$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa File: 17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa (raw, json) Hash identifier: Om+sq1bUzEP96kHxzRzQxvLDlD5WWcO7cC34ik3QPs8= Subject key identifier: 1D:17:C3:BA:6A:C2:62:38:18:B9:20:FB:4E:E2:6A:48:BF:86:1F:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51327ACA1CF9EB7B5E40AAEDD15E8C0A88E21EB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa Signing time: Tue 29 Apr 2025 00:21:46 +0000 ROA not before: Tue 29 Apr 2025 00:21:46 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:32:7a:ca:1c:f9:eb:7b:5e:40:aa:ed:d1:5e:8c:0a:88:e2:1e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:46 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=0302cc158913dde0d67552f2151e9dc83f0e44a0c2371f9273e1be922855149d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f1:75:3e:5c:c4:ed:ef:2c:ba:48:e6:dc:d5: 45:6c:3e:0a:8b:bb:87:7b:b2:66:27:12:6d:c7:97: 9d:e8:45:17:fb:86:91:a5:49:03:a4:b6:3f:5e:ad: a9:8f:c0:81:eb:09:77:9c:b4:55:98:27:e9:db:0f: 04:40:72:a7:1a:eb:cc:68:31:cb:73:ee:71:7f:11: 33:38:46:15:ea:c4:ca:a5:44:2d:f1:86:f4:64:87: 6f:a3:85:ce:0f:fa:9f:4b:6d:70:3b:71:8c:3d:a7: 0b:6d:9c:53:fd:f7:a5:1c:8f:ba:2d:89:c0:11:9a: 00:f3:8a:3b:cc:6e:a8:96:39:d4:8b:5a:bf:1a:7e: 58:0c:34:9a:83:fe:23:6a:84:e8:eb:c1:e0:4d:5a: 59:a4:2b:a8:f6:27:ea:76:14:d8:fa:72:cb:70:27: 34:c9:8c:ec:75:c2:b3:c3:da:d0:76:33:b0:c6:7b: 44:f5:1f:a9:cf:fc:54:c9:bd:74:39:eb:c0:a5:9d: dd:3d:4c:03:b4:5c:07:ad:ee:7d:c2:2e:a0:e0:e3: d2:a9:59:cd:7a:1e:46:dc:a7:42:1f:c0:d8:4e:85: 84:6d:c4:4a:cd:77:4b:48:24:8d:f3:da:e2:bd:a8: e8:3a:2d:ee:c9:8a:b3:8d:fc:5b:9f:60:0d:d1:27: 31:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:17:C3:BA:6A:C2:62:38:18:B9:20:FB:4E:E2:6A:48:BF:86:1F:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.160.0/19 Signature Algorithm: sha256WithRSAEncryption 65:87:8e:77:11:af:6b:94:34:a9:9c:8d:07:a2:79:16:90:6f: 42:57:57:39:4b:41:51:6b:c0:de:31:62:2a:a8:db:5d:09:8d: a0:5d:6f:9b:fe:ea:f9:65:f2:d2:dc:6f:2b:aa:36:bf:06:ca: 23:7e:8b:5d:df:d8:78:43:a5:6e:74:00:51:4c:85:0a:b0:de: e6:a7:c3:f4:0f:ec:83:af:2f:a7:90:ce:98:c0:34:6c:7b:bc: 30:dc:ae:48:69:1b:99:70:c0:69:1a:4c:f7:f4:c7:be:40:30: 35:0c:a3:4b:eb:4d:d0:29:f6:76:50:20:cc:fc:39:16:62:39: 0d:da:65:02:e8:7b:6d:ad:45:f2:42:d9:15:81:54:7f:96:3d: fe:2d:0a:10:ed:a9:6c:e8:4b:d7:8f:74:90:ca:47:b3:3b:86: 14:ff:d6:8d:7b:31:b0:db:ae:bf:41:47:ea:6c:47:71:4d:fb: 57:78:75:d9:23:bd:bf:72:09:2a:a5:b4:f9:5c:1f:b1:c7:10: 5b:b2:53:cb:61:02:e6:2a:16:82:b6:35:47:aa:6d:c4:7f:87: b2:5a:e8:3b:3f:6b:0e:0e:10:53:dd:44:11:88:ad:08:19:cc: 76:73:a0:21:06:a4:08:d3:89:18:0a:60:22:89:44:c1:78:17: 42:fb:02:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUTJ6yhz563teQKrt0V6MCojiHrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMTQ2WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzAyY2MxNTg5MTNkZGUwZDY3NTUyZjIxNTFlOWRjODNm MGU0NGEwYzIzNzFmOTI3M2UxYmU5MjI4NTUxNDlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc8XU+XMTt7yy6SObc1UVsPgqLu4d7smYnEm3Hl53oRRf7 hpGlSQOktj9eramPwIHrCXectFWYJ+nbDwRAcqca68xoMctz7nF/ETM4RhXqxMql RC3xhvRkh2+jhc4P+p9LbXA7cYw9pwttnFP996Ucj7oticARmgDzijvMbqiWOdSL Wr8aflgMNJqD/iNqhOjrweBNWlmkK6j2J+p2FNj6cstwJzTJjOx1wrPD2tB2M7DG e0T1H6nP/FTJvXQ568Clnd09TAO0XAet7n3CLqDg49KpWc16Hkbcp0IfwNhOhYRt xErNd0tIJI3z2uK9qOg6Le7JirON/FufYA3RJzGbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHRfDumrCYjgYuSD7TuJqSL+GH6kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3MzkyY2FjLTJmZmEtNGJiZS1iMjliLTQ4YjBkYzM3NWI1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVCmKAwDQYJKoZIhvcNAQELBQADggEBAGWHjncRr2uUNKmcjQeieRaQb0JX VzlLQVFrwN4xYiqo210JjaBdb5v+6vll8tLcbyuqNr8GyiN+i13f2HhDpW50AFFM hQqw3uanw/QP7IOvL6eQzpjANGx7vDDcrkhpG5lwwGkaTPf0x75AMDUMo0vrTdAp 9nZQIMz8ORZiOQ3aZQLoe22tRfJC2RWBVH+WPf4tChDtqWzoS9ePdJDKR7M7hhT/ 1o17MbDbrr9BR+psR3FN+1d4ddkjvb9yCSqltPlcH7HHEFuyU8thAuYqFoK2NUeq bcR/h7Ja6Ds/aw4OEFPdRBGIrQgZzHZzoCEGpAjTiRgKYCKJRMF4F0L7ApI= -----END CERTIFICATE-----Generated at Sun May 11 04:08:27 2025 by rpki-client