$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa File: 1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa (raw, json) Hash identifier: kzWvaLcZZcLwrnsJ+Muxdt2Tc3KOXDLLVCQBQFkS00Y= Subject key identifier: CE:34:D4:D6:8B:00:3C:35:ED:E2:34:B0:52:A4:6F:D2:A0:6E:33:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 679DD74AEA5BC2D10E252CAB93B011A40DD951BA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa Signing time: Sat 03 May 2025 00:01:14 +0000 ROA not before: Sat 03 May 2025 00:01:14 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9d:d7:4a:ea:5b:c2:d1:0e:25:2c:ab:93:b0:11:a4:0d:d9:51:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:01:14 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=bab706383cb8e12f9af07465cdb9ff2d3b9e9c4d480a75771157598ed1f7ea11, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:96:8a:68:82:28:44:74:64:1d:83:de:7e: 28:70:c4:40:fa:4a:3e:1a:95:38:c9:44:ec:1d:9d: e6:49:aa:f9:6b:ab:34:7b:da:4b:d2:b4:46:02:c7: dd:cd:7d:4b:cd:76:32:9f:2d:68:9c:4d:a5:cb:d7: 92:75:75:db:3e:8e:52:00:38:dd:12:c4:da:6d:49: 9f:d0:e1:5d:8e:0f:37:86:48:ab:63:8a:4e:57:fb: 98:14:fe:d0:a7:6b:0e:83:5d:0d:d0:4c:19:f5:da: 64:6d:76:36:23:fe:47:80:54:dc:00:89:15:b5:09: d6:30:50:66:28:07:a7:62:a9:65:32:c1:55:c1:ad: d3:8b:cf:cb:0b:4d:5a:72:6b:be:c0:84:eb:bf:b9: 2c:4d:af:04:82:3f:d8:63:6f:a7:9d:e7:b6:87:72: a5:bc:fc:2d:c6:2e:7b:22:b1:ab:e3:f6:09:a4:87: 60:6d:0b:a9:91:bc:01:7d:54:bc:63:69:51:b6:20: 21:b4:d7:9d:2f:07:23:6c:64:66:1a:69:7e:13:87: 7c:dc:57:dd:91:c8:29:ad:30:1d:62:db:3a:7c:3c: 19:34:bc:c9:52:a7:cb:d4:d6:e3:2e:59:a4:51:b7: fa:47:ec:02:d8:ba:ca:5b:ee:bb:45:f5:db:3f:10: be:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:34:D4:D6:8B:00:3C:35:ED:E2:34:B0:52:A4:6F:D2:A0:6E:33:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8a:ed:94:67:26:c6:34:07:32:46:7c:fb:51:1f:dd:99:be:b4: cc:78:13:af:35:c6:ef:72:91:9c:9c:f1:52:d0:f8:9c:5e:ab: 64:53:a6:f3:1d:92:84:3d:df:fe:9a:47:95:59:92:46:b4:aa: d1:e7:33:85:22:f9:fa:7c:08:7f:8d:6d:9a:a0:ac:cb:d3:a1: 95:57:21:8d:6a:67:34:61:77:0b:f3:8a:51:6e:bd:8b:4b:9a: a1:f7:6f:3b:ab:02:8a:f9:5d:d0:a4:5e:7c:cd:91:68:0b:61: d0:fb:1d:d1:e2:47:da:87:72:dc:8d:31:c2:c7:49:2f:bc:48: 9a:f3:0d:8f:62:f6:fc:dc:f9:bf:a9:45:74:11:a7:95:10:66: 00:85:08:a6:65:03:bb:d7:2c:aa:dd:37:a7:59:78:91:60:91: 0f:72:b2:e4:65:43:7d:03:e4:d7:77:bb:24:f7:c7:db:e7:48: fa:7f:7b:bb:ab:01:ee:c6:38:cb:62:c0:1a:b6:77:99:f5:38: 88:98:93:56:13:88:1c:3c:a0:09:f7:d3:30:21:e9:4e:2e:95: 21:c8:e5:b0:1d:c1:1e:a0:d5:9e:b7:d5:cb:70:86:a2:d2:c7: d0:ba:3c:fb:c0:79:55:5d:cb:c9:c6:6c:83:65:e7:5f:f6:1a: ea:80:25:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ53XSupbwtEOJSyrk7ARpA3ZUbowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAwMTE0WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWI3MDYzODNjYjhlMTJmOWFmMDc0NjVjZGI5ZmYyZDNi OWU5YzRkNDgwYTc1NzcxMTU3NTk4ZWQxZjdlYTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHFpaKaIIoRHRkHYPefihwxED6Sj4alTjJROwdneZJqvlr qzR72kvStEYCx93NfUvNdjKfLWicTaXL15J1dds+jlIAON0SxNptSZ/Q4V2ODzeG SKtjik5X+5gU/tCnaw6DXQ3QTBn12mRtdjYj/keAVNwAiRW1CdYwUGYoB6diqWUy wVXBrdOLz8sLTVpya77AhOu/uSxNrwSCP9hjb6ed57aHcqW8/C3GLnsisavj9gmk h2BtC6mRvAF9VLxjaVG2ICG0150vByNsZGYaaX4Th3zcV92RyCmtMB1i2zp8PBk0 vMlSp8vU1uMuWaRRt/pH7ALYuspb7rtF9ds/EL4JAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzjTU1osAPDXt4jSwUqRv0qBuM+cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1MDBiOWZkLTQ1MjktNGNkNC04MzYyLTJmOGI5OWI5ZDlhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPvzANBgkqhkiG9w0BAQsFAAOCAQEAiu2UZybGNAcyRnz7UR/dmb60zHgT rzXG73KRnJzxUtD4nF6rZFOm8x2ShD3f/ppHlVmSRrSq0eczhSL5+nwIf41tmqCs y9OhlVchjWpnNGF3C/OKUW69i0uaofdvO6sCivld0KRefM2RaAth0Psd0eJH2ody 3I0xwsdJL7xImvMNj2L2/Nz5v6lFdBGnlRBmAIUIpmUDu9csqt03p1l4kWCRD3Ky 5GVDfQPk13e7JPfH2+dI+n97u6sB7sY4y2LAGrZ3mfU4iJiTVhOIHDygCffTMCHp Ti6VIcjlsB3BHqDVnrfVy3CGotLH0Lo8+8B5VV3LycZsg2XnX/Ya6oAl/w== -----END CERTIFICATE-----Generated at Sun May 11 22:36:21 2025 by rpki-client