$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa File: 0f893b02-709b-4a20-ab74-f859a710b1be.roa (raw, json) Hash identifier: gOj7XtKMmokq2v97IOqJP7j7VI/O1Vq8Is/xSL+jUYs= Subject key identifier: F0:DB:90:49:B2:82:A6:9F:BA:2A:9D:AA:CE:A8:E9:B6:18:0A:0B:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BE0CA64EF2765A6132D303818709BC9F372D41A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa Signing time: Tue 29 Apr 2025 00:10:13 +0000 ROA not before: Tue 29 Apr 2025 00:10:13 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:e0:ca:64:ef:27:65:a6:13:2d:30:38:18:70:9b:c9:f3:72:d4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:10:13 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=a8456eb47c9e059f05bd5f7c785e248f0a2141b0ac5b446c246c473c13b96d6c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:a4:19:1f:ee:0c:37:8f:c0:98:65:76:3e: ea:62:75:fa:3c:ad:d0:77:ad:95:35:03:73:c5:c7: 52:82:34:23:e3:65:50:99:e1:3f:7b:0a:49:1d:9e: 4f:c1:96:7c:97:31:33:30:85:d2:62:9f:c1:3a:78: c0:f8:4f:4f:7a:bf:6f:81:ef:61:bb:62:d5:a9:dd: 61:df:5a:62:14:38:5b:3a:7c:f8:96:74:cb:c4:b0: c9:b9:72:38:34:42:52:38:b1:42:9d:d1:2d:27:7b: db:80:84:fc:e8:dd:d7:46:3c:e7:3c:3c:bc:89:f8: e0:e8:8a:a5:63:97:a1:14:86:2b:cc:df:15:3c:26: ac:bd:7d:fe:35:35:59:08:a0:45:02:90:63:12:8b: 84:7c:0d:81:a3:ea:c1:1d:79:0f:f5:fb:a0:17:64: d4:03:6d:7b:3b:a4:1a:22:4e:00:ec:e3:10:ed:a8: 59:4f:4b:64:1e:a8:49:b9:75:6f:52:67:fc:54:bc: 64:3b:60:31:5c:33:c2:79:36:fe:12:5c:50:cc:5a: 9f:3d:51:75:0d:d8:92:e9:48:a2:ac:e3:aa:45:62: 47:af:cc:a0:bb:18:4b:59:f2:c0:23:a2:0d:2f:0f: d7:9a:a0:80:c8:fb:cb:0b:ab:0f:9d:2d:3f:a7:a3: d5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DB:90:49:B2:82:A6:9F:BA:2A:9D:AA:CE:A8:E9:B6:18:0A:0B:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption 49:d7:e3:54:84:bc:6e:90:de:80:c0:72:5b:c7:d6:23:13:1f: 03:ca:87:75:27:67:78:f3:16:70:87:cb:7b:50:04:72:91:43: a3:4b:8c:fd:60:e4:d1:83:00:bc:9c:81:a7:86:68:4c:ba:c8: 2d:28:82:1a:47:f7:96:70:09:94:1d:b6:22:1f:fd:cc:60:a3: 06:0b:3a:74:e6:1c:7c:88:b1:7e:50:7c:2a:76:e6:a2:56:be: 5c:40:17:91:94:1a:56:9a:36:cc:2f:56:f2:3a:c3:94:db:56: 34:9c:6b:08:75:5b:e5:77:82:94:7f:54:71:32:7f:97:60:5c: 2d:c6:f5:31:5e:7b:e7:59:fa:9e:65:62:55:a6:43:04:17:9f: 71:c8:13:24:25:73:86:42:d1:94:70:c2:ec:1b:28:2d:98:ab: d1:38:f4:dd:d5:df:e8:c2:72:31:dd:8c:24:52:c0:01:7a:12: d4:2a:3b:ec:82:92:55:a3:c4:9b:4a:0b:92:d5:1e:43:56:35: 04:44:1f:09:c0:05:70:5a:f3:34:04:ea:7c:f5:ef:1b:87:6d: cb:6a:41:48:47:5d:d8:be:69:95:be:3b:90:f9:e9:4b:70:a5: 45:a8:da:01:ca:87:78:b5:8c:cf:1d:ff:ac:10:d2:ef:32:e9: 04:97:b8:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe+DKZO8nZaYTLTA4GHCbyfNy1BowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMDEzWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODQ1NmViNDdjOWUwNTlmMDViZDVmN2M3ODVlMjQ4ZjBh MjE0MWIwYWM1YjQ0NmMyNDZjNDczYzEzYjk2ZDZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9U6QZH+4MN4/AmGV2Pupidfo8rdB3rZU1A3PFx1KCNCPj ZVCZ4T97Ckkdnk/BlnyXMTMwhdJin8E6eMD4T096v2+B72G7YtWp3WHfWmIUOFs6 fPiWdMvEsMm5cjg0QlI4sUKd0S0ne9uAhPzo3ddGPOc8PLyJ+ODoiqVjl6EUhivM 3xU8Jqy9ff41NVkIoEUCkGMSi4R8DYGj6sEdeQ/1+6AXZNQDbXs7pBoiTgDs4xDt qFlPS2QeqEm5dW9SZ/xUvGQ7YDFcM8J5Nv4SXFDMWp89UXUN2JLpSKKs46pFYkev zKC7GEtZ8sAjog0vD9eaoIDI+8sLqw+dLT+no9VJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8NuQSbKCpp+6Kp2qzqjpthgKC6cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODkzYjAyLTcwOWItNGEyMC1hYjc0LWY4NTlhNzEwYjFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgEAwDQYJKoZIhvcNAQELBQADggEBAEnX41SEvG6Q3oDAclvH1iMTHwPK h3UnZ3jzFnCHy3tQBHKRQ6NLjP1g5NGDALycgaeGaEy6yC0oghpH95ZwCZQdtiIf /cxgowYLOnTmHHyIsX5QfCp25qJWvlxAF5GUGlaaNswvVvI6w5TbVjScawh1W+V3 gpR/VHEyf5dgXC3G9TFee+dZ+p5lYlWmQwQXn3HIEyQlc4ZC0ZRwwuwbKC2Yq9E4 9N3V3+jCcjHdjCRSwAF6EtQqO+yCklWjxJtKC5LVHkNWNQREHwnABXBa8zQE6nz1 7xuHbctqQUhHXdi+aZW+O5D56UtwpUWo2gHKh3i1jM8d/6wQ0u8y6QSXuKU= -----END CERTIFICATE-----Generated at Sun May 11 09:37:00 2025 by rpki-client