$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa File: 242b5bdc-078e-4974-9ef3-af03ea079caa.roa (raw, json) Hash identifier: 4lH59Hrj+6tu2mArQ6zUG2SlB6D5L4zalpFOatJMS1A= Subject key identifier: E1:A5:AE:7F:7F:04:7F:86:8E:62:C9:F0:FC:0B:BE:35:B6:EA:F9:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 489F7204C8165D7E2FC5AD4595C74AFB76DB23C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa Signing time: Sat 03 May 2025 00:31:47 +0000 ROA not before: Sat 03 May 2025 00:31:47 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:9f:72:04:c8:16:5d:7e:2f:c5:ad:45:95:c7:4a:fb:76:db:23:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:47 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=de5c298fef213735ea316a2760b37c2d774f17ee383b5a4f8f96269463fab96c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9e:d6:a0:5c:df:75:52:ca:eb:bc:a7:1e:a4: 9f:23:48:b9:74:5c:15:da:57:1f:7e:78:b8:a6:11: c6:74:f2:e6:ee:43:e6:e4:24:a7:dd:df:8c:ef:df: cf:07:43:58:45:99:4c:41:05:72:80:21:22:3e:8c: 11:48:12:00:98:54:b8:0f:ab:27:e1:f3:0a:2b:d4: 5b:b1:53:ef:58:09:68:db:6e:7d:69:5d:43:f4:50: c3:3e:b0:43:74:3a:08:8f:d3:27:e0:be:b1:56:76: 95:2b:38:59:b5:be:20:5d:0f:2d:b7:25:36:c4:d6: 8b:20:0c:95:93:d0:97:71:5a:81:c7:53:f1:4c:3f: 82:f4:e6:79:5d:6e:14:1c:ee:3c:ec:20:b4:6c:be: bb:53:e7:94:28:cc:ed:9e:6b:cb:f9:69:33:bf:86: fd:75:9b:e6:36:bf:3e:17:2c:25:7e:83:30:26:8a: 04:72:9c:58:2f:cd:2e:34:18:cc:4f:13:95:53:25: 56:84:79:15:73:7d:ec:fa:bd:1a:f7:6a:12:7c:5d: 90:9d:88:b1:dd:46:2b:86:eb:e4:40:ec:a7:a5:96: 67:f5:a5:55:a7:e7:c5:d8:dc:e7:c2:94:eb:28:23: f8:c8:53:66:71:34:0e:66:8c:3b:84:b0:72:47:3f: c7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A5:AE:7F:7F:04:7F:86:8E:62:C9:F0:FC:0B:BE:35:B6:EA:F9:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.120.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:2c:89:ea:70:51:a1:ee:04:88:f9:44:1d:9a:fa:bd:de:ce: 76:9c:be:19:73:68:36:99:04:55:80:fc:a8:a4:9a:80:06:60: aa:a8:71:84:57:f9:57:11:19:8e:7a:4d:f5:68:4d:ad:44:d2: 78:ea:94:90:f1:7f:ad:aa:c7:3b:f8:95:3b:18:bf:6b:01:14: 3a:e9:3f:cb:07:b0:0d:7e:5c:1a:11:45:84:74:a9:6c:14:84: f1:0c:a1:db:3a:96:f6:cc:dd:0b:8b:87:f1:c3:61:90:4c:f1: 0e:ff:15:3e:69:ed:6f:bf:f7:c5:f9:d0:d0:4a:15:50:33:7e: 72:fe:b7:7f:5f:02:c5:ff:4f:23:06:7d:6b:65:54:7e:ab:cd: de:7b:56:09:e0:75:48:23:41:54:d7:99:c7:c6:b6:05:7f:59: 41:ba:69:a3:3b:5a:f9:91:1f:28:9c:39:23:ef:14:95:53:c1: d4:80:b9:0c:0e:eb:4e:8b:a8:02:61:74:b0:a3:20:92:fd:dd: bf:bb:3b:83:08:23:d8:0a:6a:95:07:42:71:88:16:2f:a3:b0: c9:b0:e4:e6:01:ef:a6:54:51:67:fe:c6:d9:e3:51:f2:ad:37: 47:e1:ca:39:d1:0f:84:43:3d:95:fd:3a:8e:a7:d2:d2:5c:84: 2a:42:11:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSJ9yBMgWXX4vxa1FlcdK+3bbI8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTQ3WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTVjMjk4ZmVmMjEzNzM1ZWEzMTZhMjc2MGIzN2MyZDc3 NGYxN2VlMzgzYjVhNGY4Zjk2MjY5NDYzZmFiOTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpntagXN91UsrrvKcepJ8jSLl0XBXaVx9+eLimEcZ08ubu Q+bkJKfd34zv388HQ1hFmUxBBXKAISI+jBFIEgCYVLgPqyfh8wor1FuxU+9YCWjb bn1pXUP0UMM+sEN0OgiP0yfgvrFWdpUrOFm1viBdDy23JTbE1osgDJWT0JdxWoHH U/FMP4L05nldbhQc7jzsILRsvrtT55QozO2ea8v5aTO/hv11m+Y2vz4XLCV+gzAm igRynFgvzS40GMxPE5VTJVaEeRVzfez6vRr3ahJ8XZCdiLHdRiuG6+RA7Kellmf1 pVWn58XY3OfClOsoI/jIU2ZxNA5mjDuEsHJHP8eNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4aWuf38Ef4aOYsnw/Au+Nbbq+TswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MmI1YmRjLTA3OGUtNDk3NC05ZWYzLWFmMDNlYTA3OWNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM/9ngwDQYJKoZIhvcNAQELBQADggEBAFwsiepwUaHuBIj5RB2a+r3eznac vhlzaDaZBFWA/KikmoAGYKqocYRX+VcRGY56TfVoTa1E0njqlJDxf62qxzv4lTsY v2sBFDrpP8sHsA1+XBoRRYR0qWwUhPEMods6lvbM3QuLh/HDYZBM8Q7/FT5p7W+/ 98X50NBKFVAzfnL+t39fAsX/TyMGfWtlVH6rzd57VgngdUgjQVTXmcfGtgV/WUG6 aaM7WvmRHyicOSPvFJVTwdSAuQwO606LqAJhdLCjIJL93b+7O4MII9gKapUHQnGI Fi+jsMmw5OYB76ZUUWf+xtnjUfKtN0fhyjnRD4RDPZX9Oo6n0tJchCpCET4= -----END CERTIFICATE-----Generated at Mon May 5 10:24:45 2025 by rpki-client