$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa File: 1c928d8f-5fa6-47d3-8912-a67751764ad7.roa (raw, json) Hash identifier: CtrAyspbD7ti2LHbt1ULZv53hdkm1eVPtMVKOemVNNc= Subject key identifier: 80:45:24:68:C0:41:02:FE:9B:D4:3B:E5:07:2A:7A:64:4B:07:16:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E1EB631F87199EE4FE1246E93311A8F4056CB5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa Signing time: Tue 06 May 2025 00:10:19 +0000 ROA not before: Tue 06 May 2025 00:10:19 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1e:b6:31:f8:71:99:ee:4f:e1:24:6e:93:31:1a:8f:40:56:cb:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:10:19 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=383935052820ac9f2e29f26e888e5a39f5ad7913acd7714d2e6dc0a518a391bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a6:ae:2f:bc:4b:a1:df:79:7c:b4:74:90:7a: 7d:f4:20:af:cf:10:27:70:6d:8e:38:c3:00:b9:62: b6:40:35:6a:8b:6c:fd:01:c3:c2:bd:8a:a7:0e:96: a6:5d:9a:f4:1e:2b:46:7d:60:b5:af:7d:c8:19:38: 8d:cd:81:f0:e7:97:41:3c:b9:02:08:95:41:82:69: 64:bd:81:12:78:e3:40:af:8f:03:cc:09:d5:dd:e5: 81:f7:8d:69:dd:ca:ce:1a:e1:ba:34:88:01:1e:41: d6:73:40:74:3a:9b:db:74:62:8e:c1:1a:a8:9d:fa: b1:5b:ed:4f:dd:bd:af:70:a1:39:a2:86:52:f6:73: 26:af:c5:26:6b:37:c5:a2:7f:80:a5:48:c8:f9:de: 9f:a0:15:a3:d0:90:e8:00:f6:9c:7f:98:a7:76:7f: 5d:8e:1e:a2:77:12:4c:f2:5f:ed:7b:aa:44:36:9b: 2b:fe:38:ba:be:b8:64:b2:cb:c0:bb:a1:d5:06:a9: 0d:af:09:46:d7:a5:a3:ff:96:4e:4f:0d:77:6c:4d: 9b:f5:2c:af:69:73:e3:0a:48:cb:98:cd:9d:05:49: 05:21:3c:15:e9:e8:90:e3:1b:c0:6f:92:65:3d:eb: b9:d6:21:ca:e5:97:e1:d6:be:fc:d1:87:02:ea:f6: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:45:24:68:C0:41:02:FE:9B:D4:3B:E5:07:2A:7A:64:4B:07:16:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption cc:e4:25:1a:4e:0e:a5:f1:b6:1e:93:b5:43:a8:21:9c:af:b0: 8f:ec:41:4a:9c:2e:80:7d:94:16:d5:f7:90:a5:0f:76:ce:fc: 4e:1c:26:b4:ec:75:dd:46:35:79:45:71:5b:ce:db:e6:80:b3: d0:45:4d:53:41:db:15:5f:a0:de:bb:46:fc:5a:df:93:40:ac: 13:78:c7:2f:38:aa:de:7a:24:a6:9d:be:20:35:f7:c7:e3:9b: 3f:8d:95:ca:35:d8:46:6b:2d:47:b8:22:42:fc:0e:7f:59:12: be:9f:50:7b:2b:56:30:bc:ad:72:12:de:35:23:b7:04:27:9a: a9:19:66:66:48:a9:d5:b7:98:17:78:50:6d:29:9d:17:ec:52: e2:be:21:73:1c:16:37:ef:e1:b5:0f:96:cd:b0:71:5b:86:36: 7a:d2:70:78:4c:0c:dc:a9:e7:82:8d:3b:a9:29:66:a3:ce:0d: ae:1b:14:cf:6a:49:d5:4b:6c:87:6e:cc:0f:d6:3f:05:1a:0a: 4e:64:df:2d:95:1f:70:27:53:f4:08:b7:6b:ae:88:91:1b:8e: 36:74:24:b5:fb:8f:3c:db:65:df:b3:99:47:0b:75:32:5b:76: cc:06:f3:6f:af:99:3a:4e:e2:f9:c1:99:33:4d:14:bd:82:f8: c8:ca:48:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULh62Mfhxme5P4SRukzEaj0BWy1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA2MDAxMDE5WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODM5MzUwNTI4MjBhYzlmMmUyOWYyNmU4ODhlNWEzOWY1 YWQ3OTEzYWNkNzcxNGQyZTZkYzBhNTE4YTM5MWJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCipq4vvEuh33l8tHSQen30IK/PECdwbY44wwC5YrZANWqL bP0Bw8K9iqcOlqZdmvQeK0Z9YLWvfcgZOI3NgfDnl0E8uQIIlUGCaWS9gRJ440Cv jwPMCdXd5YH3jWndys4a4bo0iAEeQdZzQHQ6m9t0Yo7BGqid+rFb7U/dva9woTmi hlL2cyavxSZrN8Wif4ClSMj53p+gFaPQkOgA9px/mKd2f12OHqJ3EkzyX+17qkQ2 myv+OLq+uGSyy8C7odUGqQ2vCUbXpaP/lk5PDXdsTZv1LK9pc+MKSMuYzZ0FSQUh PBXp6JDjG8BvkmU967nWIcrll+HWvvzRhwLq9vJLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgEUkaMBBAv6b1DvlByp6ZEsHFlMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOTI4ZDhmLTVmYTYtNDdkMy04OTEyLWE2Nzc1MTc2NGFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAovDANBgkqhkiG9w0BAQsFAAOCAQEAzOQlGk4OpfG2HpO1Q6ghnK+wj+xB SpwugH2UFtX3kKUPds78ThwmtOx13UY1eUVxW87b5oCz0EVNU0HbFV+g3rtG/Frf k0CsE3jHLziq3nokpp2+IDX3x+ObP42VyjXYRmstR7giQvwOf1kSvp9QeytWMLyt chLeNSO3BCeaqRlmZkip1beYF3hQbSmdF+xS4r4hcxwWN+/htQ+WzbBxW4Y2etJw eEwM3Knngo07qSlmo84NrhsUz2pJ1Utsh27MD9Y/BRoKTmTfLZUfcCdT9Ai3a66I kRuONnQktfuPPNtl37OZRwt1Mlt2zAbzb6+ZOk7i+cGZM00UvYL4yMpIMw== -----END CERTIFICATE-----Generated at Fri May 9 02:55:40 2025 by rpki-client