JEaClMNNtJfw2NxXWOTO5AYByimrDdBasuKKP+ A0gglD1cvdrLDEQYXsSmVR1gar0y0TmBIUgFULoM8N72a9YsBGVEnwQv1WqF/1rp 16NRVxRRVREAQ0eYQ/ZQECdGyeJ+7vrZTICzAoArk0zqTFCdDFXx2p5jNytmsGgT 6afwxGBKftxzg/5n4Nq5JAVrh4x7o7kfveYT7pizAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUchi3iJgD/dsQBtX6U26IKsVxD+owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlYjY3NDQwLWFjNGEtNDYyZS04YjE1LTU0NTBjNjQ5Mjc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCP/TANBgkqhkiG9w0BAQsFAAOCAQEAUurVVrETNsYtWZt8ciMIsMUlWHIs yoXGWTzDNlhUVdXDKw0XribAlZAUCPyRiCPFTpU4gll02+1GQQVczHKsWm2JluzO R5zcJ4souP7w3Fv5UuaydKbk4MUBIZkXGMhLCe+E2O6fRjfKiqyoPLdpJvIsphpN qjK1yUn+EWuDyFHKjDo+US5CONTJ0GeCYyitg19LMPJlT6gsXONiXTRT+NlndTzn /MvoGAkRbjgX72VRsnLKkZ07RfQCRqdQKPHOiGWkpfuE+E+jw9Bl8iaQrAfK+n/f AlFNwJj18J0N8MVPXvfGpPlYW3U9dB6txMscQ9LsoKnXAmOIk6z1I5dQdg== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:14 2025 by rpki-client