$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa File: 350219c3-2e2e-4c85-9195-aa282577ecee.roa (raw, json) Hash identifier: wCXZa29fTr82iRXI7ou3082lI8B43BtXiOk1CDJeztg= Subject key identifier: 51:D6:69:31:0B:C5:CB:92:9D:FF:E7:85:E8:D7:77:A9:86:6C:7E:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20FF92F8CF06D3E87B88C53B02073F9E8232D824 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa Signing time: Fri 09 May 2025 00:10:19 +0000 ROA not before: Fri 09 May 2025 00:10:19 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.103.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ff:92:f8:cf:06:d3:e8:7b:88:c5:3b:02:07:3f:9e:82:32:d8:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:19 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=37f38ef661478c86da9ab9d137c6c30d0f9422a641bd5b2d1aebb3b31c8961d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8c:be:5b:69:31:7c:7c:9a:7b:94:ea:03:89: aa:0d:97:40:e0:9b:5e:3c:45:a4:af:e8:8f:31:9b: 2d:c7:ca:c7:6f:60:23:c4:16:f0:cc:8e:40:42:96: 64:62:44:f3:72:61:d2:04:f7:44:d4:e6:a6:e4:15: 54:af:8b:38:fb:e9:5d:f9:33:18:d9:97:f8:86:98: 40:40:59:31:4a:e9:36:dc:f4:4d:12:26:d3:d2:ed: a7:2b:d9:58:5a:f1:97:b5:26:c6:4e:1d:03:8f:e6: 1e:d1:93:52:dc:64:e5:d0:f4:5b:cf:f4:98:0b:52: e4:ef:5c:94:4c:2b:24:00:cd:1c:b9:7e:1f:e4:b6: 5b:d7:eb:e8:f5:13:16:17:f0:4e:5d:fb:fc:fa:03: 7f:5c:ab:1a:f6:04:3f:b2:8d:68:af:7b:52:29:87: c3:86:50:d5:27:15:cf:65:df:73:eb:1f:45:cb:b8: f4:b3:b7:80:83:17:98:06:1a:b0:9a:5b:aa:8c:f5: ee:cc:2a:9e:f7:1e:bb:bf:5a:a3:97:3c:0a:3f:e5: 55:4d:a2:e0:f1:fb:dd:de:27:bc:85:23:24:08:4f: 90:d7:f9:b4:ba:0d:63:fb:2f:f4:f5:b9:bd:b6:8a: 67:d3:53:fa:04:94:78:ab:ed:60:39:77:50:07:47: 8b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D6:69:31:0B:C5:CB:92:9D:FF:E7:85:E8:D7:77:A9:86:6C:7E:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/350219c3-2e2e-4c85-9195-aa282577ecee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:f7:4f:2f:8c:e5:d9:f5:62:4a:5c:30:c1:ad:0f:e7:37:b6: 2f:b2:30:ae:e4:df:26:c1:72:8c:c6:5e:bd:be:e1:53:5e:96: 6f:79:8c:e9:df:70:1b:72:d5:f2:45:63:22:03:53:65:d2:4c: 75:e5:1d:b0:e1:14:f3:d2:27:6c:06:e3:0a:86:80:0e:37:1b: 1b:26:db:5a:f2:0a:4d:e5:44:5d:3e:c5:29:70:c3:f3:39:52: d8:af:30:a1:6f:dc:b4:90:4d:e1:76:79:cd:a7:2b:38:5a:31: 85:d2:0a:22:58:a4:e7:8e:b4:61:ad:c1:7c:4c:ea:f1:69:86: ca:70:b0:70:11:54:7f:be:88:3d:76:5b:67:f6:14:c3:59:92: 26:71:7c:e5:3e:67:ad:92:8f:a8:7b:45:68:b5:66:de:b8:bf: e6:39:18:16:3a:7d:1e:39:99:ed:6c:d9:0b:c3:27:48:55:56: 24:9a:24:a1:cb:5a:3a:65:78:a9:57:7f:26:4c:dd:05:29:9d: 94:7c:41:f6:c3:20:7c:46:6c:51:ce:a4:a1:55:b6:e6:b3:91: 89:2a:88:ef:49:d7:94:3b:c6:89:f3:00:b2:84:a6:2d:cf:9f: 33:4b:6c:8d:fc:3d:0c:2e:db:12:0a:73:0f:8e:0f:69:12:99: 29:b0:58:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIP+S+M8G0+h7iMU7Agc/noIy2CQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDE5WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2YzOGVmNjYxNDc4Yzg2ZGE5YWI5ZDEzN2M2YzMwZDBm OTQyMmE2NDFiZDViMmQxYWViYjNiMzFjODk2MWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDijL5baTF8fJp7lOoDiaoNl0Dgm148RaSv6I8xmy3Hysdv YCPEFvDMjkBClmRiRPNyYdIE90TU5qbkFVSvizj76V35MxjZl/iGmEBAWTFK6Tbc 9E0SJtPS7acr2Vha8Ze1JsZOHQOP5h7Rk1LcZOXQ9FvP9JgLUuTvXJRMKyQAzRy5 fh/ktlvX6+j1ExYX8E5d+/z6A39cqxr2BD+yjWive1Iph8OGUNUnFc9l33PrH0XL uPSzt4CDF5gGGrCaW6qM9e7MKp73Hru/WqOXPAo/5VVNouDx+93eJ7yFIyQIT5DX +bS6DWP7L/T1ub22imfTU/oElHir7WA5d1AHR4tLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUdZpMQvFy5Kd/+eF6Nd3qYZsft8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MDIxOWMzLTJlMmUtNGM4NS05MTk1LWFhMjgyNTc3ZWNlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZzANBgkqhkiG9w0BAQsFAAOCAQEAfvdPL4zl2fViSlwwwa0P5ze2L7Iw ruTfJsFyjMZevb7hU16Wb3mM6d9wG3LV8kVjIgNTZdJMdeUdsOEU89InbAbjCoaA DjcbGybbWvIKTeVEXT7FKXDD8zlS2K8woW/ctJBN4XZ5zacrOFoxhdIKIlik5460 Ya3BfEzq8WmGynCwcBFUf76IPXZbZ/YUw1mSJnF85T5nrZKPqHtFaLVm3ri/5jkY Fjp9HjmZ7WzZC8MnSFVWJJokoctaOmV4qVd/JkzdBSmdlHxB9sMgfEZsUc6koVW2 5rORiSqI70nXlDvGifMAsoSmLc+fM0tsjfw9DC7bEgpzD44PaRKZKbBYTg== -----END CERTIFICATE-----Generated at Sun May 11 20:02:57 2025 by rpki-client