$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45857694-e31f-402e-8257-3676e1f390ba.roa File: 45857694-e31f-402e-8257-3676e1f390ba.roa (raw, json) Hash identifier: BZDKi0u7TIILUqnSO6qt6S/NRS4UMGt84SFnFxE4bA0= Subject key identifier: D9:77:A2:C0:B0:0F:3B:4E:69:3C:6B:71:B2:1F:C6:8B:E7:40:D5:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39A9A8616915D5AFE1DC2F300CE5E6FA3E538C6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45857694-e31f-402e-8257-3676e1f390ba.roa Signing time: Fri 02 May 2025 00:01:33 +0000 ROA not before: Fri 02 May 2025 00:01:33 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 147.106.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a9:a8:61:69:15:d5:af:e1:dc:2f:30:0c:e5:e6:fa:3e:53:8c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:01:33 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=926e35478a0ceb5efd8261714e42ba9559bf5df0ff3e8d581b5f30b8d909bc14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:e3:aa:69:c5:b2:3d:f9:67:d4:b8:85:63: 78:02:28:cc:27:71:f3:72:ec:3b:57:0f:03:a1:6c: 73:63:fd:07:87:9c:f5:52:c7:84:fc:42:ad:ae:30: 82:a0:3f:31:b1:20:68:b5:f7:6d:64:0e:48:cd:b9: 27:49:aa:f8:6a:7c:da:c4:d7:52:10:d5:89:ea:db: 6d:e2:ef:64:e8:c7:fc:7d:7a:b7:4f:f3:c4:33:c0: 0b:fa:61:8b:51:d7:24:f3:d2:e8:77:8a:8d:f9:0f: 70:de:39:4c:eb:39:3c:49:d7:8f:62:6e:e0:2a:6f: 57:b1:73:48:4d:00:2e:0f:4a:ad:ac:7b:c5:31:24: c5:23:89:e2:7a:1f:57:3f:84:7e:e2:a1:fd:df:38: 72:e7:02:4d:b1:f7:dc:1e:68:b6:61:41:06:8f:a5: 51:d4:8d:ce:d1:a0:f3:09:dd:3f:36:51:e9:d4:66: 81:07:f6:c4:5e:88:c4:ea:bc:25:37:fa:f3:6a:4a: d5:d0:7e:d6:4c:00:d4:98:39:fa:08:2d:71:2b:d8: 1c:f9:69:d2:82:16:5c:52:1d:5c:be:9e:ac:c3:a0: a5:fe:84:91:1a:c4:23:53:4c:c2:ef:64:9a:58:48: 8c:94:49:ba:1f:50:23:38:01:80:f5:cf:3a:57:a5: 28:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:77:A2:C0:B0:0F:3B:4E:69:3C:6B:71:B2:1F:C6:8B:E7:40:D5:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45857694-e31f-402e-8257-3676e1f390ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.0.0/18 Signature Algorithm: sha256WithRSAEncryption 26:62:f5:45:bd:30:9c:02:a6:44:60:1c:56:a9:1d:31:c7:b7: 55:22:c0:53:10:4b:66:64:02:6e:c6:a9:08:40:20:e7:71:61: 92:ff:55:97:b2:98:7a:4f:bf:b7:81:a6:6e:d5:c0:f6:05:fc: 89:c7:7b:74:be:71:8f:d3:b9:96:00:6e:a8:a7:25:8f:cf:55: ef:7f:57:97:f2:d8:2b:e6:10:93:91:43:9f:2b:47:67:26:0a: f7:f8:9c:32:c0:03:22:b9:4b:f9:c4:50:d0:8a:4f:b7:48:98: 22:2d:c1:85:28:12:e3:4e:97:93:21:40:29:dd:d6:1b:f2:d1: 36:ab:69:33:dd:a3:50:dd:3c:7c:ed:f3:bf:56:d0:9c:4b:d8: 0c:8c:8d:20:94:08:b7:24:48:57:a4:52:89:c1:00:9b:65:5a: e1:a1:f3:20:7a:2a:76:0a:a9:39:7d:02:8a:0a:f6:5b:b0:7a: b4:df:d2:6e:d2:fb:f5:d1:c7:ec:25:9a:4f:9e:cb:21:88:4e: b7:37:cb:ae:50:6d:09:25:4e:78:d9:81:3d:ee:9f:fe:c2:8d: 93:76:dd:ce:ed:d2:bb:9c:44:81:00:75:71:83:25:1b:58:0b: 05:98:d4:2c:8e:ea:cf:09:59:ee:2e:6d:35:f8:80:71:fd:7f: b3:47:84:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOamoYWkV1a/h3C8wDOXm+j5TjGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMTMzWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjZlMzU0NzhhMGNlYjVlZmQ4MjYxNzE0ZTQyYmE5NTU5 YmY1ZGYwZmYzZThkNTgxYjVmMzBiOGQ5MDliYzE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq7uOqacWyPfln1LiFY3gCKMwncfNy7DtXDwOhbHNj/QeH nPVSx4T8Qq2uMIKgPzGxIGi1921kDkjNuSdJqvhqfNrE11IQ1Ynq223i72Tox/x9 erdP88QzwAv6YYtR1yTz0uh3io35D3DeOUzrOTxJ149ibuAqb1exc0hNAC4PSq2s e8UxJMUjieJ6H1c/hH7iof3fOHLnAk2x99weaLZhQQaPpVHUjc7RoPMJ3T82UenU ZoEH9sReiMTqvCU3+vNqStXQftZMANSYOfoILXEr2Bz5adKCFlxSHVy+nqzDoKX+ hJEaxCNTTMLvZJpYSIyUSbofUCM4AYD1zzpXpSizAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2XeiwLAPO05pPGtxsh/Gi+dA1bkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1ODU3Njk0LWUzMWYtNDAyZS04MjU3LTM2NzZlMWYzOTBiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTagAwDQYJKoZIhvcNAQELBQADggEBACZi9UW9MJwCpkRgHFapHTHHt1Ui wFMQS2ZkAm7GqQhAIOdxYZL/VZeymHpPv7eBpm7VwPYF/InHe3S+cY/TuZYAbqin JY/PVe9/V5fy2CvmEJORQ58rR2cmCvf4nDLAAyK5S/nEUNCKT7dImCItwYUoEuNO l5MhQCnd1hvy0TaraTPdo1DdPHzt879W0JxL2AyMjSCUCLckSFekUonBAJtlWuGh 8yB6KnYKqTl9AooK9luwerTf0m7S+/XRx+wlmk+eyyGITrc3y65QbQklTnjZgT3u n/7CjZN23c7t0rucRIEAdXGDJRtYCwWY1CyO6s8JWe4ubTX4gHH9f7NHhBA= -----END CERTIFICATE-----Generated at Sun May 11 19:22:07 2025 by rpki-client