$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46dcc094-243f-4dae-b743-198aafddacb6.roa File: 46dcc094-243f-4dae-b743-198aafddacb6.roa (raw, json) Hash identifier: GKWGpJUb+lNQ0j+nv7QQ7b/jCSKl8fzidQmrkJwSoH8= Subject key identifier: E8:37:31:BF:91:1F:BF:A4:88:8B:45:12:35:FE:C6:7F:67:AF:9E:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 576FD637A848638D12FC1045890DE88D0E609794 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46dcc094-243f-4dae-b743-198aafddacb6.roa Signing time: Wed 07 May 2025 00:20:19 +0000 ROA not before: Wed 07 May 2025 00:20:19 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6f:d6:37:a8:48:63:8d:12:fc:10:45:89:0d:e8:8d:0e:60:97:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:19 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=a67286d3b139594fefcdbfe27791225904ef9da709f60fa28ec1599fc432c3a5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:fe:1a:a0:54:73:84:43:34:9a:1a:e2:1b: 63:4e:cd:1a:44:b3:ad:f9:76:bc:d0:67:b3:a5:60: 68:66:f9:d4:2c:73:56:3f:48:04:3c:6d:aa:30:14: 1b:cd:76:71:e9:0a:a7:d3:44:b6:51:0c:f2:0a:a7: d9:4a:6a:10:c9:72:ff:5b:02:aa:5f:a0:ad:44:20: 61:f5:b1:9d:2d:d3:1a:d6:54:e7:db:6f:fc:ff:f2: b3:b8:84:28:c7:1a:7c:76:5d:3b:84:5e:7f:59:6d: 1f:2d:e9:9c:73:a8:b6:28:35:1b:97:6f:58:bf:42: a3:27:b9:62:00:b2:ff:e6:d8:50:cc:4b:dc:02:ba: 8d:1a:b3:20:6c:6e:ce:64:49:ad:ce:ae:1c:99:c9: 8f:36:53:5d:09:dd:ad:10:33:bb:d6:9a:56:60:6f: cb:5c:12:62:9e:da:ac:3f:25:37:55:fb:7d:a4:35: 8b:01:bf:87:d0:83:f5:9b:81:39:7f:5c:9a:08:e4: 23:51:66:6e:bd:49:c1:1f:39:e0:0c:b0:5a:bf:05: 77:23:a6:62:df:49:80:22:e1:8f:6a:58:53:87:21: 3d:70:79:02:7b:76:8a:9d:6d:ec:92:82:6e:e8:0e: eb:15:60:98:f6:50:25:5f:bd:94:5f:26:4d:79:74: 78:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:37:31:BF:91:1F:BF:A4:88:8B:45:12:35:FE:C6:7F:67:AF:9E:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46dcc094-243f-4dae-b743-198aafddacb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.184.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:7a:21:55:2e:5b:5f:8f:1a:0d:bb:67:0c:2d:81:da:31:35: 8e:66:62:a0:13:90:be:57:32:d3:40:e7:3f:10:ef:eb:53:b2: f6:30:cc:53:46:5b:b1:a4:79:d7:8b:d4:1f:2e:53:6b:0b:12: 6e:41:6d:5c:87:2e:27:b4:a1:05:07:a7:58:81:b4:37:ca:05: a1:bd:63:16:4e:65:6a:c4:ac:bf:8c:29:aa:91:66:77:67:13: 02:3d:ca:01:fd:16:ea:36:d5:bd:d9:bb:70:39:03:b7:90:6c: 96:2b:e2:16:99:87:81:27:86:f0:de:38:04:a1:34:bf:3b:3f: 53:0d:27:f8:30:9f:14:19:88:b0:29:d1:56:c7:95:dd:20:ba: 30:ed:63:30:6e:30:46:55:e2:40:70:5e:f1:30:27:96:70:49: 05:2d:63:b2:fc:a4:10:e5:ef:de:90:ae:ca:6d:74:3a:4f:66: 0a:ca:ff:12:c5:21:e0:71:68:e0:bc:cc:cf:81:fc:5c:cf:ad: aa:83:55:5f:f5:bf:4e:57:27:25:8c:7d:91:fa:34:e0:b1:7a: 78:73:ae:27:4b:8d:4b:df:b2:04:69:0e:52:09:f6:8e:9c:8e: 7f:90:13:06:ee:36:94:d2:3c:26:60:a8:05:ec:49:6d:99:60: 2b:8d:5e:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV2/WN6hIY40S/BBFiQ3ojQ5gl5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDE5WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjcyODZkM2IxMzk1OTRmZWZjZGJmZTI3NzkxMjI1OTA0 ZWY5ZGE3MDlmNjBmYTI4ZWMxNTk5ZmM0MzJjM2E1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMLf4aoFRzhEM0mhriG2NOzRpEs635drzQZ7OlYGhm+dQs c1Y/SAQ8baowFBvNdnHpCqfTRLZRDPIKp9lKahDJcv9bAqpfoK1EIGH1sZ0t0xrW VOfbb/z/8rO4hCjHGnx2XTuEXn9ZbR8t6ZxzqLYoNRuXb1i/QqMnuWIAsv/m2FDM S9wCuo0asyBsbs5kSa3OrhyZyY82U10J3a0QM7vWmlZgb8tcEmKe2qw/JTdV+32k NYsBv4fQg/WbgTl/XJoI5CNRZm69ScEfOeAMsFq/BXcjpmLfSYAi4Y9qWFOHIT1w eQJ7doqdbeySgm7oDusVYJj2UCVfvZRfJk15dHibAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6Dcxv5Efv6SIi0USNf7Gf2evnt0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2ZGNjMDk0LTI0M2YtNGRhZS1iNzQzLTE5OGFhZmRkYWNiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LgwDQYJKoZIhvcNAQELBQADggEBAJx6IVUuW1+PGg27ZwwtgdoxNY5m YqATkL5XMtNA5z8Q7+tTsvYwzFNGW7GkedeL1B8uU2sLEm5BbVyHLie0oQUHp1iB tDfKBaG9YxZOZWrErL+MKaqRZndnEwI9ygH9Fuo21b3Zu3A5A7eQbJYr4haZh4En hvDeOAShNL87P1MNJ/gwnxQZiLAp0VbHld0gujDtYzBuMEZV4kBwXvEwJ5ZwSQUt Y7L8pBDl796QrsptdDpPZgrK/xLFIeBxaOC8zM+B/FzPraqDVV/1v05XJyWMfZH6 NOCxenhzridLjUvfsgRpDlIJ9o6cjn+QEwbuNpTSPCZgqAXsSW2ZYCuNXlU= -----END CERTIFICATE-----Generated at Sun May 11 18:26:32 2025 by rpki-client