$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa File: 0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa (raw, json) Hash identifier: a528aQzaB89tZ+Nky5VH2B/rCGJyNBR4E5/V9F5/04g= Subject key identifier: DA:B5:72:4F:78:D6:AC:22:68:BD:22:A5:E8:8E:16:5F:A9:06:3F:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28586283A673A867720513F6D5D94A845562476B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa Signing time: Sat 03 May 2025 00:10:20 +0000 ROA not before: Sat 03 May 2025 00:10:20 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.113.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:58:62:83:a6:73:a8:67:72:05:13:f6:d5:d9:4a:84:55:62:47:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:10:20 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=75bc62e4a281853a76f132c50740646dc662d3e548abb3d59d0d348117504d0d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:15:a6:31:52:2f:2a:b0:32:9d:e2:19:cc:d6: c6:73:b7:22:9f:80:5e:ad:10:24:d7:0f:30:32:cf: c5:3c:51:9d:3e:1d:58:6a:cd:57:0c:66:58:67:59: 78:7d:6d:38:2e:55:62:60:ba:3d:de:e9:48:91:1c: 98:8d:ca:9b:43:49:4c:df:37:b3:c8:e9:4f:c4:fb: 81:45:a3:4b:d5:8b:8a:62:35:3e:64:9c:53:de:7c: 35:29:97:94:9d:3a:40:48:b2:b9:4e:2f:1c:9a:bd: 0f:a7:c8:0a:1f:0d:c2:c6:81:5f:90:0a:fa:57:39: 70:54:64:c1:f0:6e:41:e3:ef:5d:3c:42:93:2b:ec: 97:e2:b3:f6:8a:6d:8b:3c:7e:28:c4:2d:63:8a:ee: 36:18:31:94:5f:ba:07:6b:e9:52:e8:39:18:0d:4c: 59:4c:91:b4:0a:5f:bf:b8:03:90:fb:21:0a:a4:fd: e9:f4:22:c5:b5:34:a2:fc:29:f4:8a:a7:4b:06:68: 80:9a:ed:61:30:0d:43:7f:74:7d:04:f8:39:4d:c8: b3:26:79:68:81:26:fd:33:68:bc:c7:93:ea:48:9e: 79:23:bb:e9:bc:c3:d7:bf:f2:30:5b:0d:14:21:2a: d2:73:f6:e9:f7:1f:6e:97:80:a1:3c:7d:e2:1c:c6: b4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B5:72:4F:78:D6:AC:22:68:BD:22:A5:E8:8E:16:5F:A9:06:3F:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.113.224.0/19 Signature Algorithm: sha256WithRSAEncryption 8b:99:2e:b3:0e:83:c3:90:a4:31:d2:6b:5c:5c:b0:1c:37:69: 6b:33:ed:47:38:db:3e:05:c0:80:cb:94:47:9f:a7:92:3e:d7: f9:49:38:ae:8d:ae:b3:03:8b:cf:50:3a:eb:e2:fc:79:bb:6e: 7b:ed:af:c0:1f:bb:da:71:e8:6f:b8:e0:54:2c:2f:0a:2d:51: ba:e3:83:58:bc:15:05:24:66:e5:42:73:e4:fe:82:56:4a:bc: 13:ff:bc:01:b1:d7:1c:fe:9d:b8:34:3b:a3:00:33:82:74:ae: 54:7d:61:7e:58:ec:22:33:45:54:43:e1:6c:cc:bb:2d:5f:8a: a2:d5:8b:7d:85:3f:c4:0f:17:0d:2e:18:1f:53:5c:95:4b:4f: 65:87:53:da:e4:55:f7:03:6c:45:5b:62:c4:fd:0a:d6:a3:6e: 5b:38:11:26:cf:21:a5:35:66:a0:94:6d:a9:44:f5:81:fb:35: 79:f3:13:6c:3f:6a:c0:9b:07:05:e7:ce:72:29:10:6c:57:0a: 41:77:3f:c1:45:68:22:e4:aa:25:c3:5f:2e:65:92:be:57:c1: 45:b4:0f:79:11:90:bf:6e:8e:1d:25:e2:29:27:ab:96:30:d8: b4:95:77:e4:69:a1:fd:d2:24:2c:f8:46:81:ab:5f:55:3c:f7: 6a:40:23:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKFhig6ZzqGdyBRP21dlKhFViR2swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMDIwWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWJjNjJlNGEyODE4NTNhNzZmMTMyYzUwNzQwNjQ2ZGM2 NjJkM2U1NDhhYmIzZDU5ZDBkMzQ4MTE3NTA0ZDBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8FaYxUi8qsDKd4hnM1sZztyKfgF6tECTXDzAyz8U8UZ0+ HVhqzVcMZlhnWXh9bTguVWJguj3e6UiRHJiNyptDSUzfN7PI6U/E+4FFo0vVi4pi NT5knFPefDUpl5SdOkBIsrlOLxyavQ+nyAofDcLGgV+QCvpXOXBUZMHwbkHj7108 QpMr7Jfis/aKbYs8fijELWOK7jYYMZRfugdr6VLoORgNTFlMkbQKX7+4A5D7IQqk /en0IsW1NKL8KfSKp0sGaICa7WEwDUN/dH0E+DlNyLMmeWiBJv0zaLzHk+pInnkj u+m8w9e/8jBbDRQhKtJz9un3H26XgKE8feIcxrQFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2rVyT3jWrCJovSKl6I4WX6kGPxkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlNGQxNGE1LWVhOWQtNDE3NC05YjA1LTM5ZTI5MWM1NjE3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYceAwDQYJKoZIhvcNAQELBQADggEBAIuZLrMOg8OQpDHSa1xcsBw3aWsz 7Uc42z4FwIDLlEefp5I+1/lJOK6NrrMDi89QOuvi/Hm7bnvtr8Afu9px6G+44FQs LwotUbrjg1i8FQUkZuVCc+T+glZKvBP/vAGx1xz+nbg0O6MAM4J0rlR9YX5Y7CIz RVRD4WzMuy1fiqLVi32FP8QPFw0uGB9TXJVLT2WHU9rkVfcDbEVbYsT9Ctajbls4 ESbPIaU1ZqCUbalE9YH7NXnzE2w/asCbBwXnznIpEGxXCkF3P8FFaCLkqiXDXy5l kr5XwUW0D3kRkL9ujh0l4iknq5Yw2LSVd+Rpof3SJCz4RoGrX1U892pAI0k= -----END CERTIFICATE-----Generated at Sat May 10 13:25:44 2025 by rpki-client