$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa File: 694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa (raw, json) Hash identifier: HF28PTWU+cMs/frrmA95k4DVaXQ+CE2x3JmNMNQXGYU= Subject key identifier: 7B:08:EA:37:FD:54:DF:A1:80:AE:B2:35:D0:8C:DA:AE:20:0A:98:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A3F9984446485CB3D2013B5468AE341BB4051D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa Signing time: Tue 22 Apr 2025 17:40:13 +0000 ROA not before: Tue 22 Apr 2025 17:40:13 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.81.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3f:99:84:44:64:85:cb:3d:20:13:b5:46:8a:e3:41:bb:40:51:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:40:13 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=8050bf71d63e1796bb64076b9e54ec23cf88104e54cda63ea30a54a8e2c53d4f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:33:00:c2:a7:ad:18:74:d5:07:63:a7:d8:94: e9:06:0c:16:a7:10:12:34:51:db:7d:86:38:1a:d6: 48:e7:b0:ef:e4:19:6e:cb:d1:a8:f0:12:65:c3:0a: 72:e0:a6:e3:54:e4:4c:13:e8:31:d4:b0:71:cc:d5: 6b:81:1e:00:20:12:ef:40:03:2e:53:73:2e:0c:01: a7:06:01:38:15:ee:dd:95:a9:72:53:b9:f6:61:67: 67:8f:66:91:46:59:7d:9b:4a:91:07:f5:2d:36:30: c1:19:f4:75:89:63:6d:a1:39:99:c9:1e:a7:3b:83: 6a:45:b7:d1:a7:5f:63:a8:16:3b:9f:ef:54:a7:4e: e8:90:c5:c1:08:5b:c0:b6:3d:b2:f6:b9:5f:ad:2c: ca:d2:65:db:a5:7e:5c:7a:fb:af:0b:da:c4:9c:b0: d1:90:15:e3:af:39:24:d5:79:5f:f3:03:19:0d:d3: 3d:cf:18:2a:29:f2:00:fe:5e:cb:be:f4:61:cd:dc: b4:7a:83:b1:f6:46:05:5f:fe:d4:2b:d9:57:c5:89: f5:0e:a9:96:e8:cc:4e:f8:5c:13:22:fe:4e:cf:38: a8:fa:56:aa:83:7b:0f:7d:42:f5:c5:cb:c1:a7:bc: 95:c6:86:b0:47:fb:13:e4:dd:d4:53:03:bf:b4:8e: 23:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:08:EA:37:FD:54:DF:A1:80:AE:B2:35:D0:8C:DA:AE:20:0A:98:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.81.0.0/16 Signature Algorithm: sha256WithRSAEncryption 11:f4:42:86:7c:96:6c:5d:97:01:57:b4:cf:06:66:e6:d1:b9: 43:86:cb:1c:47:23:7f:28:a8:e5:bd:13:05:34:f3:ba:8f:c2: ef:4e:c5:96:38:00:2d:d7:98:2a:ef:0a:b1:6f:d4:91:19:1d: dd:5b:66:90:5b:f7:61:e0:88:c3:e6:44:93:fa:ab:fc:04:7a: cf:90:ee:d1:26:9b:41:5f:34:bf:e3:f7:ea:34:59:c5:e7:60: 33:c3:58:43:f8:24:6b:af:a9:aa:2b:57:90:f3:5d:ad:7f:3e: 39:84:ac:95:58:d3:eb:2f:ca:65:fd:84:ee:9d:74:cf:b8:5c: ee:8d:7f:63:bb:9a:c5:30:38:8c:40:37:e0:21:1e:fe:37:b4: 2e:dd:f7:5a:84:28:f8:72:1b:69:af:ab:9f:93:2f:43:eb:06: df:16:e5:b6:e4:d4:d9:61:bd:c5:15:a3:bb:6c:6e:f3:ec:27: 61:0a:46:32:ee:52:bb:60:28:d5:27:76:29:6d:e5:fd:98:eb: 6b:b7:fc:8d:1e:4a:bf:e2:d7:42:de:bc:8e:c4:31:a3:c3:ab: aa:3b:2d:c9:fb:f6:83:cc:c1:be:7d:ca:0a:40:c8:b9:e1:cf: 5b:74:a1:8d:f1:f7:93:c8:4a:47:8b:f4:5e:2f:b8:96:6f:cb: a1:64:b4:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKj+ZhERkhcs9IBO1RorjQbtAUdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTc0MDEzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDUwYmY3MWQ2M2UxNzk2YmI2NDA3NmI5ZTU0ZWMyM2Nm ODgxMDRlNTRjZGE2M2VhMzBhNTRhOGUyYzUzZDRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMwDCp60YdNUHY6fYlOkGDBanEBI0Udt9hjga1kjnsO/k GW7L0ajwEmXDCnLgpuNU5EwT6DHUsHHM1WuBHgAgEu9AAy5Tcy4MAacGATgV7t2V qXJTufZhZ2ePZpFGWX2bSpEH9S02MMEZ9HWJY22hOZnJHqc7g2pFt9GnX2OoFjuf 71SnTuiQxcEIW8C2PbL2uV+tLMrSZdulflx6+68L2sScsNGQFeOvOSTVeV/zAxkN 0z3PGCop8gD+Xsu+9GHN3LR6g7H2RgVf/tQr2VfFifUOqZbozE74XBMi/k7POKj6 VqqDew99QvXFy8GnvJXGhrBH+xPk3dRTA7+0jiM7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUewjqN/1U36GArrI10IzariAKmHIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NGNjOTkwLTZiYTAtNDJkOC05MGY5LTFjNWQ4Yjc4YTAzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBFUTANBgkqhkiG9w0BAQsFAAOCAQEAEfRChnyWbF2XAVe0zwZm5tG5Q4bL HEcjfyio5b0TBTTzuo/C707FljgALdeYKu8KsW/UkRkd3VtmkFv3YeCIw+ZEk/qr /AR6z5Du0SabQV80v+P36jRZxedgM8NYQ/gka6+pqitXkPNdrX8+OYSslVjT6y/K Zf2E7p10z7hc7o1/Y7uaxTA4jEA34CEe/je0Lt33WoQo+HIbaa+rn5MvQ+sG3xbl tuTU2WG9xRWju2xu8+wnYQpGMu5Su2Ao1Sd2KW3l/Zjra7f8jR5Kv+LXQt68jsQx o8Orqjstyfv2g8zBvn3KCkDIueHPW3ShjfH3k8hKR4v0Xi+4lm/LoWS0hA== -----END CERTIFICATE-----Generated at Sat May 10 16:43:40 2025 by rpki-client