$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7d0627-b93e-4102-822d-8f521ccadbca.roa File: 1f7d0627-b93e-4102-822d-8f521ccadbca.roa (raw, json) Hash identifier: 4aioaNXPlnd1XS6sKZWXe7jGllkmeXf/p+yOmBPEZNA= Subject key identifier: BB:38:B0:84:D9:5E:B4:BA:BA:BF:40:83:D9:8B:EF:AE:3B:32:0B:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E03AD029093A2D142D265E9E999958F3F2338FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7d0627-b93e-4102-822d-8f521ccadbca.roa Signing time: Fri 02 May 2025 00:20:19 +0000 ROA not before: Fri 02 May 2025 00:20:19 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.182.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:03:ad:02:90:93:a2:d1:42:d2:65:e9:e9:99:95:8f:3f:23:38:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:20:19 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=95eb378fed863441dafe0bd4608c15c39c74978a51fafdcbceb5ca3e309eb6ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3e:41:b8:85:d7:aa:31:62:ec:30:25:f2:7f: b3:17:a9:3a:2f:2b:04:f5:61:40:f3:a4:19:e5:d9: 93:ff:4d:2f:ea:42:d3:dd:c7:b4:0a:0f:b7:92:8d: df:9a:e4:2f:16:2a:47:10:9e:d5:aa:8c:c1:75:1b: e5:6b:69:e4:65:3b:2d:bb:60:be:4c:27:b2:65:41: ee:7c:4a:53:3f:1e:1c:2d:2b:c1:45:ab:e0:99:01: 28:05:30:6c:96:c1:f7:4a:56:22:01:fa:38:c2:d6: bc:41:83:8b:5c:3c:03:1c:4d:a8:17:b8:64:1d:65: b9:34:b9:c7:da:55:6e:13:3a:24:9b:7b:ea:30:61: f3:af:02:d3:ad:ce:79:47:c4:8d:66:01:86:5c:c5: 7b:ac:6a:7c:7a:02:81:84:7e:2b:96:60:01:87:e5: c8:08:20:0c:ba:1f:6d:93:75:0e:c9:6d:27:69:58: 58:d9:51:f7:f6:7a:37:e6:64:37:ed:55:42:6b:f3: 6e:59:cf:65:b5:84:60:1e:c0:f8:72:8c:54:f1:db: 07:72:8c:7c:1d:ae:c7:15:5e:73:7e:98:ae:eb:31: ad:d0:04:cc:97:3d:e0:20:38:26:35:ab:ef:f5:16: 51:41:05:d7:72:4a:d7:ea:b4:b8:2c:fd:b9:c3:a2: 5b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:38:B0:84:D9:5E:B4:BA:BA:BF:40:83:D9:8B:EF:AE:3B:32:0B:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7d0627-b93e-4102-822d-8f521ccadbca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.182.144.0/20 Signature Algorithm: sha256WithRSAEncryption 48:1b:7d:0d:0c:21:88:c5:fe:9a:46:e7:d6:05:e7:07:66:5a: 85:b4:6b:18:07:ac:a6:cc:00:c7:08:3c:88:45:aa:c5:41:c4: d2:21:98:4e:13:d1:01:65:0f:12:e0:8c:a0:7a:7b:35:ae:8d: ff:8a:84:b2:84:f7:f4:f4:eb:7a:c3:46:61:a3:b8:9b:cf:fc: 1d:a8:21:6e:f7:bc:de:5d:88:cf:32:87:e3:de:ad:e4:26:37: b5:af:7a:a0:9b:aa:9c:8a:49:4f:2e:ca:cc:b1:81:a6:a9:6c: 9d:6a:08:f4:c8:67:54:69:13:12:57:88:00:76:ad:f6:6b:92: 45:11:08:43:3f:6f:93:c3:36:91:ce:ae:67:ec:8c:91:27:46: 43:da:27:de:fa:6c:c5:61:ad:ca:9f:61:96:f8:4a:37:59:e5: ef:30:cb:93:8f:75:fc:fc:e2:b0:e9:33:77:64:7c:85:f7:6f: 28:f8:12:57:7b:d3:85:ca:48:d1:91:24:25:b2:f9:e2:f1:5a: e7:1f:31:e2:10:0c:72:6a:1a:a6:93:5c:19:16:b5:50:3d:fb: b3:62:d7:37:86:94:46:f8:ed:98:39:62:13:9c:70:fe:3d:fa: 29:26:16:a4:7a:f1:0f:3e:34:bd:bd:4c:37:a7:84:76:d1:b6: b4:27:2f:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULgOtApCTotFC0mXp6ZmVjz8jOP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAyMDE5WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWViMzc4ZmVkODYzNDQxZGFmZTBiZDQ2MDhjMTVjMzlj NzQ5NzhhNTFmYWZkY2JjZWI1Y2EzZTMwOWViNmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjPkG4hdeqMWLsMCXyf7MXqTovKwT1YUDzpBnl2ZP/TS/q QtPdx7QKD7eSjd+a5C8WKkcQntWqjMF1G+VraeRlOy27YL5MJ7JlQe58SlM/Hhwt K8FFq+CZASgFMGyWwfdKViIB+jjC1rxBg4tcPAMcTagXuGQdZbk0ucfaVW4TOiSb e+owYfOvAtOtznlHxI1mAYZcxXusanx6AoGEfiuWYAGH5cgIIAy6H22TdQ7JbSdp WFjZUff2ejfmZDftVUJr825Zz2W1hGAewPhyjFTx2wdyjHwdrscVXnN+mK7rMa3Q BMyXPeAgOCY1q+/1FlFBBddyStfqtLgs/bnDols9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuziwhNletLq6v0CD2YvvrjsyC6UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmN2QwNjI3LWI5M2UtNDEwMi04MjJkLThmNTIxY2NhZGJjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATHtpAwDQYJKoZIhvcNAQELBQADggEBAEgbfQ0MIYjF/ppG59YF5wdmWoW0 axgHrKbMAMcIPIhFqsVBxNIhmE4T0QFlDxLgjKB6ezWujf+KhLKE9/T063rDRmGj uJvP/B2oIW73vN5diM8yh+PereQmN7WveqCbqpyKSU8uysyxgaapbJ1qCPTIZ1Rp ExJXiAB2rfZrkkURCEM/b5PDNpHOrmfsjJEnRkPaJ976bMVhrcqfYZb4SjdZ5e8w y5OPdfz84rDpM3dkfIX3byj4Eld704XKSNGRJCWy+eLxWucfMeIQDHJqGqaTXBkW tVA9+7Ni1zeGlEb47Zg5YhOccP49+ikmFqR68Q8+NL29TDenhHbRtrQnL3A= -----END CERTIFICATE-----Generated at Mon May 5 10:25:37 2025 by rpki-client