$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59994030-fa77-46f8-8c5a-9301b2931210.roa File: 59994030-fa77-46f8-8c5a-9301b2931210.roa (raw, json) Hash identifier: Eyh3M6b4ToI8zdiHmHPDR1zWJsY+K7OLJXL6m3pyB4A= Subject key identifier: DB:AB:3B:30:07:A9:7C:F9:5A:AA:B7:AB:48:E4:80:CD:E3:7E:38:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44CDAB52B6A8709FEB7EB3ECFD5A27765CE2574C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59994030-fa77-46f8-8c5a-9301b2931210.roa Signing time: Tue 13 May 2025 00:30:20 +0000 ROA not before: Tue 13 May 2025 00:30:20 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 185.7.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:cd:ab:52:b6:a8:70:9f:eb:7e:b3:ec:fd:5a:27:76:5c:e2:57:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:30:20 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=aab0d95e4ecae00c7d2a0df2b7e8a8213cd13c52a84f3b619019d71e233e66f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:70:da:8f:89:6d:da:01:a7:a5:04:f9:19: 58:52:46:c0:de:8a:6e:42:a6:0a:b4:6b:55:66:35: 12:cf:52:1b:85:b8:ce:e0:18:8a:2e:b5:1a:fd:f2: 1c:d4:ec:e2:39:05:4c:d6:1a:09:fa:b8:af:aa:b2: 65:55:8b:94:69:34:bb:dc:53:a4:39:45:2a:a7:de: cd:8c:91:da:b1:d7:eb:00:8c:4c:fe:76:d8:12:3b: 62:a2:11:dd:3b:ec:66:84:0e:a8:35:10:b6:47:4e: 2c:62:30:1f:5c:33:b3:a0:fc:00:48:75:e5:90:92: cb:a3:f7:ba:d0:fc:fc:09:73:34:7d:3a:d5:e2:fb: f8:79:a2:5c:dc:57:46:8d:80:1f:60:63:b9:5d:67: e3:bb:9d:ed:b2:16:3b:0d:29:4b:c1:c2:1a:76:2e: 70:8b:4d:69:5e:67:31:51:1c:b0:85:2a:48:cf:e2: f7:9c:ba:1c:c2:e0:b9:bc:26:a2:b0:fb:f3:90:96: 4b:8f:52:ed:fb:63:f2:76:4a:c3:d4:4b:0e:3a:47: a4:01:48:6a:2d:2f:45:01:09:5a:88:cf:17:ce:26: 67:36:d0:a6:98:7f:cd:80:00:c1:c8:4a:2f:0d:04: e9:0c:1f:fd:34:bf:4f:cd:c6:2e:5e:4b:0c:78:64: dc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AB:3B:30:07:A9:7C:F9:5A:AA:B7:AB:48:E4:80:CD:E3:7E:38:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59994030-fa77-46f8-8c5a-9301b2931210.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.7.14.0/24 Signature Algorithm: sha256WithRSAEncryption 50:a3:2b:1c:4c:09:a7:6f:2c:ca:0f:09:85:4b:1c:ca:0c:21: d0:bc:b4:76:c2:41:95:38:44:4c:72:46:00:34:7f:20:4d:11: ae:e0:e9:64:ca:fa:95:bd:9d:18:39:81:29:1e:31:67:91:91: a5:e7:36:f7:3a:8f:49:0c:ae:3a:ce:84:54:b4:ea:e6:b8:90: f7:97:ef:e6:5d:a5:58:b7:c0:95:ca:b6:23:f6:c8:05:46:03: 70:1c:9f:84:be:6b:1f:cc:8d:79:2e:d2:8b:68:8d:56:59:5d: a3:1f:c6:65:35:de:c5:31:c0:35:14:5e:7e:df:2e:55:68:fe: cc:84:ac:2b:88:b6:a8:36:31:c0:e1:32:50:91:78:2b:ee:e4: dc:b9:c4:bd:3e:98:35:4e:03:03:60:cb:c1:0e:2d:25:81:d5: dd:63:50:7c:ec:41:03:31:22:a7:3c:bb:63:db:a5:9a:1d:b6: 3b:fb:83:aa:84:8f:08:64:25:a9:20:e1:ee:45:5e:51:b6:04: 6e:cb:70:23:c7:42:be:6a:25:51:9f:6e:3a:26:d3:cd:d2:88: 49:9f:93:8d:c9:2c:14:34:ea:5d:db:be:5c:ce:e4:cd:5f:e9: c6:3c:0e:64:08:77:bf:84:dd:3c:55:57:87:44:2b:4e:77:8a: 73:f7:3c:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURM2rUraocJ/rfrPs/VondlziV0wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDAzMDIwWhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWIwZDk1ZTRlY2FlMDBjN2QyYTBkZjJiN2U4YTgyMTNj ZDEzYzUyYTg0ZjNiNjE5MDE5ZDcxZTIzM2U2NmYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5BXDaj4lt2gGnpQT5GVhSRsDeim5Cpgq0a1VmNRLPUhuF uM7gGIoutRr98hzU7OI5BUzWGgn6uK+qsmVVi5RpNLvcU6Q5RSqn3s2Mkdqx1+sA jEz+dtgSO2KiEd077GaEDqg1ELZHTixiMB9cM7Og/ABIdeWQksuj97rQ/PwJczR9 OtXi+/h5olzcV0aNgB9gY7ldZ+O7ne2yFjsNKUvBwhp2LnCLTWleZzFRHLCFKkjP 4vecuhzC4Lm8JqKw+/OQlkuPUu37Y/J2SsPUSw46R6QBSGotL0UBCVqIzxfOJmc2 0KaYf82AAMHISi8NBOkMH/00v0/Nxi5eSwx4ZNxZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU26s7MAepfPlaqrerSOSAzeN+OE8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OTk0MDMwLWZhNzctNDZmOC04YzVhLTkzMDFiMjkzMTIxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC5Bw4wDQYJKoZIhvcNAQELBQADggEBAFCjKxxMCadvLMoPCYVLHMoMIdC8 tHbCQZU4RExyRgA0fyBNEa7g6WTK+pW9nRg5gSkeMWeRkaXnNvc6j0kMrjrOhFS0 6ua4kPeX7+ZdpVi3wJXKtiP2yAVGA3Acn4S+ax/MjXku0otojVZZXaMfxmU13sUx wDUUXn7fLlVo/syErCuItqg2McDhMlCReCvu5Ny5xL0+mDVOAwNgy8EOLSWB1d1j UHzsQQMxIqc8u2PbpZodtjv7g6qEjwhkJakg4e5FXlG2BG7LcCPHQr5qJVGfbjom 083SiEmfk43JLBQ06l3bvlzO5M1f6cY8DmQId7+E3TxVV4dEK053inP3POU= -----END CERTIFICATE-----Generated at Wed May 14 12:57:06 2025 by rpki-client