$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: vZGLFopASSOcUiSS48xmUGJiR1iap74sM2n51tk4QWM= Subject key identifier: 83:1C:F2:E2:9F:1A:57:C1:FF:51:94:80:D6:1A:18:62:BE:4F:9D:74 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 52976D93B8C4C58A0221712971ADD8B175AFBFCF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Tue 15 Apr 2025 00:40:51 +0000 ROA not before: Tue 15 Apr 2025 00:40:51 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:97:6d:93:b8:c4:c5:8a:02:21:71:29:71:ad:d8:b1:75:af:bf:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 15 00:40:51 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=6d8e0971d38e94391a02c260dcfc17823fe45d79299fa4a23d34f14c71b7eb10, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:e3:b1:28:b2:8e:f7:a4:2f:7a:28:93:f3:e7: d0:a4:cc:40:b1:54:47:96:73:88:2a:75:1a:2a:de: d4:48:64:64:60:04:6d:c8:42:55:66:5c:d0:66:5c: 12:2d:26:8d:32:b4:b7:1a:8c:9d:f2:69:42:82:81: f9:2c:6c:e4:93:fb:b5:9b:9d:77:10:c3:93:0e:73: ab:6b:66:2c:eb:28:de:aa:87:cb:11:25:3c:29:44: ee:c3:3e:d7:1b:69:27:39:f9:c0:ac:de:a1:d3:6c: c0:6d:91:1e:af:c0:50:c5:51:9b:20:9f:8f:4d:6c: db:3f:c9:8c:b0:9a:e1:da:87:22:e8:b1:f6:fb:ee: 5c:07:41:a1:b3:51:fd:12:d7:78:b6:ee:07:c0:a5: 2f:af:b9:e2:c4:b2:0b:14:45:99:6c:ff:3f:e5:3f: 7c:63:68:bc:90:89:b0:ce:2e:e2:97:ec:13:4a:22: bf:e8:9b:af:8b:19:65:60:2f:af:9e:a9:72:97:9a: d5:05:78:04:7e:4f:12:a5:bd:b3:63:e9:fa:30:5f: 72:8d:08:91:fe:6a:b5:f7:5a:8a:a8:16:f1:0e:88: 83:c5:f1:38:63:7d:f1:77:d4:1e:b8:be:2c:5e:38: dd:e4:95:62:a0:58:95:d7:e6:83:3e:35:1b:23:b3: e2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1C:F2:E2:9F:1A:57:C1:FF:51:94:80:D6:1A:18:62:BE:4F:9D:74 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:07:e8:19:ee:1f:df:ad:a0:86:a7:65:70:bf:51:06:d7:fe: 5f:9d:5a:4a:91:8f:02:6d:54:1b:2d:00:54:18:c4:79:ed:06: 2f:fa:ea:6b:ff:6a:2f:0f:72:45:fd:44:ea:95:3d:2d:82:62: 1e:4d:db:56:2f:44:2d:a9:3a:4d:03:80:15:91:69:2b:2c:96: eb:66:d0:43:6a:50:7e:f3:42:74:ee:c2:ca:dc:a8:20:e0:4f: 18:16:11:e5:30:cf:29:11:cc:26:92:a9:83:7a:44:3d:cd:2c: a7:b3:95:b2:84:4b:64:fd:e8:d3:3b:e6:74:41:37:4d:21:37: 69:65:09:92:3b:ef:a0:61:60:c9:00:10:49:0d:b3:80:3c:01: d2:ec:da:3d:64:a2:f8:8b:7d:75:f2:eb:54:5e:f5:0e:7b:1e: e1:93:0b:b4:7f:a9:0d:a9:26:3a:1e:9d:5e:69:6b:a7:b2:a1: 1c:6c:6b:e3:3f:9d:9b:e2:19:18:1d:74:97:e6:6c:45:a8:4d: a9:04:c2:ab:e8:b9:a3:e7:1c:8d:b0:96:65:94:6f:a2:02:60: d8:a2:ea:b5:a3:8f:1b:5d:69:90:f7:e6:05:5d:13:e4:67:b4: 8e:9f:f2:86:58:53:7a:d8:9d:28:d2:de:94:62:c8:ea:18:12: ab:ec:99:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUpdtk7jExYoCIXEpca3YsXWvv88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDE1MDA0MDUxWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDhlMDk3MWQzOGU5NDM5MWEwMmMyNjBkY2ZjMTc4MjNm ZTQ1ZDc5Mjk5ZmE0YTIzZDM0ZjE0YzcxYjdlYjEwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS47Eoso73pC96KJPz59CkzECxVEeWc4gqdRoq3tRIZGRg BG3IQlVmXNBmXBItJo0ytLcajJ3yaUKCgfksbOST+7WbnXcQw5MOc6trZizrKN6q h8sRJTwpRO7DPtcbaSc5+cCs3qHTbMBtkR6vwFDFUZsgn49NbNs/yYywmuHahyLo sfb77lwHQaGzUf0S13i27gfApS+vueLEsgsURZls/z/lP3xjaLyQibDOLuKX7BNK Ir/om6+LGWVgL6+eqXKXmtUFeAR+TxKlvbNj6fowX3KNCJH+arX3WoqoFvEOiIPF 8ThjffF31B64vixeON3klWKgWJXX5oM+NRsjs+JNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgxzy4p8aV8H/UZSA1hoYYr5PnXQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBACoH6BnuH9+toIanZXC/UQbX/l+d WkqRjwJtVBstAFQYxHntBi/66mv/ai8PckX9ROqVPS2CYh5N21YvRC2pOk0DgBWR aSsslutm0ENqUH7zQnTuwsrcqCDgTxgWEeUwzykRzCaSqYN6RD3NLKezlbKES2T9 6NM75nRBN00hN2llCZI776BhYMkAEEkNs4A8AdLs2j1koviLfXXy61Re9Q57HuGT C7R/qQ2pJjoenV5pa6eyoRxsa+M/nZviGRgddJfmbEWoTakEwqvouaPnHI2wlmWU b6ICYNii6rWjjxtdaZD35gVdE+RntI6f8oZYU3rYnSjS3pRiyOoYEqvsmRE= -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:30 2025 by rpki-client