$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa File: 21e27e6a-31da-41fe-92f4-ae61707162ed.roa (raw, json) Hash identifier: G1SV7WD2e24AswLr1BUYLMw4IOKSdi4yxMD9s69nEjI= Subject key identifier: B1:07:9C:E1:49:1F:52:A6:F6:42:7A:60:DC:2C:03:DB:B2:99:9B:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D8DE613039CB37B31210313105DDB865D9452A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa Signing time: Sat 03 May 2025 00:42:05 +0000 ROA not before: Sat 03 May 2025 00:42:05 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8d:e6:13:03:9c:b3:7b:31:21:03:13:10:5d:db:86:5d:94:52:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:42:05 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=06a9d1804fd4b169cd1c11e7462d4a754a8e28f6215b46dd9eaee9654f529646, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ae:37:d7:ca:db:ff:08:b6:2a:61:84:aa:e4: e1:17:e7:21:0d:65:e8:ea:f9:e1:69:d5:cd:3b:08: f8:8b:dd:6d:d2:ff:e2:1d:e5:2f:16:3a:33:5a:0c: 79:0d:f7:f2:02:65:05:a3:bd:eb:bf:b0:96:8c:b9: 1a:fa:55:0e:b3:bd:77:47:d2:55:7b:10:21:bc:1e: 24:7f:ba:78:eb:6d:84:b3:23:5a:72:08:ce:50:d1: 5f:13:79:f5:7f:de:40:87:8f:a3:13:b5:9e:d6:f1: c7:cc:4b:25:f8:8d:da:ca:f9:4c:8d:3a:ce:79:6d: b0:69:51:09:d3:ab:41:97:07:7e:0a:5b:be:0a:6e: 2e:8f:c9:22:8e:cb:80:be:0e:51:78:e7:f2:fc:bc: 00:88:46:d2:ad:6c:e6:97:ef:80:b6:a1:f8:da:d2: db:96:3e:2a:f5:9f:9a:6d:a9:bf:8a:56:d1:a4:c8: c6:6c:6b:92:28:2c:b4:c2:fd:9e:dd:91:29:e5:6c: 6f:28:6c:aa:16:9f:7d:4b:bf:23:33:04:c1:e8:e9: ac:d4:c6:08:ad:c4:67:21:ff:76:2d:cb:fd:4c:42: 65:a2:39:58:8e:4a:08:e4:19:7c:11:24:96:2e:b5: 06:3c:ce:f8:56:fe:f0:96:ac:de:e2:78:32:19:ac: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:07:9C:E1:49:1F:52:A6:F6:42:7A:60:DC:2C:03:DB:B2:99:9B:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:98:aa:a4:6c:f6:3c:89:e6:d7:a3:e1:08:d5:75:2b:79:0f: 19:83:14:39:8d:31:9e:13:e5:13:f1:69:5b:21:89:1f:d1:ee: 11:18:d7:12:95:32:11:fa:cf:a4:55:bd:89:11:b5:83:9e:4b: 0c:45:b8:f6:f4:29:70:cd:bf:71:14:e2:7b:3f:e4:0c:5b:51: a9:08:23:44:4b:f2:ca:b3:73:b3:f6:93:04:1a:5f:2f:25:73: 6f:62:b4:19:65:4f:b1:45:79:79:df:26:32:ff:04:0c:15:1e: ae:37:b8:f2:11:3e:22:29:d4:86:3e:ae:87:d3:a2:45:b5:50: a4:4c:0c:36:d5:ae:d6:7d:01:e8:f3:be:8c:84:d9:1d:68:ca: cb:0a:9f:0e:f4:47:bf:5a:34:02:85:05:86:a9:97:5a:e8:24: 47:8e:8c:32:03:eb:b1:5d:3b:2c:a4:f0:bb:91:53:cc:a1:71: 2f:60:a3:37:22:7b:f9:4c:75:49:02:bf:f9:bc:cf:a7:c0:f5: ee:22:3c:73:ee:fe:e5:9b:8b:cc:07:0f:d1:09:a9:08:a8:bf: b9:75:1a:c6:7a:88:22:9f:2b:52:e7:b7:6d:5e:35:b8:bf:96: 5f:ff:d5:c5:fc:9a:cd:7c:1a:a1:b7:1f:98:cf:60:0a:1c:f7: 58:5e:d8:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTY3mEwOcs3sxIQMTEF3bhl2UUqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MjA1WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmE5ZDE4MDRmZDRiMTY5Y2QxYzExZTc0NjJkNGE3NTRh OGUyOGY2MjE1YjQ2ZGQ5ZWFlZTk2NTRmNTI5NjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRrjfXytv/CLYqYYSq5OEX5yENZejq+eFp1c07CPiL3W3S /+Id5S8WOjNaDHkN9/ICZQWjveu/sJaMuRr6VQ6zvXdH0lV7ECG8HiR/unjrbYSz I1pyCM5Q0V8TefV/3kCHj6MTtZ7W8cfMSyX4jdrK+UyNOs55bbBpUQnTq0GXB34K W74Kbi6PySKOy4C+DlF45/L8vACIRtKtbOaX74C2ofja0tuWPir1n5ptqb+KVtGk yMZsa5IoLLTC/Z7dkSnlbG8obKoWn31LvyMzBMHo6azUxgitxGch/3Yty/1MQmWi OViOSgjkGXwRJJYutQY8zvhW/vCWrN7ieDIZrNTvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsQec4UkfUqb2Qnpg3CwD27KZm64wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTI3ZTZhLTMxZGEtNDFmZS05MmY0LWFlNjE3MDcxNjJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE1zANBgkqhkiG9w0BAQsFAAOCAQEAMpiqpGz2PInm16PhCNV1K3kPGYMU OY0xnhPlE/FpWyGJH9HuERjXEpUyEfrPpFW9iRG1g55LDEW49vQpcM2/cRTiez/k DFtRqQgjREvyyrNzs/aTBBpfLyVzb2K0GWVPsUV5ed8mMv8EDBUerje48hE+IinU hj6uh9OiRbVQpEwMNtWu1n0B6PO+jITZHWjKywqfDvRHv1o0AoUFhqmXWugkR46M MgPrsV07LKTwu5FTzKFxL2CjNyJ7+Ux1SQK/+bzPp8D17iI8c+7+5ZuLzAcP0Qmp CKi/uXUaxnqIIp8rUue3bV41uL+WX//VxfyazXwaobcfmM9gChz3WF7Ylg== -----END CERTIFICATE-----Generated at Sat May 10 16:51:41 2025 by rpki-client