$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa File: 0dc2871e-4870-49a7-8242-56cfe0f652d5.roa (raw, json) Hash identifier: l+WlElRL9nIX3O1aNt/1z0F9/2XgVoXBAssVhcjjPnY= Subject key identifier: 1C:0F:75:1F:23:4E:82:DE:01:93:BF:41:B5:9C:50:10:AF:6E:00:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D3A0E2EA0418D87F0351FA5BD69616E6843888F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa Signing time: Wed 09 Apr 2025 00:22:09 +0000 ROA not before: Wed 09 Apr 2025 00:22:09 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:3a:0e:2e:a0:41:8d:87:f0:35:1f:a5:bd:69:61:6e:68:43:88:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:22:09 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=3839041d1f0497fabc3928913b129c82d42f6cad0b35bb22406c2b2282864355, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3f:16:2d:7f:6d:22:cb:b2:15:7e:20:f0:56: 35:00:38:93:0f:b0:c8:f2:b2:db:8e:2c:34:5a:17: 85:23:eb:9b:6c:23:dc:80:4b:2b:d0:b2:66:c7:3e: 86:45:83:9b:c2:93:c3:d2:8a:29:00:2f:1e:94:b4: 05:43:81:55:bf:a1:c9:0b:68:c8:68:cb:57:8b:3a: 21:7b:bf:6c:88:bc:16:e3:f1:f6:42:cf:8c:7e:60: cd:ea:90:6b:24:41:15:ab:cc:60:9c:6c:be:8c:0f: c2:8c:9c:9b:4d:6d:94:30:01:9a:e1:af:64:c4:4c: b3:56:b7:18:a5:bc:91:74:ac:bb:ce:0f:c7:db:b3: 29:c0:b3:e4:eb:ca:74:8d:d9:4a:34:b1:85:1d:1b: 44:9f:5a:e9:f7:c1:cc:bc:f1:eb:5b:3c:f4:16:97: a1:1e:5e:7c:2a:11:93:07:6a:d6:75:8b:17:21:1d: 71:c2:6f:e7:c8:d2:92:78:a7:30:a5:45:bc:9f:86: 4b:2e:5c:c0:46:76:7f:ea:15:da:c6:b8:11:09:4c: d2:f6:1c:2f:5d:bd:62:6b:68:3b:ba:dc:12:4e:3c: 51:b5:26:cd:b6:09:53:98:55:cb:16:b6:34:80:d6: b0:ec:0e:96:9a:b8:1c:47:38:90:81:04:dd:d9:ac: 85:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:0F:75:1F:23:4E:82:DE:01:93:BF:41:B5:9C:50:10:AF:6E:00:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:4c:c0:4a:32:40:6a:48:68:8d:d2:81:68:70:31:e8:17:7c: fc:38:fc:d1:ac:71:73:5e:ac:0c:58:f0:5e:b2:1b:43:96:ff: 6c:63:66:31:e2:d2:e2:27:52:43:b1:bc:ed:af:fc:75:b1:1c: 02:4a:d4:b4:21:15:9b:10:91:92:93:f0:15:a4:93:c9:f2:60: 0c:7a:42:f0:5f:99:8b:aa:ae:25:24:16:cb:b9:05:da:d2:dc: 06:54:24:06:14:1f:fb:91:2e:96:09:ed:cf:67:62:87:65:bd: be:71:92:c9:cf:f2:92:1f:a0:41:f3:03:de:0a:d7:c4:89:27: d3:30:61:96:6b:99:df:ae:13:64:56:1c:2d:14:3c:f0:41:dd: c4:8f:fc:73:b4:b7:fb:24:a7:d6:e7:55:15:4a:b4:fc:20:28: 82:06:4b:a9:c9:55:a7:b2:a2:6d:b4:5e:1d:52:dd:74:66:87: 36:37:cc:08:f6:89:18:ee:95:51:56:54:ec:cb:0c:ae:cd:1c: 54:dd:45:aa:b3:59:bf:80:47:ee:b6:f6:23:a0:ad:ea:24:2e: ac:af:78:3e:74:f0:d5:65:fb:d0:3b:1c:bf:a8:77:df:10:c4: 77:c3:a6:96:6f:dc:03:97:9f:81:9f:9a:74:f0:36:1c:94:20: 37:96:48:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbToOLqBBjYfwNR+lvWlhbmhDiI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAyMjA5WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODM5MDQxZDFmMDQ5N2ZhYmMzOTI4OTEzYjEyOWM4MmQ0 MmY2Y2FkMGIzNWJiMjI0MDZjMmIyMjgyODY0MzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlPxYtf20iy7IVfiDwVjUAOJMPsMjystuOLDRaF4Uj65ts I9yASyvQsmbHPoZFg5vCk8PSiikALx6UtAVDgVW/ockLaMhoy1eLOiF7v2yIvBbj 8fZCz4x+YM3qkGskQRWrzGCcbL6MD8KMnJtNbZQwAZrhr2TETLNWtxilvJF0rLvO D8fbsynAs+TrynSN2Uo0sYUdG0SfWun3wcy88etbPPQWl6EeXnwqEZMHatZ1ixch HXHCb+fI0pJ4pzClRbyfhksuXMBGdn/qFdrGuBEJTNL2HC9dvWJraDu63BJOPFG1 Js22CVOYVcsWtjSA1rDsDpaauBxHOJCBBN3ZrIUHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHA91HyNOgt4Bk79BtZxQEK9uADIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkYzI4NzFlLTQ4NzAtNDlhNy04MjQyLTU2Y2ZlMGY2NTJkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoqDANBgkqhkiG9w0BAQsFAAOCAQEA1kzASjJAakhojdKBaHAx6Bd8/Dj8 0axxc16sDFjwXrIbQ5b/bGNmMeLS4idSQ7G87a/8dbEcAkrUtCEVmxCRkpPwFaST yfJgDHpC8F+Zi6quJSQWy7kF2tLcBlQkBhQf+5Eulgntz2dih2W9vnGSyc/ykh+g QfMD3grXxIkn0zBhlmuZ364TZFYcLRQ88EHdxI/8c7S3+ySn1udVFUq0/CAoggZL qclVp7KibbReHVLddGaHNjfMCPaJGO6VUVZU7MsMrs0cVN1FqrNZv4BH7rb2I6Ct 6iQurK94PnTw1WX70Dscv6h33xDEd8Omlm/cA5efgZ+adPA2HJQgN5ZICg== -----END CERTIFICATE-----Generated at Mon May 5 05:50:58 2025 by rpki-client