$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f421e27-1750-4590-95a3-28a2ba4d048c.roa File: 6f421e27-1750-4590-95a3-28a2ba4d048c.roa (raw, json) Hash identifier: Zi8ImLoOKRjlsGnB7p0JaUuNzXVcznsTkHHvoCi/yv4= Subject key identifier: 0E:34:7A:E0:A5:9D:E2:17:61:FF:46:34:B6:03:65:92:A8:EA:B9:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 306CA46829C16441E10D6C8BFBDD8F0517A7840E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f421e27-1750-4590-95a3-28a2ba4d048c.roa Signing time: Mon 28 Apr 2025 15:21:21 +0000 ROA not before: Mon 28 Apr 2025 15:21:21 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 46.168.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:6c:a4:68:29:c1:64:41:e1:0d:6c:8b:fb:dd:8f:05:17:a7:84:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:21:21 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=31ed57a1fde8eb3a1e9b1b5421e44f75fb03703de260a7c81b2b558497479024, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7a:fe:cc:11:8a:c2:8b:9d:5a:f8:c1:c3:2a: 59:b9:c5:bd:d1:82:cc:cc:63:ba:ca:04:3d:29:d0: ac:5f:21:f3:ee:f2:1d:71:5a:8d:bd:ac:51:13:87: 4d:75:17:44:69:97:ab:ce:2d:6c:22:00:31:85:d1: 31:04:46:e6:f5:b3:65:f1:86:c0:4b:17:40:60:49: 1a:48:75:ac:98:f9:96:89:59:3a:ac:b6:0c:45:28: ef:c6:b9:31:6c:c9:c3:98:3c:e3:17:e2:49:3b:91: 9a:26:fd:73:ec:62:14:d9:11:e4:de:45:4e:b0:59: 18:0b:01:e1:db:9a:cc:d0:da:37:45:78:6b:7e:59: 57:d5:f7:6a:b5:c7:60:00:5c:54:fd:7e:b8:c4:c6: 24:7e:1a:f4:84:9d:28:5e:9e:94:91:f6:34:97:13: c1:36:71:96:ab:df:9d:5a:d3:0f:05:31:f8:76:21: e8:50:a8:e0:84:e5:33:c1:7b:8f:af:34:b5:8f:7c: 7b:b4:18:4d:28:95:6c:c9:13:24:39:6c:f3:b0:92: b6:4c:6a:48:4c:d5:ac:d7:cb:22:8b:64:94:c6:28: 80:80:5e:ea:90:02:82:2e:f9:83:1c:41:04:f9:69: 12:45:39:88:f3:df:6d:31:a9:18:0b:e5:96:60:ee: 83:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:34:7A:E0:A5:9D:E2:17:61:FF:46:34:B6:03:65:92:A8:EA:B9:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f421e27-1750-4590-95a3-28a2ba4d048c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.168.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6d:33:d6:05:fa:c7:5d:ef:a9:b8:97:3c:c4:03:6b:0c:73:a4: a6:a7:7c:16:f7:d2:3e:b8:39:b6:73:54:d5:2b:de:e2:62:6e: 02:35:18:ec:a7:a4:15:37:53:fa:cc:d9:4a:58:54:25:dc:e3: 46:9a:68:7e:fc:fc:ae:b1:d6:d2:a2:79:38:15:94:24:0b:57: 5a:cb:96:b4:e9:e5:77:31:b3:d8:ac:82:cb:b9:a9:30:f4:af: 4e:df:bb:19:14:46:db:ad:2c:c0:6e:7d:42:b1:04:e4:e9:2f: f0:63:e7:73:1b:99:fc:16:f8:80:f1:41:8c:a3:44:34:8f:d7: 2e:9f:75:53:a9:90:01:85:7f:24:f9:e2:41:12:b4:01:d3:81: a9:89:36:78:ad:2b:89:0a:2b:b1:b6:95:5a:80:86:a2:65:ac: 3c:a2:d3:08:e7:7a:69:89:bf:20:29:ad:61:f2:a8:aa:29:aa: ef:10:2a:36:8b:61:07:c4:8b:56:c9:71:a1:e0:4c:20:64:7e: 15:a6:6a:c3:ac:ed:74:8c:5b:63:9e:5d:44:c6:b0:16:ba:3a: 33:6d:d6:7c:41:76:12:3c:bc:a1:eb:06:b4:c0:49:36:1a:2d: f5:6e:34:bb:13:1d:dd:c1:56:1e:09:ab:82:f0:fd:d3:c3:5b: d1:2c:d0:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMGykaCnBZEHhDWyL+92PBRenhA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUyMTIxWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWVkNTdhMWZkZThlYjNhMWU5YjFiNTQyMWU0NGY3NWZi MDM3MDNkZTI2MGE3YzgxYjJiNTU4NDk3NDc5MDI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTev7MEYrCi51a+MHDKlm5xb3RgszMY7rKBD0p0KxfIfPu 8h1xWo29rFETh011F0Rpl6vOLWwiADGF0TEERub1s2XxhsBLF0BgSRpIdayY+ZaJ WTqstgxFKO/GuTFsycOYPOMX4kk7kZom/XPsYhTZEeTeRU6wWRgLAeHbmszQ2jdF eGt+WVfV92q1x2AAXFT9frjExiR+GvSEnShenpSR9jSXE8E2cZar351a0w8FMfh2 IehQqOCE5TPBe4+vNLWPfHu0GE0olWzJEyQ5bPOwkrZMakhM1azXyyKLZJTGKICA XuqQAoIu+YMcQQT5aRJFOYjz320xqRgL5ZZg7oMFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDjR64KWd4hdh/0Y0tgNlkqjqucQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNDIxZTI3LTE3NTAtNDU5MC05NWEzLTI4YTJiYTRkMDQ4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEuqDANBgkqhkiG9w0BAQsFAAOCAQEAbTPWBfrHXe+puJc8xANrDHOkpqd8 FvfSPrg5tnNU1Sve4mJuAjUY7KekFTdT+szZSlhUJdzjRppofvz8rrHW0qJ5OBWU JAtXWsuWtOnldzGz2KyCy7mpMPSvTt+7GRRG260swG59QrEE5Okv8GPncxuZ/Bb4 gPFBjKNENI/XLp91U6mQAYV/JPniQRK0AdOBqYk2eK0riQorsbaVWoCGomWsPKLT COd6aYm/ICmtYfKoqimq7xAqNothB8SLVslxoeBMIGR+FaZqw6ztdIxbY55dRMaw Fro6M23WfEF2Ejy8oesGtMBJNhot9W40uxMd3cFWHgmrgvD908Nb0SzQOw== -----END CERTIFICATE-----Generated at Sun May 11 04:13:37 2025 by rpki-client