$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa File: 46a7936f-33e7-4e70-981a-f74a37d534fd.roa (raw, json) Hash identifier: ERy5DTW+eCTslhXFSmjprGfFXXmA3vYyLLes0JBHNUk= Subject key identifier: 18:1E:07:DF:97:D6:40:37:C8:8F:E7:99:42:F8:2D:17:76:75:D7:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 766F8B79700002430C499C7B454541AE4EC0F2A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa Signing time: Tue 29 Apr 2025 00:01:56 +0000 ROA not before: Tue 29 Apr 2025 00:01:56 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.125.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:6f:8b:79:70:00:02:43:0c:49:9c:7b:45:45:41:ae:4e:c0:f2:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:01:56 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=651f409e4495f7ea5ab0dc2ddca6edb73c071e164850f5f1bfa270f37ec19416, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:c8:0b:dd:d0:05:ec:19:44:cd:bc:ac:c7: fc:43:0a:b0:67:f4:60:cf:ff:6b:1d:66:28:a7:b5: 05:51:41:4f:de:83:dd:ce:5e:b8:f6:c6:57:27:31: d9:b4:eb:e1:62:f8:8c:9c:12:43:6c:ed:04:35:21: 1b:1d:a4:44:3f:60:01:d3:00:52:96:f0:fe:4f:89: 10:ae:9c:08:b0:c1:36:36:ef:7f:32:bd:65:69:3b: 55:c6:e0:9b:42:5a:8a:9c:aa:f0:41:93:83:7d:d8: 97:d9:eb:40:c7:8a:46:47:e2:80:dc:d5:e2:0a:7f: cb:41:02:9a:55:ea:ee:0f:72:aa:da:cf:77:20:10: 55:9a:e2:a0:0e:94:76:ca:73:8c:2f:8e:69:81:2b: 3b:be:83:6c:80:bd:f0:b6:b6:e7:f8:b7:c3:3d:a0: 72:68:1f:fc:06:7c:56:4d:c3:02:2a:28:1e:97:eb: 69:fe:5f:bd:d0:f8:a7:35:6f:59:da:14:cc:a3:5a: c4:a7:56:d5:57:05:75:dc:df:4d:cc:5a:e5:30:08: 29:a8:f5:d5:28:85:46:70:39:24:1a:b8:ea:3e:5f: 44:67:52:e9:1a:31:45:b7:f2:f3:f3:c3:30:e7:31: 1b:10:dc:56:f7:ce:e9:aa:1f:35:85:fe:a4:da:9e: 97:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:1E:07:DF:97:D6:40:37:C8:8F:E7:99:42:F8:2D:17:76:75:D7:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.125.40.0/21 Signature Algorithm: sha256WithRSAEncryption a4:69:eb:36:1f:b1:be:3d:0a:d1:32:a8:64:ba:7b:cd:13:48: 4d:04:d1:27:f8:50:ab:57:af:a7:1f:81:ea:99:9f:02:8a:82: ce:3f:79:08:f1:7f:19:55:35:fa:fc:d5:b5:1f:85:2f:c4:3e: a2:ac:db:05:9c:dd:6c:27:fc:c1:ba:9e:e3:27:85:0e:27:c6: 45:06:97:d1:ac:e8:76:58:22:36:88:3c:ae:62:da:44:2f:6c: 02:ec:0c:9c:91:ca:16:48:af:dd:27:56:64:ad:f9:4d:6a:bc: 53:7d:c4:f7:8e:87:ff:45:48:86:18:69:7b:f9:92:ee:46:30: 4e:9e:b1:74:e4:4d:e9:84:ac:bf:b0:cd:4f:a8:b0:88:34:ab: 87:e6:c7:02:2d:eb:f9:9f:5f:e3:40:7b:b3:f4:7d:c5:e9:ef: 26:18:eb:8e:50:40:0f:56:57:f3:ff:19:c5:be:fc:f7:12:44: a3:3b:dc:d9:49:2b:b3:33:84:f8:a3:e4:c8:97:c7:b1:3d:3f: ec:1d:30:9d:04:f7:46:fe:4c:9d:9a:d2:19:f8:ed:b0:67:eb: dc:89:5b:d5:9c:51:7e:d5:62:ae:b0:32:06:8b:93:76:b0:b3: 45:f1:3f:54:9b:4f:d8:98:21:ca:53:4c:e1:e4:3d:d0:91:8f: 3f:e7:89:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdm+LeXAAAkMMSZx7RUVBrk7A8qUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMTU2WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTFmNDA5ZTQ0OTVmN2VhNWFiMGRjMmRkY2E2ZWRiNzNj MDcxZTE2NDg1MGY1ZjFiZmEyNzBmMzdlYzE5NDE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY3sgL3dAF7BlEzbysx/xDCrBn9GDP/2sdZiintQVRQU/e g93OXrj2xlcnMdm06+Fi+IycEkNs7QQ1IRsdpEQ/YAHTAFKW8P5PiRCunAiwwTY2 738yvWVpO1XG4JtCWoqcqvBBk4N92JfZ60DHikZH4oDc1eIKf8tBAppV6u4Pcqra z3cgEFWa4qAOlHbKc4wvjmmBKzu+g2yAvfC2tuf4t8M9oHJoH/wGfFZNwwIqKB6X 62n+X73Q+Kc1b1naFMyjWsSnVtVXBXXc303MWuUwCCmo9dUohUZwOSQauOo+X0Rn UukaMUW38vPzwzDnMRsQ3Fb3zumqHzWF/qTanpeLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGB4H35fWQDfIj+eZQvgtF3Z11/QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2YTc5MzZmLTMzZTctNGU3MC05ODFhLWY3NGEzN2Q1MzRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPOfSgwDQYJKoZIhvcNAQELBQADggEBAKRp6zYfsb49CtEyqGS6e80TSE0E 0Sf4UKtXr6cfgeqZnwKKgs4/eQjxfxlVNfr81bUfhS/EPqKs2wWc3Wwn/MG6nuMn hQ4nxkUGl9Gs6HZYIjaIPK5i2kQvbALsDJyRyhZIr90nVmSt+U1qvFN9xPeOh/9F SIYYaXv5ku5GME6esXTkTemErL+wzU+osIg0q4fmxwIt6/mfX+NAe7P0fcXp7yYY 645QQA9WV/P/GcW+/PcSRKM73NlJK7MzhPij5MiXx7E9P+wdMJ0E90b+TJ2a0hn4 7bBn69yJW9WcUX7VYq6wMgaLk3aws0XxP1SbT9iYIcpTTOHkPdCRjz/nib4= -----END CERTIFICATE-----Generated at Mon May 5 05:35:13 2025 by rpki-client