$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa File: 84e6874c-07ac-4922-884c-207aa2ad4b6b.roa (raw, json) Hash identifier: 0P6x5ERHGTn6paryCSKtInVM4Zr+wt7iUBmm3iB0tJI= Subject key identifier: 77:8F:45:10:58:41:B8:89:7B:04:9F:7D:AE:36:12:E3:B5:B7:66:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BD8A59F17B972E17789D7363AB1424A5D8EDB7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa Signing time: Fri 09 May 2025 00:21:01 +0000 ROA not before: Fri 09 May 2025 00:21:01 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d8:a5:9f:17:b9:72:e1:77:89:d7:36:3a:b1:42:4a:5d:8e:db:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:21:01 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=228d7d09e7f7055dcd58781f6a60c841c60eb22830821aa3c324c871720d6417, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:74:ac:78:49:72:2e:a8:99:04:37:6c:4b: f1:cf:a9:ce:0c:74:d3:0c:ad:e5:82:e0:ba:a7:68: ad:82:d6:db:a2:ec:2e:d0:34:03:ed:c0:65:8a:b4: 6f:4f:10:04:4b:87:02:9d:c4:53:f9:35:9c:8f:a7: 0c:f9:69:59:73:13:2a:81:d7:c1:a7:ac:64:41:2f: 4d:81:75:d8:e1:07:d3:3f:9c:ec:10:f4:2b:3b:0b: a5:a4:13:91:19:45:2f:5e:80:3b:b6:08:b7:0d:cb: f4:b1:37:a5:bb:3b:9b:8e:ec:b4:3b:a1:40:9d:5b: 5d:38:47:ae:f8:22:77:8a:da:36:64:04:24:b6:f9: d5:2d:97:ef:36:2d:fe:85:e7:51:da:3d:9b:6d:2b: 10:07:85:53:19:3b:65:83:e7:a5:9c:d8:45:5a:5e: c7:dd:49:8b:0f:74:6a:54:86:6d:5a:3d:08:d0:f1: eb:98:2d:46:26:4f:cf:ef:de:86:36:68:98:65:c2: 82:54:14:ef:26:f8:ef:61:a2:26:e0:3b:77:87:07: 8c:30:ba:f3:8c:8b:32:16:33:25:d6:0b:df:3b:b7: 38:af:eb:cb:a4:51:80:88:1d:c0:73:f1:22:a9:ca: 23:8a:71:72:f4:7d:66:50:49:aa:45:af:93:21:ab: b8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8F:45:10:58:41:B8:89:7B:04:9F:7D:AE:36:12:E3:B5:B7:66:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption 7e:62:9e:1a:9a:6b:7d:cd:54:62:9e:e5:bd:34:c2:cc:01:97: 7e:b7:30:7f:e3:55:66:0b:2d:6a:f7:f7:a2:90:1b:34:d5:8f: ca:a2:b7:92:ac:2e:2a:6e:2a:2a:ed:86:d3:43:7a:23:22:dc: 23:9a:67:73:c3:e1:20:3f:04:74:f6:46:70:f0:ec:7c:8e:c1: 06:72:77:5e:81:51:f6:be:d7:fe:56:b8:0c:50:01:7e:42:7c: 1a:a2:09:06:1b:a8:7d:57:50:89:41:0a:0c:52:3f:86:aa:df: a4:dd:3f:f2:27:68:45:79:56:29:5b:da:d5:4e:81:c1:4b:0f: cd:ea:bd:30:89:7b:9e:14:40:a3:32:97:c5:69:c7:b5:ec:dd: 3e:d7:1b:fd:f1:ed:6b:bb:b5:91:02:18:49:6a:94:3b:2c:25: ae:56:f8:ad:d4:62:1d:ba:e7:56:0a:bf:f8:e5:34:1d:f8:a4: 46:a0:83:43:8f:49:36:1d:cb:dd:41:c9:56:6c:b6:0b:96:8e: ee:46:cf:cd:99:30:41:d6:c0:1c:f5:dd:ba:62:07:65:ca:d7: fe:b2:02:7c:e1:18:42:4c:b1:8f:20:5b:92:75:a7:00:c5:4d: 2e:9b:06:82:5d:2d:b0:8b:5d:1b:ff:b1:c4:56:d6:07:48:71: 04:5b:4f:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe9ilnxe5cuF3idc2OrFCSl2O23owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMTAxWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjhkN2QwOWU3ZjcwNTVkY2Q1ODc4MWY2YTYwYzg0MWM2 MGViMjI4MzA4MjFhYTNjMzI0Yzg3MTcyMGQ2NDE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC21XSseElyLqiZBDdsS/HPqc4MdNMMreWC4LqnaK2C1tui 7C7QNAPtwGWKtG9PEARLhwKdxFP5NZyPpwz5aVlzEyqB18GnrGRBL02BddjhB9M/ nOwQ9Cs7C6WkE5EZRS9egDu2CLcNy/SxN6W7O5uO7LQ7oUCdW104R674IneK2jZk BCS2+dUtl+82Lf6F51HaPZttKxAHhVMZO2WD56Wc2EVaXsfdSYsPdGpUhm1aPQjQ 8euYLUYmT8/v3oY2aJhlwoJUFO8m+O9hoibgO3eHB4wwuvOMizIWMyXWC987tziv 68ukUYCIHcBz8SKpyiOKcXL0fWZQSapFr5Mhq7hXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd49FEFhBuIl7BJ99rjYS47W3Zg0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0ZTY4NzRjLTA3YWMtNDkyMi04ODRjLTIwN2FhMmFkNGI2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4SIAwDQYJKoZIhvcNAQELBQADggEBAH5inhqaa33NVGKe5b00wswBl363 MH/jVWYLLWr396KQGzTVj8qit5KsLipuKirthtNDeiMi3COaZ3PD4SA/BHT2RnDw 7HyOwQZyd16BUfa+1/5WuAxQAX5CfBqiCQYbqH1XUIlBCgxSP4aq36TdP/InaEV5 Vilb2tVOgcFLD83qvTCJe54UQKMyl8Vpx7Xs3T7XG/3x7Wu7tZECGElqlDssJa5W +K3UYh2651YKv/jlNB34pEagg0OPSTYdy91ByVZstguWju5Gz82ZMEHWwBz13bpi B2XK1/6yAnzhGEJMsY8gW5J1pwDFTS6bBoJdLbCLXRv/scRW1gdIcQRbT54= -----END CERTIFICATE-----Generated at Sat May 10 04:58:06 2025 by rpki-client