$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa File: 280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa (raw, json) Hash identifier: IYzIOLKLO/dKk65Y0GWycBtmWVQthdtTaxeqsunqfxA= Subject key identifier: A1:C0:E9:A1:C1:A7:19:38:4B:48:D0:2F:9E:3B:E5:29:38:E9:33:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25561AD63CBF72CFA34F567C5F813CDD9C1630C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa Signing time: Wed 23 Apr 2025 00:51:43 +0000 ROA not before: Wed 23 Apr 2025 00:51:43 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:56:1a:d6:3c:bf:72:cf:a3:4f:56:7c:5f:81:3c:dd:9c:16:30:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:43 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=d8f34c75a816acd5c5e249b39236d831f345835f6f9d485987852eaabd682afb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7d:8f:0d:cd:8f:1b:29:8e:e5:59:9c:c2:9d: 3d:1d:77:ed:c2:56:e2:f5:bc:38:b3:89:10:4c:16: 6a:ac:8e:44:9f:0d:29:66:3f:49:45:33:12:2d:e9: 08:98:1e:a8:67:45:cb:e7:9c:15:15:50:c9:5b:fb: 8a:e4:77:96:f9:8b:90:2f:07:9a:3c:80:05:96:eb: 14:61:f0:bd:71:46:08:21:be:49:1a:20:d2:87:87: eb:97:ba:64:ff:91:54:a7:70:1c:98:87:05:0d:ab: 6c:f6:f7:fa:72:22:3a:02:fe:9a:71:c8:bf:23:d6: c7:ea:bb:dd:54:0c:d5:ce:1e:2f:f1:0e:a7:48:2e: fb:b9:de:b1:21:8a:03:27:9e:81:9a:90:e9:40:7c: 85:dc:5f:88:1a:0b:81:aa:72:3d:f8:53:7c:b3:47: a8:d7:1a:f9:d8:b7:83:73:87:77:e1:fa:a7:a8:5b: 83:3a:be:ae:ca:e6:bc:79:fe:3f:fe:7a:f8:d9:fc: d2:79:7f:4d:34:33:43:de:c4:26:13:6b:33:98:13: f0:ec:94:1b:6f:52:c2:c1:59:3a:49:b9:0b:ff:20: 77:c1:f1:36:4d:73:11:16:9f:59:1a:0c:93:af:7e: 36:48:99:ee:15:94:a5:02:83:9d:23:cc:bc:87:0b: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C0:E9:A1:C1:A7:19:38:4B:48:D0:2F:9E:3B:E5:29:38:E9:33:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.0.0/19 Signature Algorithm: sha256WithRSAEncryption ba:9d:9f:2f:8b:1d:26:03:bd:97:d5:aa:b3:8f:6c:b9:ef:e5: 2a:ef:1b:13:6d:95:e0:43:56:ec:70:c9:32:e2:06:6b:e4:a5: 81:c6:fe:94:2d:c1:dc:d9:94:07:1c:63:72:3a:c6:fc:9d:91: 55:67:94:5a:9e:25:2c:db:fe:75:e0:01:3b:68:24:ad:76:bf: 0b:a9:34:d3:1e:f2:11:5d:40:2f:d3:9c:15:a7:94:c7:1f:3d: 46:9f:dd:68:0b:8e:8e:c2:fd:e1:fb:c2:65:7b:7e:d1:04:b8: 04:41:2f:be:2f:53:e3:13:2d:bf:5c:e8:50:be:f6:55:72:43: d9:52:d1:73:2a:43:d9:15:6a:b9:fe:73:01:cc:04:16:42:7a: 38:82:71:32:a5:bb:09:d2:78:dd:ba:ae:ec:af:1d:15:d9:12: c1:3e:ad:12:03:8c:e2:00:18:fc:88:c3:30:a9:1f:fe:aa:23: 48:c1:33:9b:44:35:ab:8f:56:7f:3f:14:9f:6b:01:77:c6:fd: fa:3a:e2:69:61:2a:88:d9:96:bd:cf:83:f4:48:13:b0:69:d1: b9:07:19:0e:87:d0:43:8b:37:de:22:80:18:a0:15:5e:30:44: b8:05:9a:87:3f:49:42:c4:26:c8:2d:67:05:e9:81:38:ab:d1: ad:d9:d6:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJVYa1jy/cs+jT1Z8X4E83ZwWMMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTQzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGYzNGM3NWE4MTZhY2Q1YzVlMjQ5YjM5MjM2ZDgzMWYz NDU4MzVmNmY5ZDQ4NTk4Nzg1MmVhYWJkNjgyYWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLfY8NzY8bKY7lWZzCnT0dd+3CVuL1vDiziRBMFmqsjkSf DSlmP0lFMxIt6QiYHqhnRcvnnBUVUMlb+4rkd5b5i5AvB5o8gAWW6xRh8L1xRggh vkkaINKHh+uXumT/kVSncByYhwUNq2z29/pyIjoC/ppxyL8j1sfqu91UDNXOHi/x DqdILvu53rEhigMnnoGakOlAfIXcX4gaC4Gqcj34U3yzR6jXGvnYt4Nzh3fh+qeo W4M6vq7K5rx5/j/+evjZ/NJ5f000M0PexCYTazOYE/DslBtvUsLBWTpJuQv/IHfB 8TZNcxEWn1kaDJOvfjZIme4VlKUCg50jzLyHC9LtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUocDpocGnGThLSNAvnjvlKTjpMzwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4MDE1MGE5LTI4Y2YtNGE2MC1hZTY4LThjMGNmM2ZlNjRkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWugQAwDQYJKoZIhvcNAQELBQADggEBALqdny+LHSYDvZfVqrOPbLnv5Srv GxNtleBDVuxwyTLiBmvkpYHG/pQtwdzZlAccY3I6xvydkVVnlFqeJSzb/nXgATto JK12vwupNNMe8hFdQC/TnBWnlMcfPUaf3WgLjo7C/eH7wmV7ftEEuARBL74vU+MT Lb9c6FC+9lVyQ9lS0XMqQ9kVarn+cwHMBBZCejiCcTKluwnSeN26ruyvHRXZEsE+ rRIDjOIAGPyIwzCpH/6qI0jBM5tENauPVn8/FJ9rAXfG/fo64mlhKojZlr3Pg/RI E7Bp0bkHGQ6H0EOLN94igBigFV4wRLgFmoc/SULEJsgtZwXpgTir0a3Z1tQ= -----END CERTIFICATE-----Generated at Sun May 11 15:13:14 2025 by rpki-client