$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa File: 08765d1b-0666-44f8-ba33-732d7e392300.roa (raw, json) Hash identifier: oZ2FLcdBM/4uVLqRnWmHL/v+51iG8sR5QHaAO9moxZU= Subject key identifier: 88:63:49:94:DE:2D:39:91:6A:9E:42:CD:BE:49:3F:EB:48:96:31:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3464EC41535C1AE5AAF19E59ECD118B01AECE3CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa Signing time: Fri 09 May 2025 00:11:58 +0000 ROA not before: Fri 09 May 2025 00:11:58 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:64:ec:41:53:5c:1a:e5:aa:f1:9e:59:ec:d1:18:b0:1a:ec:e3:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:11:58 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=e72a5b5bba809220a75a78048922688c76571e3c727f0363ecdf7ae92ca56f17, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:dd:5b:43:af:76:da:1f:86:c4:79:5d:d1: 39:bf:97:86:cf:39:20:da:9c:f4:62:31:83:bd:47: 8b:09:ec:33:c7:f2:3b:55:8a:32:c7:bf:a1:b6:a7: 09:14:13:01:07:73:6f:1d:34:f3:80:6c:05:d9:b5: 31:d3:7d:40:4c:3b:18:b2:6f:a3:4e:ec:55:26:8f: 40:7e:0f:fc:df:8d:9f:7a:97:f4:9f:88:d7:ee:b5: 73:be:1f:cc:b6:db:72:8f:dd:d4:0e:a9:ef:1e:7d: 67:cb:eb:71:cd:7b:75:b6:5c:39:ab:fd:ba:97:be: a6:d8:3e:9a:2d:ae:28:fe:dc:7f:13:b4:cb:4b:77: b6:49:c4:ea:c6:4b:94:8f:b2:cd:15:ef:ad:78:f9: 8d:91:af:f2:90:43:7d:46:e4:68:a8:69:a4:c3:b5: 2d:0f:93:93:99:d9:b7:eb:a0:8e:83:27:4e:e0:d7: 3b:6a:a8:84:54:fd:f2:ee:0f:10:d6:7f:58:a2:de: 6f:16:71:6c:de:b2:1c:c8:fb:3a:ae:8b:6b:ee:d5: bf:9c:8c:e7:d8:6e:86:f7:87:7c:ef:2d:d4:e5:2f: 9e:c8:3b:e4:3c:ab:6b:af:3b:dd:c2:8a:52:c7:7e: ac:7b:ff:7d:bb:22:5a:b7:03:0a:68:fd:f9:40:ef: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:63:49:94:DE:2D:39:91:6A:9E:42:CD:BE:49:3F:EB:48:96:31:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.128.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:6e:f1:92:37:ef:32:74:09:dd:53:c6:06:4e:5a:a1:3d:59: 63:06:f3:1c:ac:d7:51:d8:e8:2f:b8:ff:29:d1:58:f1:01:2d: 3c:40:3e:68:82:0d:64:7f:79:0e:66:bb:a6:5c:45:63:d8:59: 5c:ff:7a:07:6a:8a:06:60:28:ed:ef:6d:19:15:40:f2:e9:98: 99:db:02:e6:b3:72:22:a0:ec:10:e3:8b:f7:4a:9c:1b:63:f7: 31:bf:19:95:00:cb:17:5a:b4:e9:6f:57:c1:b6:5b:93:08:61: 1c:eb:b9:a2:d1:39:48:f8:00:31:8f:c1:2a:a2:ec:08:4f:87: 09:dd:b6:01:5a:14:07:a0:9f:32:8a:26:1c:d8:0c:15:61:f9: a6:b4:dc:a0:ef:ce:af:6d:a7:cd:72:21:6a:50:26:29:4e:d7: 5c:f4:9b:7a:9a:27:96:56:ac:e4:ac:03:0a:89:55:78:49:f1: 77:88:c5:a8:78:fb:1d:9a:74:25:9d:e0:cb:a2:18:75:2e:c8: d0:1c:f4:1b:89:e4:7f:d6:3c:a7:5f:b2:16:a2:bd:0d:ec:7c: 91:48:54:28:ed:54:93:5b:47:5f:5d:b1:5d:0d:2e:51:e4:a8: f5:d8:b2:c7:3a:66:0c:35:47:ec:f3:30:8d:ad:04:2b:dd:f6: 87:42:fd:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNGTsQVNcGuWq8Z5Z7NEYsBrs480wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMTU4WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzJhNWI1YmJhODA5MjIwYTc1YTc4MDQ4OTIyNjg4Yzc2 NTcxZTNjNzI3ZjAzNjNlY2RmN2FlOTJjYTU2ZjE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvQN1bQ6922h+GxHld0Tm/l4bPOSDanPRiMYO9R4sJ7DPH 8jtVijLHv6G2pwkUEwEHc28dNPOAbAXZtTHTfUBMOxiyb6NO7FUmj0B+D/zfjZ96 l/SfiNfutXO+H8y223KP3dQOqe8efWfL63HNe3W2XDmr/bqXvqbYPpotrij+3H8T tMtLd7ZJxOrGS5SPss0V7614+Y2Rr/KQQ31G5GioaaTDtS0Pk5OZ2bfroI6DJ07g 1ztqqIRU/fLuDxDWf1ii3m8WcWzeshzI+zqui2vu1b+cjOfYbob3h3zvLdTlL57I O+Q8q2uvO93CilLHfqx7/327Ilq3Awpo/flA7wovAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiGNJlN4tOZFqnkLNvkk/60iWMVowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4NzY1ZDFiLTA2NjYtNDRmOC1iYTMzLTczMmQ3ZTM5MjMwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SYAwDQYJKoZIhvcNAQELBQADggEBAD9u8ZI37zJ0Cd1TxgZOWqE9WWMG 8xys11HY6C+4/ynRWPEBLTxAPmiCDWR/eQ5mu6ZcRWPYWVz/egdqigZgKO3vbRkV QPLpmJnbAuazciKg7BDji/dKnBtj9zG/GZUAyxdatOlvV8G2W5MIYRzruaLROUj4 ADGPwSqi7AhPhwndtgFaFAegnzKKJhzYDBVh+aa03KDvzq9tp81yIWpQJilO11z0 m3qaJ5ZWrOSsAwqJVXhJ8XeIxah4+x2adCWd4MuiGHUuyNAc9BuJ5H/WPKdfshai vQ3sfJFIVCjtVJNbR19dsV0NLlHkqPXYssc6Zgw1R+zzMI2tBCvd9odC/U8= -----END CERTIFICATE-----Generated at Sun May 11 22:11:16 2025 by rpki-client