$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b2ba44e-fd81-42fb-85ce-0e8a0c8d5c37.roa File: 6b2ba44e-fd81-42fb-85ce-0e8a0c8d5c37.roa (raw, json) Hash identifier: J4CEEy2lxWCDhwcGmoUx+E/V0aKJKmVFC5Da+I1bGs8= Subject key identifier: FC:A5:22:98:EC:C8:1C:9C:00:04:7B:1F:A4:B9:34:40:12:E8:E5:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69DDF6F31D75507E217E8528D4B137917FBCD6BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b2ba44e-fd81-42fb-85ce-0e8a0c8d5c37.roa Signing time: Fri 02 May 2025 00:01:01 +0000 ROA not before: Fri 02 May 2025 00:01:01 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.166.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:dd:f6:f3:1d:75:50:7e:21:7e:85:28:d4:b1:37:91:7f:bc:d6:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:01:01 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=b1c8fb303b786328342c05f2496acb3ca30b5f79c5b3bd49e51b95bae54ce830, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:a3:20:24:c7:ae:61:54:08:b5:1f:c9:da: cc:38:e5:9b:93:1f:ef:06:f5:28:57:3c:ab:2c:df: fd:fe:88:7c:62:a6:a2:bf:10:b1:d9:a7:86:67:39: 56:ba:1e:c2:08:10:a5:09:04:5f:79:6c:50:d1:4e: 0a:54:e8:da:40:fb:3d:38:a8:4c:5a:83:cc:8f:03: 67:49:b8:61:f1:12:78:66:63:5a:76:a6:aa:3c:8d: 95:c6:6c:1a:e1:9c:fe:00:08:c6:1b:9a:bb:20:e6: 4e:a9:0d:64:82:13:fe:e0:26:d2:f8:60:1b:aa:75: c7:13:dd:2f:22:3a:4d:96:7f:a1:e6:8f:2c:1b:0a: 20:2d:ba:84:96:ee:56:eb:02:15:04:4e:c6:80:d7: f8:b5:20:9a:73:92:f8:35:8e:b2:f2:fa:23:06:48: d0:cf:cc:07:1d:e3:69:22:13:25:27:a4:6e:b7:ba: 82:ac:6f:8b:fc:c1:2b:40:a8:67:ad:08:36:3b:2f: e5:be:0d:62:2f:56:60:b2:b4:ee:7d:f9:fb:e7:6a: 0d:c4:11:ab:58:fc:23:63:b3:cb:f5:74:eb:b3:e9: 13:19:1a:d1:b7:60:e6:e9:2d:06:d0:c5:eb:7b:11: 50:7a:28:12:07:d1:7c:a4:08:f7:7a:21:00:5c:f5: 03:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A5:22:98:EC:C8:1C:9C:00:04:7B:1F:A4:B9:34:40:12:E8:E5:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b2ba44e-fd81-42fb-85ce-0e8a0c8d5c37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.166.0.0/15 Signature Algorithm: sha256WithRSAEncryption 42:4b:63:2a:a4:ac:09:cf:dc:bd:48:2d:bb:7a:7b:31:ad:de: 8b:02:25:e1:28:6d:84:96:59:78:5a:04:76:13:ef:a4:a6:61: 15:96:0c:2e:24:a5:1d:17:be:b7:e4:29:8b:d7:e9:dd:2a:e2: e8:94:df:7c:12:85:3c:7f:96:f2:1b:0f:32:c3:4d:2e:7b:32: 13:e4:0c:e5:03:e4:01:90:9f:74:d5:e8:89:1f:4f:e7:16:1a: 08:b1:db:11:c1:1f:fd:53:51:33:65:4f:b3:06:ab:57:7b:64: f8:60:8a:ac:e7:7a:b0:59:c6:2b:01:d1:a5:90:7f:ac:b0:69: b3:6d:0e:5a:b0:34:5b:e0:dd:44:06:f1:d5:59:1b:4b:6d:76: ac:9d:a1:94:89:a0:5b:48:bc:2f:e3:cd:4c:d0:8b:e8:1b:13: 16:44:7a:86:c5:e4:0d:30:38:ff:b4:b4:ea:e8:11:d7:27:fe: 6b:6b:32:04:18:99:74:30:79:a7:74:d1:a3:bf:6f:81:1a:06: c3:15:5f:70:b8:67:08:36:5a:cd:05:d2:fe:6f:40:35:ba:d3: 36:21:f2:04:1d:8a:13:93:d5:4c:0f:d3:95:c5:43:6a:38:9c: 80:ef:68:19:6e:94:eb:85:93:b3:70:3e:ef:49:f3:8f:94:2f: da:1f:ce:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUad328x11UH4hfoUo1LE3kX+81rswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMTAxWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWM4ZmIzMDNiNzg2MzI4MzQyYzA1ZjI0OTZhY2IzY2Ez MGI1Zjc5YzViM2JkNDllNTFiOTViYWU1NGNlODMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5+qMgJMeuYVQItR/J2sw45ZuTH+8G9ShXPKss3/3+iHxi pqK/ELHZp4ZnOVa6HsIIEKUJBF95bFDRTgpU6NpA+z04qExag8yPA2dJuGHxEnhm Y1p2pqo8jZXGbBrhnP4ACMYbmrsg5k6pDWSCE/7gJtL4YBuqdccT3S8iOk2Wf6Hm jywbCiAtuoSW7lbrAhUETsaA1/i1IJpzkvg1jrLy+iMGSNDPzAcd42kiEyUnpG63 uoKsb4v8wStAqGetCDY7L+W+DWIvVmCytO59+fvnag3EEatY/CNjs8v1dOuz6RMZ GtG3YObpLQbQxet7EVB6KBIH0XykCPd6IQBc9QOnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/KUimOzIHJwABHsfpLk0QBLo5XUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiMmJhNDRlLWZkODEtNDJmYi04NWNlLTBlOGEwYzhkNWMzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENpjANBgkqhkiG9w0BAQsFAAOCAQEAQktjKqSsCc/cvUgtu3p7Ma3eiwIl 4ShthJZZeFoEdhPvpKZhFZYMLiSlHRe+t+Qpi9fp3Sri6JTffBKFPH+W8hsPMsNN LnsyE+QM5QPkAZCfdNXoiR9P5xYaCLHbEcEf/VNRM2VPswarV3tk+GCKrOd6sFnG KwHRpZB/rLBps20OWrA0W+DdRAbx1VkbS212rJ2hlImgW0i8L+PNTNCL6BsTFkR6 hsXkDTA4/7S06ugR1yf+a2syBBiZdDB5p3TRo79vgRoGwxVfcLhnCDZazQXS/m9A NbrTNiHyBB2KE5PVTA/TlcVDajicgO9oGW6U64WTs3A+70nzj5Qv2h/Odg== -----END CERTIFICATE-----Generated at Mon May 5 06:20:33 2025 by rpki-client