$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef58881-4ef4-452a-8846-08d42ca42c0e.roa File: 0ef58881-4ef4-452a-8846-08d42ca42c0e.roa (raw, json) Hash identifier: MoIun9rO5zG425sN4HPUneaXRyKZAa/qNgpJGfOGJhI= Subject key identifier: B8:26:CE:22:FC:52:EA:AC:CB:1F:FB:6B:BF:E7:CA:B4:A8:06:A4:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D4F2E83B824D7E02F30CAF9EBB19C396CE7F909 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef58881-4ef4-452a-8846-08d42ca42c0e.roa Signing time: Fri 02 May 2025 00:21:19 +0000 ROA not before: Fri 02 May 2025 00:21:19 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.83.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4f:2e:83:b8:24:d7:e0:2f:30:ca:f9:eb:b1:9c:39:6c:e7:f9:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:21:19 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=32c9d1a3f07ce0f0400ab76fc4b226c92517bc80b3430c904fa5ec007e83c6f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:db:76:ea:89:06:a2:4c:56:22:36:ea:af:03: d5:1c:a4:7d:36:6b:03:28:60:e1:9f:61:1a:f5:8f: 38:02:0e:01:48:fa:2b:f0:be:73:1f:8d:4c:a4:3b: 5f:1b:55:a5:12:6c:45:0f:27:de:ed:2b:7f:99:70: ae:30:15:64:86:4c:dd:d5:d3:67:a7:e5:45:0b:4c: e0:fc:2f:44:b4:dd:ad:30:21:b8:ee:39:71:f2:f1: f9:80:b1:c9:0a:d9:85:a0:3a:cd:16:fe:69:7d:5e: cc:ae:62:8f:c4:50:b9:f3:a4:e7:74:a7:0d:c8:fb: 67:a0:f8:3d:19:ab:2c:03:67:ed:79:c0:05:c8:e9: ef:54:cc:75:ef:7a:ec:96:cd:5a:7e:1c:64:de:32: c4:e3:81:81:5d:68:99:3e:71:d2:41:e4:d0:e2:8c: 0e:bd:17:70:65:1f:a3:5b:7a:ed:46:5b:17:71:d7: fd:35:f1:a3:bc:22:8a:f8:02:05:b2:fe:87:9e:df: 06:fd:94:5e:da:d5:51:87:fd:b9:1a:cf:c1:76:3c: 24:64:60:f2:b8:b6:64:ed:98:9c:52:48:9a:d3:25: 52:c5:05:db:ad:5a:2d:a8:76:52:60:07:6b:cb:12: 9f:dc:81:af:95:9c:bb:4e:2b:2e:aa:a1:b0:0f:0e: 64:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:26:CE:22:FC:52:EA:AC:CB:1F:FB:6B:BF:E7:CA:B4:A8:06:A4:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef58881-4ef4-452a-8846-08d42ca42c0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:0f:81:e0:a9:91:a6:77:4b:9a:7b:58:35:57:63:0b:a9:e9: 6b:9a:eb:ab:e3:3e:ae:63:b9:cb:2c:65:ba:b5:85:28:fe:6b: 77:8e:4a:56:ae:27:0e:77:b1:33:89:37:b4:ca:0b:9d:54:32: 2e:67:ba:a2:18:1d:d2:10:d1:1f:21:b7:15:ed:ee:33:a8:d7: 14:30:07:c6:82:48:11:c3:63:43:52:f3:a4:1c:38:ec:15:a8: 5b:39:ed:0f:80:f8:fa:b8:63:57:01:f0:10:23:ea:a8:06:bc: a4:c6:13:b7:92:0e:fe:86:4a:8b:58:d6:ef:55:e5:cc:5f:40: 74:c3:99:83:f4:e5:eb:d5:a3:06:4f:e3:ff:3c:94:1c:9c:13: 13:c2:b1:78:08:e5:ef:35:07:61:93:f8:16:63:79:a3:c8:37: 78:ba:5e:c9:fe:0c:9c:66:d8:6d:44:d4:43:ad:09:78:9e:a1: 78:9b:52:f7:35:09:56:80:00:11:a8:73:f3:a0:30:31:c0:20: 50:72:8b:84:51:86:d8:a7:83:1a:05:a3:63:cf:c2:42:2d:75: de:90:8d:c0:49:36:c7:a5:47:12:13:73:f0:5d:0f:67:ec:8d: 7a:64:dd:9f:02:db:f7:e9:0a:25:71:53:4a:72:6d:15:14:18: 9a:1b:72:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTU8ug7gk1+AvMMr567GcOWzn+QkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAyMTE5WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmM5ZDFhM2YwN2NlMGYwNDAwYWI3NmZjNGIyMjZjOTI1 MTdiYzgwYjM0MzBjOTA0ZmE1ZWMwMDdlODNjNmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI23bqiQaiTFYiNuqvA9UcpH02awMoYOGfYRr1jzgCDgFI +ivwvnMfjUykO18bVaUSbEUPJ97tK3+ZcK4wFWSGTN3V02en5UULTOD8L0S03a0w IbjuOXHy8fmAsckK2YWgOs0W/ml9XsyuYo/EULnzpOd0pw3I+2eg+D0ZqywDZ+15 wAXI6e9UzHXveuyWzVp+HGTeMsTjgYFdaJk+cdJB5NDijA69F3BlH6Nbeu1GWxdx 1/018aO8Ior4AgWy/oee3wb9lF7a1VGH/bkaz8F2PCRkYPK4tmTtmJxSSJrTJVLF BdutWi2odlJgB2vLEp/cga+VnLtOKy6qobAPDmQjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuCbOIvxS6qzLH/trv+fKtKgGpCQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZjU4ODgxLTRlZjQtNDUyYS04ODQ2LTA4ZDQyY2E0MmMwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUzANBgkqhkiG9w0BAQsFAAOCAQEAVA+B4KmRpndLmntYNVdjC6npa5rr q+M+rmO5yyxlurWFKP5rd45KVq4nDnexM4k3tMoLnVQyLme6ohgd0hDRHyG3Fe3u M6jXFDAHxoJIEcNjQ1LzpBw47BWoWzntD4D4+rhjVwHwECPqqAa8pMYTt5IO/oZK i1jW71XlzF9AdMOZg/Tl69WjBk/j/zyUHJwTE8KxeAjl7zUHYZP4FmN5o8g3eLpe yf4MnGbYbUTUQ60JeJ6heJtS9zUJVoAAEahz86AwMcAgUHKLhFGG2KeDGgWjY8/C Qi113pCNwEk2x6VHEhNz8F0PZ+yNemTdnwLb9+kKJXFTSnJtFRQYmhtyaQ== -----END CERTIFICATE-----Generated at Sat May 10 20:52:58 2025 by rpki-client