$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa File: 2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa (raw, json) Hash identifier: MCweAtZk3761DKNdgDNOa9V5IiuOyBTfIOc9deOHl/A= Subject key identifier: 13:84:4F:8B:69:68:D7:DE:64:AD:79:32:5F:47:F9:CC:B9:C3:EE:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10047E58CB6776280F13220A6AA687D0AC184925 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa Signing time: Fri 02 May 2025 00:00:17 +0000 ROA not before: Fri 02 May 2025 00:00:17 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 155.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:04:7e:58:cb:67:76:28:0f:13:22:0a:6a:a6:87:d0:ac:18:49:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:00:17 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=15c8c7652221e68977d3f6dd47e0cc148a62a3c0a325d1242096d09d4f17576b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:46:a3:32:90:7c:aa:41:5b:62:b7:08:78: 1e:f3:e1:5b:5f:04:a6:7a:a7:b2:10:ae:34:86:64: 27:b8:d3:90:cc:e1:2e:d5:9c:76:b6:fe:78:02:dd: fc:80:ce:cd:9d:d8:0c:f3:d3:e7:eb:86:0a:47:0a: 98:22:14:54:ba:e6:32:08:67:a2:46:7a:e8:48:28: b1:bf:fe:07:4d:86:4b:70:b5:55:63:ef:3a:8b:7f: a4:05:e3:95:8a:c6:b9:5f:02:77:b5:09:52:55:90: 9d:e9:ea:dd:51:2c:55:d7:9c:4d:b3:90:10:cf:be: ca:fc:b2:9b:a4:18:4b:fb:fb:05:fd:8f:74:e1:01: a6:56:23:20:d6:f7:bc:29:12:d3:87:ff:be:7f:b0: 84:e4:ec:6e:5e:46:39:c0:55:ea:3b:7d:c5:a9:8b: 5b:b1:14:58:09:90:0b:cc:6f:66:0c:0a:71:98:bd: 89:86:62:f1:32:77:cb:16:05:a1:ff:08:7c:db:df: 39:16:2a:91:09:66:c1:c5:87:2d:53:2f:45:7a:8e: cf:ca:06:d8:ce:64:aa:a1:fc:ca:4d:aa:e9:e4:68: 33:fd:ed:60:af:b7:6a:2b:a2:62:5d:96:5a:44:87: 23:4c:d4:4d:ab:5f:0f:db:d3:72:c5:0f:2d:05:4d: 07:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:84:4F:8B:69:68:D7:DE:64:AD:79:32:5F:47:F9:CC:B9:C3:EE:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:17:d0:62:11:fd:d6:ca:79:d2:ac:08:c5:9e:2a:f8:29:86: a7:83:87:99:f2:1e:d9:57:63:bb:81:18:5b:bf:8f:60:7b:b3: f0:68:ff:80:7c:07:6b:72:3b:5a:c6:ff:79:ab:f9:17:2c:79: 12:8b:9d:9d:4c:02:f9:c3:46:4f:da:3c:33:91:bd:10:4d:8b: 06:c5:20:75:7b:c6:de:ee:30:1f:97:01:d7:e6:dd:aa:f4:cd: c1:23:d6:3c:9e:47:32:e8:de:05:42:42:50:52:ab:bc:8b:e8: 9d:dd:4a:e1:e4:a2:1e:70:5d:f8:8f:eb:2d:41:5b:61:6e:51: 65:4c:17:08:b7:ba:c8:f3:d2:ba:48:41:09:a7:f1:63:1d:5a: ec:21:31:2c:79:1c:cc:05:b4:c8:16:96:08:73:a9:5d:ff:52: 3a:01:e8:51:a9:bf:76:da:a7:3a:b4:98:ae:51:09:04:b4:80: 93:53:c6:ab:9b:13:3e:ed:6f:81:bc:a7:c5:ca:a8:79:63:ff: 26:3d:a1:36:18:e9:14:97:04:c1:0a:43:8e:91:7a:50:6d:49: 88:62:1f:0f:01:c0:6f:80:76:20:02:96:5b:5f:3b:92:5c:d5: 29:0b:4d:47:76:7a:4e:c6:64:84:49:ff:e7:19:86:89:53:50: 85:14:75:12 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEAR+WMtndigPEyIKaqaH0KwYSSUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMDE3WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWM4Yzc2NTIyMjFlNjg5NzdkM2Y2ZGQ0N2UwY2MxNDhh NjJhM2MwYTMyNWQxMjQyMDk2ZDA5ZDRmMTc1NzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRgEajMpB8qkFbYrcIeB7z4VtfBKZ6p7IQrjSGZCe405DM 4S7VnHa2/ngC3fyAzs2d2Azz0+frhgpHCpgiFFS65jIIZ6JGeuhIKLG//gdNhktw tVVj7zqLf6QF45WKxrlfAne1CVJVkJ3p6t1RLFXXnE2zkBDPvsr8spukGEv7+wX9 j3ThAaZWIyDW97wpEtOH/75/sITk7G5eRjnAVeo7fcWpi1uxFFgJkAvMb2YMCnGY vYmGYvEyd8sWBaH/CHzb3zkWKpEJZsHFhy1TL0V6js/KBtjOZKqh/MpNqunkaDP9 7WCvt2oromJdllpEhyNM1E2rXw/b03LFDy0FTQdZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUE4RPi2lo195krXkyX0f5zLnD7kwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNGQxZTVmLTE0ODMtNDAxMS1hN2IzLTAzNTNhMmM3NDEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbKDANBgkqhkiG9w0BAQsFAAOCAQEAFRfQYhH91sp50qwIxZ4q+CmGp4OH mfIe2Vdju4EYW7+PYHuz8Gj/gHwHa3I7Wsb/eav5Fyx5EoudnUwC+cNGT9o8M5G9 EE2LBsUgdXvG3u4wH5cB1+bdqvTNwSPWPJ5HMujeBUJCUFKrvIvond1K4eSiHnBd +I/rLUFbYW5RZUwXCLe6yPPSukhBCafxYx1a7CExLHkczAW0yBaWCHOpXf9SOgHo Uam/dtqnOrSYrlEJBLSAk1PGq5sTPu1vgbynxcqoeWP/Jj2hNhjpFJcEwQpDjpF6 UG1JiGIfDwHAb4B2IAKWW187klzVKQtNR3Z6TsZkhEn/5xmGiVNQhRR1Eg== -----END CERTIFICATE-----Generated at Mon May 5 05:38:54 2025 by rpki-client