$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa File: 1461e263-3943-4fb6-92b2-79e0871e6a7a.roa (raw, json) Hash identifier: f5TdOquKcD16OnXQPFRFk5pVZyaCuZK+fwN4cN/h5x8= Subject key identifier: F6:6D:53:A6:6B:35:A2:AE:95:1C:94:54:D8:3C:34:0E:E7:53:7C:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F8C9421DDC5F39AB6859C541A495D5D9981CE77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa Signing time: Fri 09 May 2025 00:11:04 +0000 ROA not before: Fri 09 May 2025 00:11:04 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8c:94:21:dd:c5:f3:9a:b6:85:9c:54:1a:49:5d:5d:99:81:ce:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:11:04 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=5cb64cf3e81db20af35dcada263f2134b96105746ccdc651d475ae947c9cc774, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5b:ca:9f:c0:1c:44:1d:d7:69:6a:7e:78:fe: 7e:a3:af:72:31:b2:1a:28:62:92:12:8b:d0:a8:c9: 0a:cf:b1:f8:c5:ef:65:49:3f:02:da:10:f8:68:61: 41:d1:73:5d:1b:b3:d3:34:8f:44:c6:08:05:a1:ba: be:bd:88:2a:c2:05:88:84:c2:61:4f:36:fe:12:f8: bd:c6:5f:82:e3:09:ce:ca:50:80:0b:05:4d:c2:9e: 2a:6e:d5:cd:84:c6:cb:1b:25:0b:70:29:29:56:c5: 47:2e:0e:52:86:e7:4e:35:18:93:aa:ce:68:50:54: 29:fe:9f:50:ec:f7:ca:38:65:0c:85:f2:f8:ba:63: d2:b8:e3:80:55:7d:75:5f:c6:37:ac:54:e6:b2:27: c9:5f:5e:bd:61:ec:fa:4d:36:0d:4d:52:ae:ac:c5: 7f:00:61:d6:9e:67:49:0c:12:2e:59:6a:ea:29:95: c0:ff:9d:6f:2b:a1:83:cc:33:df:43:a4:92:d3:f6: 1d:08:ae:d1:36:16:bc:1f:ac:6c:a2:b2:d7:4a:2c: 23:c9:d8:5c:b9:3e:09:46:cc:2c:ea:08:3a:24:af: 95:5f:65:ea:f7:94:35:ba:d7:6b:72:17:6c:fe:33: 0e:92:fd:45:24:a9:87:a8:d7:21:7b:8f:ba:0b:5f: d4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6D:53:A6:6B:35:A2:AE:95:1C:94:54:D8:3C:34:0E:E7:53:7C:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.88.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f2:32:0f:23:8c:e2:21:4d:8f:e3:0e:ff:35:5a:e7:34:ac: ff:11:08:65:7c:8c:e8:c6:a6:f7:9e:01:fe:ec:88:d2:dd:80: e8:93:58:ae:35:80:6a:3a:e6:f9:59:17:27:b2:57:50:d6:04: 78:97:b0:9e:75:2c:f5:17:e5:8c:cb:ce:cf:fc:2c:60:a8:29: 3a:7a:53:75:db:35:d7:7b:91:7f:b1:b6:93:57:ee:41:08:0b: a2:d2:f8:08:ac:73:0f:56:a1:28:2b:fe:93:6d:19:9d:a3:9d: ec:66:29:a7:d1:8e:91:8a:0a:97:a5:1f:3d:81:4d:4f:90:6f: 6f:30:69:de:10:cf:4e:59:ba:75:62:b8:e9:da:ce:a7:2f:8c: 19:d6:42:19:65:bc:77:5b:17:43:39:51:50:ae:35:17:ff:25: a5:8b:4c:77:6a:f3:44:22:be:20:8b:f3:0b:51:22:96:ce:bb: df:e6:92:3c:67:19:f7:48:42:88:c6:40:7d:3c:12:13:bb:30: 29:12:61:09:47:b7:5f:8c:c6:5f:2c:ba:fa:be:2b:9a:08:0d: bc:c2:0b:08:8d:78:3b:0a:af:09:16:84:36:d2:f9:48:25:2d: d2:98:fc:dc:e5:0f:55:b6:9e:72:ac:63:11:46:7e:1e:fc:48: b0:6d:72:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP4yUId3F85q2hZxUGkldXZmBzncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMTA0WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2I2NGNmM2U4MWRiMjBhZjM1ZGNhZGEyNjNmMjEzNGI5 NjEwNTc0NmNjZGM2NTFkNDc1YWU5NDdjOWNjNzc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOW8qfwBxEHddpan54/n6jr3IxshooYpISi9CoyQrPsfjF 72VJPwLaEPhoYUHRc10bs9M0j0TGCAWhur69iCrCBYiEwmFPNv4S+L3GX4LjCc7K UIALBU3Cnipu1c2ExssbJQtwKSlWxUcuDlKG5041GJOqzmhQVCn+n1Ds98o4ZQyF 8vi6Y9K444BVfXVfxjesVOayJ8lfXr1h7PpNNg1NUq6sxX8AYdaeZ0kMEi5Zauop lcD/nW8roYPMM99DpJLT9h0IrtE2FrwfrGyistdKLCPJ2Fy5PglGzCzqCDokr5Vf Zer3lDW612tyF2z+Mw6S/UUkqYeo1yF7j7oLX9SzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9m1Tpms1oq6VHJRU2Dw0DudTfOYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0NjFlMjYzLTM5NDMtNGZiNi05MmIyLTc5ZTA4NzFlNmE3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAK4SFgwDQYJKoZIhvcNAQELBQADggEBAIPyMg8jjOIhTY/jDv81Wuc0rP8R CGV8jOjGpveeAf7siNLdgOiTWK41gGo65vlZFyeyV1DWBHiXsJ51LPUX5YzLzs/8 LGCoKTp6U3XbNdd7kX+xtpNX7kEIC6LS+Aiscw9WoSgr/pNtGZ2jnexmKafRjpGK CpelHz2BTU+Qb28wad4Qz05ZunViuOnazqcvjBnWQhllvHdbF0M5UVCuNRf/JaWL THdq80QiviCL8wtRIpbOu9/mkjxnGfdIQojGQH08EhO7MCkSYQlHt1+Mxl8suvq+ K5oIDbzCCwiNeDsKrwkWhDbS+UglLdKY/NzlD1W2nnKsYxFGfh78SLBtcto= -----END CERTIFICATE-----Generated at Sun May 11 19:07:46 2025 by rpki-client