$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14c4e7a7-8562-4d0f-abae-93619bdf103a.roa File: 14c4e7a7-8562-4d0f-abae-93619bdf103a.roa (raw, json) Hash identifier: 2Q5hNXYt9LplfWqLvg0GEUFH8gN/tcfnZQ8tQt8tkLo= Subject key identifier: C7:9C:77:96:5A:EF:F8:1A:0D:F0:A2:74:36:C7:EC:17:81:97:D4:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DBBA9CA7C19E3871992E99D05A09F4021EE10F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14c4e7a7-8562-4d0f-abae-93619bdf103a.roa Signing time: Sat 03 May 2025 00:40:29 +0000 ROA not before: Sat 03 May 2025 00:40:29 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.238.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:bb:a9:ca:7c:19:e3:87:19:92:e9:9d:05:a0:9f:40:21:ee:10:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:40:29 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=4923fe62b747da14bfc07613d6c610ce2b2fee5e22c377edd9a182418655faa6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:47:13:21:c6:18:22:dd:40:01:5d:e5:d7:3f: 7a:cd:49:28:03:1d:b5:8b:ef:98:3d:39:2b:15:a7: cc:26:b6:ed:25:a9:00:57:5c:91:e5:a8:6f:97:d2: 88:d8:5d:b8:a6:8a:e3:32:ed:bd:47:09:10:7f:82: e9:3f:38:0e:8c:a3:1b:d4:61:c4:90:89:4e:4e:7b: 02:7f:c9:a2:37:1a:5e:7d:44:6d:aa:68:4c:57:1f: f9:fe:57:ed:7c:a7:ac:b8:27:1a:27:bf:28:84:60: 7d:c3:b0:ec:5c:42:39:65:ec:a8:21:a5:a8:c8:76: d5:03:82:f2:e7:24:7f:f8:6c:89:67:fc:bf:6d:81: 6b:16:ef:87:c3:ee:4c:16:37:24:58:8b:fc:dd:eb: c4:88:9b:59:ba:7e:61:db:70:e6:80:cf:56:8d:34: cc:e4:7f:61:df:16:b0:51:4c:91:96:0a:eb:99:06: ef:b0:06:14:fe:78:2f:4e:1a:94:94:e9:2f:e1:cd: 74:92:02:55:2b:59:4d:5e:e4:88:8d:91:91:43:21: eb:3f:57:39:93:91:6c:88:75:2a:cd:a7:a1:16:a0: b6:d8:7d:94:77:22:93:d7:9f:74:4f:89:6b:9f:fd: f0:c0:ee:04:b6:df:7c:b1:e1:d1:87:17:a4:cf:83: f0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9C:77:96:5A:EF:F8:1A:0D:F0:A2:74:36:C7:EC:17:81:97:D4:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14c4e7a7-8562-4d0f-abae-93619bdf103a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.238.0.0/18 Signature Algorithm: sha256WithRSAEncryption ab:7b:1e:27:10:24:bc:b4:d8:3c:66:be:da:48:03:9f:53:d1: b5:1c:e8:0c:29:8a:2e:7b:22:9a:b1:ff:20:e4:e7:98:a7:2b: 9e:dc:c5:87:5f:d1:bc:9f:2f:f7:f6:b8:20:04:54:8b:f4:95: de:46:b9:d2:0f:b2:38:cf:26:fe:fd:9d:d4:73:0d:60:26:1c: 86:dd:66:4e:8b:55:90:c6:09:2a:e9:45:a7:df:ab:55:0b:dc: 11:30:48:9c:58:a4:8e:79:64:e3:37:87:15:cb:dc:19:bd:14: 6a:b7:ec:ed:9c:95:c8:c0:f2:c2:40:4c:e7:a8:b7:1e:ed:1c: f6:04:35:bb:1e:dc:9a:24:8d:57:f6:99:e5:60:2e:d5:b4:e8: b4:b2:02:c3:e9:17:fb:2b:de:93:e6:4d:ad:32:0b:2d:44:25: 19:74:26:01:91:cb:f2:4a:88:6a:67:5f:90:20:ca:31:7f:07: 81:3a:6b:21:18:9b:93:a3:2f:3c:ae:18:17:23:55:86:50:39: 1f:05:bb:38:32:10:e6:a4:ba:ca:a3:64:cd:b1:b4:18:ad:07: eb:0f:58:eb:b2:a8:5b:cf:ad:10:da:a8:a0:5e:a2:03:f5:02: 1d:64:80:25:b8:29:db:30:04:09:f8:a4:47:2a:85:7c:5d:1e: a0:2b:7f:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfbupynwZ44cZkumdBaCfQCHuEPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MDI5WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTIzZmU2MmI3NDdkYTE0YmZjMDc2MTNkNmM2MTBjZTJi MmZlZTVlMjJjMzc3ZWRkOWExODI0MTg2NTVmYWE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfRxMhxhgi3UABXeXXP3rNSSgDHbWL75g9OSsVp8wmtu0l qQBXXJHlqG+X0ojYXbimiuMy7b1HCRB/guk/OA6MoxvUYcSQiU5OewJ/yaI3Gl59 RG2qaExXH/n+V+18p6y4JxonvyiEYH3DsOxcQjll7KghpajIdtUDgvLnJH/4bIln /L9tgWsW74fD7kwWNyRYi/zd68SIm1m6fmHbcOaAz1aNNMzkf2HfFrBRTJGWCuuZ Bu+wBhT+eC9OGpSU6S/hzXSSAlUrWU1e5IiNkZFDIes/VzmTkWyIdSrNp6EWoLbY fZR3IpPXn3RPiWuf/fDA7gS233yx4dGHF6TPg/BnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx5x3llrv+BoN8KJ0NsfsF4GX1FQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0YzRlN2E3LTg1NjItNGQwZi1hYmFlLTkzNjE5YmRmMTAzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM7gAwDQYJKoZIhvcNAQELBQADggEBAKt7HicQJLy02DxmvtpIA59T0bUc 6Awpii57Ipqx/yDk55inK57cxYdf0byfL/f2uCAEVIv0ld5GudIPsjjPJv79ndRz DWAmHIbdZk6LVZDGCSrpRaffq1UL3BEwSJxYpI55ZOM3hxXL3Bm9FGq37O2clcjA 8sJATOeotx7tHPYENbse3JokjVf2meVgLtW06LSyAsPpF/sr3pPmTa0yCy1EJRl0 JgGRy/JKiGpnX5AgyjF/B4E6ayEYm5OjLzyuGBcjVYZQOR8FuzgyEOakusqjZM2x tBitB+sPWOuyqFvPrRDaqKBeogP1Ah1kgCW4KdswBAn4pEcqhXxdHqArf9I= -----END CERTIFICATE-----Generated at Mon May 5 05:49:21 2025 by rpki-client