$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa File: 234e46a7-d4c0-4498-863f-fe0ed912a21e.roa (raw, json) Hash identifier: eOof1gB2e8B5BAEUXpdiYxpqdY0leo7ylA3JYrdZ6Eo= Subject key identifier: 9B:E6:2B:7A:AF:06:9B:45:B9:7D:48:B7:79:B0:46:25:59:E2:90:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EAC1C898D2824B6F30E062F2C784423C966DD39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa Signing time: Tue 29 Apr 2025 00:11:49 +0000 ROA not before: Tue 29 Apr 2025 00:11:49 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.235.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ac:1c:89:8d:28:24:b6:f3:0e:06:2f:2c:78:44:23:c9:66:dd:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:49 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=25780561d32cd6f86b52f4568fffc5d365f5bf225a02453fb45c9ec18b383099, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4a:40:04:84:31:13:ec:45:53:6d:a3:ed:45: 4b:fc:12:f6:3a:af:87:db:5e:81:ad:2c:c8:0a:3b: e6:24:f3:0d:b1:38:91:93:f7:b8:45:bb:0d:51:c6: c3:37:b7:5c:e3:24:7a:01:24:fa:61:3c:c5:f7:5e: 10:0b:20:ea:d2:80:59:fe:3a:e4:57:a0:b0:72:f8: 92:d7:86:78:67:9a:45:b2:01:95:0e:83:28:12:c1: 22:2a:5d:74:fc:8c:17:3c:10:e6:2a:4e:1e:76:ea: ef:ae:97:30:f2:68:af:c0:bb:29:b4:a6:64:60:aa: 39:6f:b1:86:07:20:b2:5a:4b:cd:43:0a:f9:70:5f: fe:0a:9e:31:0d:b2:76:fd:ee:55:f8:70:8b:3c:9d: b5:7d:c3:c5:b9:81:82:74:f3:dd:b3:46:c4:e2:80: c3:26:39:d1:a9:a8:7e:ff:44:09:ee:71:a9:63:d4: a2:41:46:bd:09:5c:58:af:68:6f:ae:ae:5e:71:6a: de:40:14:9f:ec:24:65:98:48:40:9c:2a:12:a7:42: 59:4f:91:ed:44:00:d9:f3:57:b3:e0:57:fc:70:02: 22:3f:84:e7:a4:d1:f9:63:43:24:71:3b:d5:f3:0b: f1:d0:ff:c6:b3:2a:8a:7d:19:8c:9f:0c:70:b1:d3: 59:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E6:2B:7A:AF:06:9B:45:B9:7D:48:B7:79:B0:46:25:59:E2:90:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.0.0/18 Signature Algorithm: sha256WithRSAEncryption b3:fe:43:5d:a2:5d:ad:8a:15:3c:82:d8:42:19:b1:47:5e:93: 4d:82:e9:ef:ec:13:75:42:6f:a5:93:20:fb:72:12:0c:a2:4f: ae:e2:5a:85:4e:07:e4:d2:d6:b0:e0:e9:16:f3:21:b1:c7:5f: 01:ee:c9:14:1b:03:1b:1d:f7:59:7c:b5:49:ea:08:fc:9f:f9: 43:60:c1:fc:4a:b9:29:b1:72:e8:bb:0c:ff:e8:30:c9:52:8d: 47:e2:63:f4:7e:92:fc:a8:4a:b7:a0:19:47:93:cd:93:f5:31: 69:f9:f8:33:fc:0d:b3:6f:55:0f:73:86:f3:9c:ff:4a:ce:0a: 08:bd:ec:ea:b1:5a:20:46:ef:f5:06:38:ad:a3:8c:59:70:21: 98:77:7c:9e:1f:58:39:7c:0c:b1:e5:c4:92:91:70:fc:e8:4a: cf:72:8b:d5:42:88:13:e4:f2:23:53:26:52:17:ef:40:5d:c9: 09:6d:c2:6d:b6:fe:ff:52:3e:36:89:2f:bd:5c:9c:79:59:6d: e2:fa:b0:60:ef:3b:fa:d8:76:1b:9c:62:81:45:3e:9e:db:e9: d0:4f:17:7c:af:88:af:00:4c:4e:32:9d:ad:cf:c4:86:55:4f: 1e:07:80:0f:5d:3e:bd:9d:d8:9c:31:1d:3c:bd:94:5b:56:fb: 27:2e:9d:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDqwciY0oJLbzDgYvLHhEI8lm3TkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMTQ5WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTc4MDU2MWQzMmNkNmY4NmI1MmY0NTY4ZmZmYzVkMzY1 ZjViZjIyNWEwMjQ1M2ZiNDVjOWVjMThiMzgzMDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhSkAEhDET7EVTbaPtRUv8EvY6r4fbXoGtLMgKO+Yk8w2x OJGT97hFuw1RxsM3t1zjJHoBJPphPMX3XhALIOrSgFn+OuRXoLBy+JLXhnhnmkWy AZUOgygSwSIqXXT8jBc8EOYqTh526u+ulzDyaK/Auym0pmRgqjlvsYYHILJaS81D CvlwX/4KnjENsnb97lX4cIs8nbV9w8W5gYJ0892zRsTigMMmOdGpqH7/RAnucalj 1KJBRr0JXFivaG+url5xat5AFJ/sJGWYSECcKhKnQllPke1EANnzV7PgV/xwAiI/ hOek0fljQyRxO9XzC/HQ/8azKop9GYyfDHCx01mvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm+Yreq8Gm0W5fUi3ebBGJVnikFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNGU0NmE3LWQ0YzAtNDQ5OC04NjNmLWZlMGVkOTEyYTIxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo6wAwDQYJKoZIhvcNAQELBQADggEBALP+Q12iXa2KFTyC2EIZsUdek02C 6e/sE3VCb6WTIPtyEgyiT67iWoVOB+TS1rDg6RbzIbHHXwHuyRQbAxsd91l8tUnq CPyf+UNgwfxKuSmxcui7DP/oMMlSjUfiY/R+kvyoSregGUeTzZP1MWn5+DP8DbNv VQ9zhvOc/0rOCgi97OqxWiBG7/UGOK2jjFlwIZh3fJ4fWDl8DLHlxJKRcPzoSs9y i9VCiBPk8iNTJlIX70BdyQltwm22/v9SPjaJL71cnHlZbeL6sGDvO/rYdhucYoFF Pp7b6dBPF3yviK8ATE4yna3PxIZVTx4HgA9dPr2d2JwxHTy9lFtW+ycunfo= -----END CERTIFICATE-----Generated at Mon May 5 08:13:58 2025 by rpki-client