$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2430bb70-fa76-4b0a-8657-71906d79b7e5.roa File: 2430bb70-fa76-4b0a-8657-71906d79b7e5.roa (raw, json) Hash identifier: 2sGXlKzlyOqrse67XRIAdcKFKneEr/X4yNWqMStrzm4= Subject key identifier: 62:52:6C:05:C4:A4:AC:26:7E:2E:9A:83:4E:6F:74:00:79:E4:D5:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7475FD07DF1BC13BE2CC14666A8FDBF06B57260A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2430bb70-fa76-4b0a-8657-71906d79b7e5.roa Signing time: Mon 28 Apr 2025 15:11:39 +0000 ROA not before: Mon 28 Apr 2025 15:11:39 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 139.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:75:fd:07:df:1b:c1:3b:e2:cc:14:66:6a:8f:db:f0:6b:57:26:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:11:39 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=9ac8baa8a7ef1c1c2184ce043c882f6414a0807a096aa6b1a13c94f60efdac0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:7b:9a:f6:f4:85:c1:c9:d5:c9:f1:7b:e0: 74:66:47:62:dd:39:97:75:e2:7f:b6:87:26:79:89: 14:2f:28:c6:39:57:60:c0:47:76:5d:f7:32:de:c2: 28:e4:f5:1f:60:b2:c2:52:33:3f:9e:d9:ad:62:f7: 3c:15:28:df:c1:bc:88:ca:37:1b:75:6d:fe:5a:d7: b7:a7:c6:37:0d:aa:da:11:8a:04:fd:06:3c:3d:69: da:0d:70:6b:9a:e0:08:ac:c4:48:a1:07:65:f8:3b: 4b:1a:fa:ce:33:9f:81:95:49:55:b1:ee:8c:72:f6: d6:54:54:3f:39:7e:35:ad:ab:7b:78:9c:64:a7:56: 90:e6:28:1b:03:d0:2f:c1:7d:84:ba:ab:a3:45:07: 3a:7b:ef:31:a6:8f:a0:1e:26:fc:49:2b:bd:74:ad: f0:54:7a:16:95:b0:73:9a:4b:76:28:4a:25:bf:3d: 3e:04:a8:8e:16:7b:45:4f:84:1b:ce:3e:1c:9d:ac: 1d:3b:35:ce:39:3b:c4:d0:99:fc:68:d6:84:80:4a: 40:67:24:73:45:d0:18:47:a7:de:b2:06:ba:71:f4: e8:0e:88:a6:fe:2f:1b:3a:ea:24:a6:e9:36:ff:f3: cc:ec:9d:3e:77:30:62:e3:bf:6d:a6:86:47:e1:09: ad:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:52:6C:05:C4:A4:AC:26:7E:2E:9A:83:4E:6F:74:00:79:E4:D5:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2430bb70-fa76-4b0a-8657-71906d79b7e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:8b:c3:fe:ab:0b:1b:f5:75:69:39:50:18:6e:65:c7:44:54: da:bb:27:6a:8a:a9:c6:c7:bc:3a:10:77:07:d7:7a:14:6f:af: 25:05:b3:04:15:de:3d:e1:6f:12:9b:db:85:b6:73:d4:16:73: 36:44:d3:b7:b3:be:c1:3c:69:3c:6c:0d:41:fc:c8:c9:72:af: 2d:2b:9b:c7:76:75:06:57:2d:7b:64:02:fd:a7:ec:53:b2:0b: c1:72:d6:f8:77:cd:66:a6:a9:af:20:d1:94:16:05:dc:1f:65: 86:17:fc:83:98:f5:d9:7d:b5:fb:a4:97:04:ff:78:37:9d:cc: 15:95:bc:78:68:31:8f:21:a0:58:64:46:7d:61:d1:b0:d5:50: 39:21:6f:f4:31:87:2b:d7:1f:0b:bf:66:4b:d7:f8:12:c9:96: 80:fd:14:c6:69:0d:6f:2d:81:0e:dc:6b:4e:99:7c:d5:81:b8: 34:4b:67:56:2d:3e:59:11:af:d4:74:86:70:61:cd:9e:b4:d7: 4d:82:f2:73:c2:10:47:06:d8:8f:f1:67:be:36:04:4e:eb:b1: 08:85:ff:7a:18:a3:fc:80:94:17:8d:92:b9:8e:c4:17:f2:11: 38:81:9e:d7:5a:1b:8b:e5:35:da:db:01:ea:4f:02:52:ca:c6: de:d1:1e:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdHX9B98bwTvizBRmao/b8GtXJgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUxMTM5WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWM4YmFhOGE3ZWYxYzFjMjE4NGNlMDQzYzg4MmY2NDE0 YTA4MDdhMDk2YWE2YjFhMTNjOTRmNjBlZmRhYzBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDWnua9vSFwcnVyfF74HRmR2LdOZd14n+2hyZ5iRQvKMY5 V2DAR3Zd9zLewijk9R9gssJSMz+e2a1i9zwVKN/BvIjKNxt1bf5a17enxjcNqtoR igT9Bjw9adoNcGua4AisxEihB2X4O0sa+s4zn4GVSVWx7oxy9tZUVD85fjWtq3t4 nGSnVpDmKBsD0C/BfYS6q6NFBzp77zGmj6AeJvxJK710rfBUehaVsHOaS3YoSiW/ PT4EqI4We0VPhBvOPhydrB07Nc45O8TQmfxo1oSASkBnJHNF0BhHp96yBrpx9OgO iKb+Lxs66iSm6Tb/88zsnT53MGLjv22mhkfhCa2/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYlJsBcSkrCZ+LpqDTm90AHnk1eIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MzBiYjcwLWZhNzYtNGIwYS04NjU3LTcxOTA2ZDc5YjdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLSTANBgkqhkiG9w0BAQsFAAOCAQEAB4vD/qsLG/V1aTlQGG5lx0RU2rsn aoqpxse8OhB3B9d6FG+vJQWzBBXePeFvEpvbhbZz1BZzNkTTt7O+wTxpPGwNQfzI yXKvLSubx3Z1Blcte2QC/afsU7ILwXLW+HfNZqapryDRlBYF3B9lhhf8g5j12X21 +6SXBP94N53MFZW8eGgxjyGgWGRGfWHRsNVQOSFv9DGHK9cfC79mS9f4EsmWgP0U xmkNby2BDtxrTpl81YG4NEtnVi0+WRGv1HSGcGHNnrTXTYLyc8IQRwbYj/FnvjYE TuuxCIX/ehij/ICUF42SuY7EF/IROIGe11obi+U12tsB6k8CUsrG3tEeMw== -----END CERTIFICATE-----Generated at Sun May 11 10:17:20 2025 by rpki-client