$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa File: 4259474a-bf94-4fce-960e-600c8e86c25b.roa (raw, json) Hash identifier: npo7Q8Xgp00SSUmDzskzg6GiazyYAnr9SUE51dvaCp8= Subject key identifier: 78:CB:D3:56:DC:78:4C:9E:6C:85:59:70:6B:91:B8:1B:FC:81:46:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 249934D4C2E870DB4C76A65B5DC331B0353E9A8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa Signing time: Fri 09 May 2025 00:10:18 +0000 ROA not before: Fri 09 May 2025 00:10:18 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:99:34:d4:c2:e8:70:db:4c:76:a6:5b:5d:c3:31:b0:35:3e:9a:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:18 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=17c023833ee9c8a07fafd66511779513be004ec2adc59bf1971ff7d18b12ee15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:92:25:ad:28:08:df:37:93:3d:c7:b7:aa:55: 23:f5:f9:ee:a5:ac:b9:70:c5:b9:c5:d9:8e:32:8b: 70:87:ca:f5:0f:76:23:22:f8:21:7e:71:05:39:2e: 22:89:8a:b1:e9:42:37:1c:cb:8c:c6:f1:8c:02:9f: 9f:94:1b:30:5d:ec:f5:53:39:0b:46:73:aa:60:a4: df:ef:a6:ca:e7:54:40:89:8c:c3:26:1f:96:76:d1: 8b:2e:c0:72:01:37:33:24:87:97:4b:91:b1:f8:e0: c6:6b:ea:fa:5f:79:13:4b:cb:ed:60:de:43:7d:62: 05:19:65:4e:ce:9b:ea:10:7b:0d:6d:34:2c:52:93: 20:e3:7c:fe:54:19:8e:4e:b5:d1:40:e6:ff:af:af: 15:9f:29:58:86:68:52:c5:ee:23:40:5f:92:88:38: 88:72:d6:26:d4:8e:b7:a2:31:e8:03:f2:11:11:5c: 2f:7a:17:4a:d6:8a:6d:7b:3a:1b:b6:26:59:5d:9a: 46:72:ef:d5:55:8c:02:12:3a:ff:52:27:20:b8:3c: 76:e6:ce:ad:7a:f9:22:b8:12:04:a4:cb:64:76:d9: f6:5a:d9:24:df:77:7f:3e:92:bb:4c:44:a8:20:ea: b2:42:c6:8c:e7:ae:49:f9:1c:f7:d0:5b:ee:0e:b9: fe:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CB:D3:56:DC:78:4C:9E:6C:85:59:70:6B:91:B8:1B:FC:81:46:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:78:ae:92:da:5f:b8:4e:05:31:aa:26:28:b6:01:d9:7a:38: 7b:48:e9:98:fc:eb:b7:f2:49:ae:29:20:7b:3c:bd:d8:f1:3c: 31:e6:82:0c:9e:1e:48:e3:e1:2b:de:20:66:b9:f2:0e:04:51: 63:20:43:a2:d9:42:5c:b0:d0:8d:a9:93:be:f0:89:25:54:87: f4:3a:1e:18:94:2a:76:74:14:6d:ad:95:11:91:7b:37:5d:3d: e9:74:24:c0:5e:2c:32:86:2f:2a:71:6e:bd:f6:16:ae:63:7f: 98:d5:0f:08:f8:1b:fd:11:fd:4a:53:71:55:b8:18:2b:eb:01: fe:7c:5d:e4:8b:1c:18:80:60:bf:07:d1:95:f5:71:66:9c:ee: ae:b6:94:bb:8c:b4:34:36:64:95:aa:1e:5e:fd:17:86:98:2c: 5b:f2:54:5e:45:00:6e:54:87:b0:dd:81:ac:d3:ae:ca:37:87: b6:bf:88:0b:8a:6d:64:c3:27:9e:5a:cc:82:69:02:d9:4a:70: b3:38:4d:a3:11:64:66:26:d2:43:17:c6:8f:b8:e3:76:93:92: f1:1b:79:a0:18:55:18:51:f2:13:e2:5f:22:bb:a4:10:fa:33: 02:ff:59:02:a9:49:0e:8e:8f:71:8f:89:67:9c:c9:88:f5:f8: fb:e1:fb:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJJk01MLocNtMdqZbXcMxsDU+mowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDE4WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2MwMjM4MzNlZTljOGEwN2ZhZmQ2NjUxMTc3OTUxM2Jl MDA0ZWMyYWRjNTliZjE5NzFmZjdkMThiMTJlZTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWkiWtKAjfN5M9x7eqVSP1+e6lrLlwxbnF2Y4yi3CHyvUP diMi+CF+cQU5LiKJirHpQjccy4zG8YwCn5+UGzBd7PVTOQtGc6pgpN/vpsrnVECJ jMMmH5Z20YsuwHIBNzMkh5dLkbH44MZr6vpfeRNLy+1g3kN9YgUZZU7Om+oQew1t NCxSkyDjfP5UGY5OtdFA5v+vrxWfKViGaFLF7iNAX5KIOIhy1ibUjreiMegD8hER XC96F0rWim17Ohu2JlldmkZy79VVjAISOv9SJyC4PHbmzq16+SK4EgSky2R22fZa 2STfd38+krtMRKgg6rJCxoznrkn5HPfQW+4Ouf4VAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeMvTVtx4TJ5shVlwa5G4G/yBRo8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTk0NzRhLWJmOTQtNGZjZS05NjBlLTYwMGM4ZTg2YzI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZjANBgkqhkiG9w0BAQsFAAOCAQEAr3iuktpfuE4FMaomKLYB2Xo4e0jp mPzrt/JJrikgezy92PE8MeaCDJ4eSOPhK94gZrnyDgRRYyBDotlCXLDQjamTvvCJ JVSH9DoeGJQqdnQUba2VEZF7N1096XQkwF4sMoYvKnFuvfYWrmN/mNUPCPgb/RH9 SlNxVbgYK+sB/nxd5IscGIBgvwfRlfVxZpzurraUu4y0NDZklaoeXv0XhpgsW/JU XkUAblSHsN2BrNOuyjeHtr+IC4ptZMMnnlrMgmkC2UpwszhNoxFkZibSQxfGj7jj dpOS8Rt5oBhVGFHyE+JfIrukEPozAv9ZAqlJDo6PcY+JZ5zJiPX4++H73g== -----END CERTIFICATE-----Generated at Sun May 11 09:41:33 2025 by rpki-client