$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa File: 5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa (raw, json) Hash identifier: c4PKsgWokaRuITTOnWoUKNmS8E+g4ozPNwaOnLpBTkk= Subject key identifier: C6:BD:DD:44:06:01:45:51:DB:3F:75:26:07:39:10:B6:13:DC:1D:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DC8180FF7BDF3B28D35E7A3D950EE5F52536484 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa Signing time: Tue 06 May 2025 00:11:04 +0000 ROA not before: Tue 06 May 2025 00:11:04 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.33.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c8:18:0f:f7:bd:f3:b2:8d:35:e7:a3:d9:50:ee:5f:52:53:64:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:11:04 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=773b4fefea5fab8e1385dfc9bf9e32fab31bfce9d3177f16258a9d1f04491de6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b6:a6:f1:a5:98:31:7f:db:ef:a6:bb:e4:82: 4c:16:0e:b1:ae:96:92:24:8c:0e:8e:0e:18:74:44: 7a:f4:59:ce:24:32:c0:35:d4:6d:4e:00:be:e0:e1: 28:69:8b:e5:e7:0b:6a:ff:50:cc:e8:15:7b:2f:c0: f0:f4:ca:74:a9:25:71:b4:89:ef:e0:53:d3:8e:3e: ef:2e:e1:75:d2:51:37:65:c4:0a:c7:e9:58:56:a5: 7d:76:78:2e:08:e5:27:b3:d8:0c:ef:f8:83:1d:5b: 80:b3:e4:51:6b:be:11:8b:70:a3:42:95:78:b7:9c: f0:4b:5f:64:74:86:2b:5a:64:f5:a9:5f:b0:28:9a: 25:95:7b:23:a1:34:fb:78:a6:4c:6c:8b:06:b7:90: ef:1b:fc:82:18:b8:ff:18:3b:37:3a:6c:3b:69:38: 1d:fb:90:77:e0:95:41:a9:eb:40:ea:d6:87:07:48: 1e:dc:ac:0e:81:02:c3:c0:ea:9e:1f:a7:b2:d7:08: a6:94:89:d5:67:38:1c:97:40:ca:dc:e6:50:08:cc: 1f:06:aa:9e:31:48:23:97:2f:82:67:f6:5e:f8:1d: 8b:d6:7b:71:bb:cb:79:e5:dc:33:16:94:fa:0a:9c: d7:67:58:3f:f2:ca:d3:c6:94:01:40:97:4f:5c:44: 0c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BD:DD:44:06:01:45:51:DB:3F:75:26:07:39:10:B6:13:DC:1D:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.33.128.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:72:53:7e:7f:3e:37:8c:8f:ca:16:88:c7:0f:db:3d:87:18: 61:f4:f5:9a:8f:1b:6e:32:fd:c7:08:34:13:a4:6f:83:f6:c6: 51:9d:f1:da:3e:14:8d:9f:58:3b:aa:92:b3:bc:15:65:d6:af: 25:d1:53:16:d3:a4:3d:67:08:f1:3e:98:40:37:16:4d:08:79: e7:9c:fb:7a:e6:2d:e5:ff:63:2d:31:53:33:15:18:7f:00:2f: 10:69:5c:75:13:16:b2:de:61:ca:b5:e8:b2:d5:69:45:d6:f2: d5:52:e4:ec:97:95:b0:f1:21:9a:94:60:3e:3e:5d:60:63:9b: 61:8d:34:ca:74:21:07:c4:b1:58:ab:78:06:e1:56:2c:92:87: 10:f5:1e:e2:55:42:cb:32:61:16:2d:fc:c5:60:a0:d4:d0:d7: 6a:60:84:a7:6f:4f:d4:70:c3:89:97:5f:a2:a1:6a:03:68:c5: 87:bf:2d:7e:15:e9:f9:c7:b0:b8:71:c5:af:9d:35:ae:a8:ee: 0f:5c:0a:ca:fc:ae:89:26:03:b0:28:2b:14:a2:7c:d3:3a:94: b2:8c:61:e2:fe:03:0a:bc:d2:40:43:fd:f5:00:87:5b:2d:fc: 16:e6:ad:53:c0:ae:94:7b:7f:6f:d0:0b:84:1b:64:c9:6e:98: 5c:ed:07:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfcgYD/e987KNNeej2VDuX1JTZIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA2MDAxMTA0WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzNiNGZlZmVhNWZhYjhlMTM4NWRmYzliZjllMzJmYWIz MWJmY2U5ZDMxNzdmMTYyNThhOWQxZjA0NDkxZGU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+tqbxpZgxf9vvprvkgkwWDrGulpIkjA6ODhh0RHr0Wc4k MsA11G1OAL7g4Shpi+XnC2r/UMzoFXsvwPD0ynSpJXG0ie/gU9OOPu8u4XXSUTdl xArH6VhWpX12eC4I5Sez2Azv+IMdW4Cz5FFrvhGLcKNClXi3nPBLX2R0hitaZPWp X7AomiWVeyOhNPt4pkxsiwa3kO8b/IIYuP8YOzc6bDtpOB37kHfglUGp60Dq1ocH SB7crA6BAsPA6p4fp7LXCKaUidVnOByXQMrc5lAIzB8Gqp4xSCOXL4Jn9l74HYvW e3G7y3nl3DMWlPoKnNdnWD/yytPGlAFAl09cRAxRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxr3dRAYBRVHbP3UmBzkQthPcHcMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmMjBkMDkwLThlMTMtNGJkYy1iZmI3LTFmZTMzNmU3ODhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIYAwDQYJKoZIhvcNAQELBQADggEBAH1yU35/PjeMj8oWiMcP2z2HGGH0 9ZqPG24y/ccINBOkb4P2xlGd8do+FI2fWDuqkrO8FWXWryXRUxbTpD1nCPE+mEA3 Fk0Ieeec+3rmLeX/Yy0xUzMVGH8ALxBpXHUTFrLeYcq16LLVaUXW8tVS5OyXlbDx IZqUYD4+XWBjm2GNNMp0IQfEsVireAbhViyShxD1HuJVQssyYRYt/MVgoNTQ12pg hKdvT9Rww4mXX6KhagNoxYe/LX4V6fnHsLhxxa+dNa6o7g9cCsr8rokmA7AoKxSi fNM6lLKMYeL+Awq80kBD/fUAh1st/BbmrVPArpR7f2/QC4QbZMlumFztB8o= -----END CERTIFICATE-----Generated at Wed May 7 11:25:53 2025 by rpki-client