$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa File: 202fa196-7fc4-42d7-9eda-ead645c20087.roa (raw, json) Hash identifier: fDenK+a8/tmCQ4jO88edZj+TdUX0I9gu5UTGH8fCxiA= Subject key identifier: 06:45:65:9F:7D:4E:97:07:30:5A:B6:0C:85:93:7D:26:DD:63:3B:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F421B08CCCCF7434C197ED142FC9B600B9FBB74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa Signing time: Sat 03 May 2025 00:40:28 +0000 ROA not before: Sat 03 May 2025 00:40:28 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:42:1b:08:cc:cc:f7:43:4c:19:7e:d1:42:fc:9b:60:0b:9f:bb:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:40:28 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=4c2b42d59f05358acee4e47b2e9fd225873d4bb0330d0a1d9c8b8a5389d2e58c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:42:02:d9:d7:2e:f1:f7:83:30:ef:53:42:61: 5f:a8:e7:63:fe:0a:3f:60:12:28:cb:77:2a:3f:77: ea:88:76:ed:c5:77:54:a0:0a:f7:3c:f4:0a:c2:1a: de:a8:b1:0f:d1:3d:cb:1d:27:2c:ac:e9:3e:33:22: 41:17:27:5d:a7:42:dc:eb:bd:83:33:f7:b3:72:a6: 2b:2e:d2:18:35:9f:4b:21:c1:9c:0d:bd:c3:96:b8: 23:5d:7a:9f:9f:1f:04:94:f1:0e:2e:a1:9d:7a:ef: 61:98:0d:fc:cb:d3:58:d9:d8:c4:20:99:3d:82:0d: d2:83:93:06:75:92:93:3f:2d:de:5c:0f:b4:09:3c: 80:90:b6:6c:c8:1f:d5:54:08:eb:4d:83:d9:e0:be: 29:3d:03:ed:be:f1:4d:a7:8a:f4:61:66:3c:92:9c: ac:6c:84:bf:d1:a1:7d:ef:18:ff:b5:6b:3e:04:e4: 64:f5:da:37:88:fa:9c:60:07:19:7d:1c:d1:8c:6b: c2:4b:5e:5d:33:82:00:83:52:cd:d8:25:79:8d:f5: 17:e3:d1:8c:6d:52:7c:e0:17:5d:61:1f:c6:f7:25: 10:89:c8:09:46:e2:6d:1f:f2:8d:79:18:b2:ff:9f: f8:7a:45:8d:21:03:a4:aa:0f:8b:fa:18:9b:78:61: 26:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:45:65:9F:7D:4E:97:07:30:5A:B6:0C:85:93:7D:26:DD:63:3B:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.160.0/24 Signature Algorithm: sha256WithRSAEncryption 18:26:78:ef:4e:b4:0a:b3:5a:df:2e:84:04:e8:f5:58:d6:30: 00:f9:3f:11:f8:77:ce:42:96:3e:a8:53:04:3b:72:3e:a3:fb: 14:fa:07:62:15:6e:63:15:fc:73:76:6d:a5:fb:a4:36:df:6b: 1d:06:32:23:04:25:76:f1:89:c1:5a:50:c6:89:1e:35:b6:29: a4:da:4c:8e:30:74:1f:6f:ac:28:33:87:bf:16:e6:f7:5f:4f: de:f6:1c:be:bf:8f:75:b6:83:d7:3e:cd:be:df:d9:29:3f:82: ad:29:d9:cf:ee:f6:fc:d2:c5:8c:ec:78:52:ec:7e:02:85:fc: cc:7c:8f:89:b3:ec:0f:f4:d9:60:90:d5:01:77:be:e8:96:bd: 5d:9f:8d:0e:98:9f:21:34:f5:a8:7d:98:86:45:8e:37:00:f1: 52:23:3b:33:91:f0:cb:a4:79:d4:89:21:26:d7:92:8e:6e:d1: 6b:3d:8a:2d:f0:18:94:0b:d2:2e:86:cd:cd:c7:cb:f1:4b:4d: 49:8d:f8:c9:0d:05:6b:eb:f2:86:fc:12:ab:98:aa:ea:88:7f: 6e:a9:d3:bb:4b:42:c2:01:ba:47:c2:01:e3:c0:ca:f9:6b:87: b9:99:c4:ac:32:4e:f0:ff:e1:2d:81:d1:69:b9:2a:a2:e2:3d: 88:19:73:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf0IbCMzM90NMGX7RQvybYAufu3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MDI4WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzJiNDJkNTlmMDUzNThhY2VlNGU0N2IyZTlmZDIyNTg3 M2Q0YmIwMzMwZDBhMWQ5YzhiOGE1Mzg5ZDJlNThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcQgLZ1y7x94Mw71NCYV+o52P+Cj9gEijLdyo/d+qIdu3F d1SgCvc89ArCGt6osQ/RPcsdJyys6T4zIkEXJ12nQtzrvYMz97Nypisu0hg1n0sh wZwNvcOWuCNdep+fHwSU8Q4uoZ1672GYDfzL01jZ2MQgmT2CDdKDkwZ1kpM/Ld5c D7QJPICQtmzIH9VUCOtNg9ngvik9A+2+8U2nivRhZjySnKxshL/RoX3vGP+1az4E 5GT12jeI+pxgBxl9HNGMa8JLXl0zggCDUs3YJXmN9Rfj0YxtUnzgF11hH8b3JRCJ yAlG4m0f8o15GLL/n/h6RY0hA6SqD4v6GJt4YSZ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBkVln31OlwcwWrYMhZN9Jt1jOz4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwMmZhMTk2LTdmYzQtNDJkNy05ZWRhLWVhZDY0NWMyMDA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36AwDQYJKoZIhvcNAQELBQADggEBABgmeO9OtAqzWt8uhATo9VjWMAD5 PxH4d85Clj6oUwQ7cj6j+xT6B2IVbmMV/HN2baX7pDbfax0GMiMEJXbxicFaUMaJ HjW2KaTaTI4wdB9vrCgzh78W5vdfT972HL6/j3W2g9c+zb7f2Sk/gq0p2c/u9vzS xYzseFLsfgKF/Mx8j4mz7A/02WCQ1QF3vuiWvV2fjQ6YnyE09ah9mIZFjjcA8VIj OzOR8MukedSJISbXko5u0Ws9ii3wGJQL0i6Gzc3Hy/FLTUmN+MkNBWvr8ob8EquY quqIf26p07tLQsIBukfCAePAyvlrh7mZxKwyTvD/4S2B0Wm5KqLiPYgZc8U= -----END CERTIFICATE-----Generated at Mon May 5 05:31:50 2025 by rpki-client