$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48af1dfe-0e61-4862-8ae2-75b053bcc924.roa File: 48af1dfe-0e61-4862-8ae2-75b053bcc924.roa (raw, json) Hash identifier: sDBhVWyI/NXJCH+VGJIZBJxVr2e5jXGU4gD5S79BXus= Subject key identifier: 24:7C:B3:F8:6B:2A:26:73:84:47:68:7E:78:EA:D8:FD:03:D0:30:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6194F4ACFDBCF55A42DC35C71EC2A45167C25019 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48af1dfe-0e61-4862-8ae2-75b053bcc924.roa Signing time: Wed 07 May 2025 00:20:14 +0000 ROA not before: Wed 07 May 2025 00:20:14 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.215.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:94:f4:ac:fd:bc:f5:5a:42:dc:35:c7:1e:c2:a4:51:67:c2:50:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:14 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=c0b7d585edb58a6c033c1e5d4b46814274d30df97d45ff0cd8a69cea5af97b02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:73:aa:c9:54:2a:61:01:98:e5:23:1f:ba:8b: d5:05:23:b8:fb:c0:3b:82:80:de:f1:96:72:c3:93: b0:08:cb:db:28:35:2c:02:ef:d3:12:26:b4:c6:21: 1b:24:ab:49:9e:5a:95:86:c1:c8:92:18:02:97:90: db:2e:98:db:aa:d7:32:ab:52:c2:6a:13:90:d9:8b: 65:d1:48:cb:58:5e:8d:52:72:2f:71:63:5b:8d:8f: 49:95:06:e7:f6:51:9a:81:6d:bb:b2:ed:4e:c1:40: c9:b1:9f:f8:56:ca:60:c6:ad:4c:e0:1b:18:16:0c: e3:34:ed:72:24:5c:79:e5:50:7e:9d:2f:1a:82:d9: 38:ec:4b:e5:55:4c:de:8d:65:35:0a:bb:8b:22:e2: bc:0d:bc:de:1c:1f:87:55:48:78:fa:d6:01:cd:9d: 9d:ad:a7:3c:ce:1e:e4:1a:cf:33:6d:6b:3d:5d:08: 9f:e1:57:6a:c2:2c:4a:fa:b6:42:e5:b2:ad:8c:10: 19:f2:50:3a:18:34:80:26:cf:3b:b6:29:46:2e:ac: f0:6f:9b:d5:58:5b:97:e7:e9:db:1b:f5:ed:59:92: d9:f5:2d:ab:f4:66:b0:3a:9f:13:1f:cb:77:99:fc: cd:87:7d:1e:df:b2:9e:a6:5f:38:1a:38:b1:04:ce: fd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7C:B3:F8:6B:2A:26:73:84:47:68:7E:78:EA:D8:FD:03:D0:30:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48af1dfe-0e61-4862-8ae2-75b053bcc924.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.215.136.0/22 Signature Algorithm: sha256WithRSAEncryption d0:19:07:ba:bd:8a:f0:d1:7b:a0:bc:cf:03:08:25:62:d9:19: 73:9d:c0:89:3b:0e:a7:75:c8:7d:d1:ed:e4:4d:bc:f7:00:04: 4a:17:71:3f:d9:b7:0d:91:8f:d9:ab:b4:fb:b6:a6:35:62:c3: bd:68:ab:47:c0:29:c9:3a:b6:77:00:58:0d:95:94:65:b6:77: fd:04:98:15:6b:e8:85:47:06:9c:16:57:5d:01:03:81:c1:94: c3:44:b7:3b:b1:25:0a:23:6a:ec:ba:ff:73:06:f0:1a:6c:97: 78:63:c2:ee:bc:dd:f0:bc:2e:ef:31:36:2a:54:b9:3e:b0:12: f0:06:86:bb:da:61:fa:d2:92:6c:35:b3:d4:d0:11:d5:7e:72: ee:11:27:27:72:05:9c:5f:1a:d1:86:c1:6b:12:39:72:d8:b6: 58:9b:4b:59:d9:9b:98:ad:43:d5:59:1b:a4:92:7a:26:38:c0: 0a:38:b3:59:3b:bf:b7:ff:60:78:80:26:b3:84:7f:98:cf:77: 67:50:75:a0:86:5c:ac:1f:e4:e5:30:42:89:35:da:d4:6f:77: bf:36:6e:53:b1:68:73:48:35:7e:d8:d3:69:c4:00:95:7d:b1: 9a:72:3e:d5:8d:28:15:79:d7:16:b6:43:1f:90:5e:43:db:20: 41:d5:5f:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYZT0rP289VpC3DXHHsKkUWfCUBkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDE0WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGI3ZDU4NWVkYjU4YTZjMDMzYzFlNWQ0YjQ2ODE0Mjc0 ZDMwZGY5N2Q0NWZmMGNkOGE2OWNlYTVhZjk3YjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCc6rJVCphAZjlIx+6i9UFI7j7wDuCgN7xlnLDk7AIy9so NSwC79MSJrTGIRskq0meWpWGwciSGAKXkNsumNuq1zKrUsJqE5DZi2XRSMtYXo1S ci9xY1uNj0mVBuf2UZqBbbuy7U7BQMmxn/hWymDGrUzgGxgWDOM07XIkXHnlUH6d LxqC2TjsS+VVTN6NZTUKu4si4rwNvN4cH4dVSHj61gHNnZ2tpzzOHuQazzNtaz1d CJ/hV2rCLEr6tkLlsq2MEBnyUDoYNIAmzzu2KUYurPBvm9VYW5fn6dsb9e1Zktn1 Lav0ZrA6nxMfy3eZ/M2HfR7fsp6mXzgaOLEEzv3ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJHyz+GsqJnOER2h+eOrY/QPQMA4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4YWYxZGZlLTBlNjEtNDg2Mi04YWUyLTc1YjA1M2JjYzkyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs14gwDQYJKoZIhvcNAQELBQADggEBANAZB7q9ivDRe6C8zwMIJWLZGXOd wIk7Dqd1yH3R7eRNvPcABEoXcT/Ztw2Rj9mrtPu2pjViw71oq0fAKck6tncAWA2V lGW2d/0EmBVr6IVHBpwWV10BA4HBlMNEtzuxJQojauy6/3MG8Bpsl3hjwu683fC8 Lu8xNipUuT6wEvAGhrvaYfrSkmw1s9TQEdV+cu4RJydyBZxfGtGGwWsSOXLYtlib S1nZm5itQ9VZG6SSeiY4wAo4s1k7v7f/YHiAJrOEf5jPd2dQdaCGXKwf5OUwQok1 2tRvd782blOxaHNINX7Y02nEAJV9sZpyPtWNKBV51xa2Qx+QXkPbIEHVXyU= -----END CERTIFICATE-----Generated at Mon May 12 15:07:11 2025 by rpki-client