$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa File: 8b498707-3ebd-45a5-b072-5696977433b4.roa (raw, json) Hash identifier: 7A2KM7nSDWmYtDy61QKDq4KkpElikuiOlDtaRDuusk8= Subject key identifier: DD:43:7D:E0:D8:55:49:E4:0B:1A:B6:05:79:43:E3:5A:1B:77:E8:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 610DB27CD9AD42C6796125EAD769DE591BC0B444 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa Signing time: Fri 09 May 2025 00:10:24 +0000 ROA not before: Fri 09 May 2025 00:10:24 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.243.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0d:b2:7c:d9:ad:42:c6:79:61:25:ea:d7:69:de:59:1b:c0:b4:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:24 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=f9f921367468b80f96b2bd25c8fc2e9cd60fafb70665e75621da6ca71c8a1f29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:46:0e:c2:b0:9f:3d:bd:e1:27:46:35:ce:a5: 7c:e4:07:51:c5:ae:2b:ed:76:46:02:40:bd:92:c0: bd:8a:75:b5:51:fb:7e:60:a8:e3:2a:03:56:a7:32: 05:7e:45:ed:04:db:59:31:ce:39:84:f2:c5:49:4b: 6e:ec:26:91:e8:c3:7e:5a:2b:c5:e2:78:d4:84:ef: 32:f8:ca:0b:e3:6d:8d:25:67:49:64:8b:33:e5:0c: 0b:5c:70:2c:c3:0f:64:fb:59:91:91:65:90:a4:6f: 24:c0:55:be:1b:87:07:4c:cc:dd:a4:3d:34:bd:4b: f9:e5:04:a8:78:68:10:58:aa:69:df:3f:6e:58:1d: e6:b6:89:83:4b:2e:b7:b9:37:ae:68:66:7b:f0:9c: 99:ba:bc:bb:ec:c0:ab:51:c5:53:a2:e5:52:14:68: 94:e8:90:b6:32:63:b4:d0:90:94:91:e7:ce:22:f9: 52:0e:d9:8f:f0:ad:ce:47:35:e7:de:83:1c:9a:e4: 56:84:56:db:74:51:0a:50:64:48:30:c6:3f:f0:46: 24:f2:77:19:1d:1f:fd:6d:1a:f1:3b:be:37:2d:5d: a0:91:1f:c2:86:a2:6f:60:b2:e3:8c:a8:ea:0e:d8: 28:0b:5a:9c:5c:2f:c3:af:ae:42:71:dc:57:b9:ef: 5b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:43:7D:E0:D8:55:49:E4:0B:1A:B6:05:79:43:E3:5A:1B:77:E8:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5b:d3:d1:3e:a0:89:a5:29:d0:a0:05:6a:b2:8b:0d:ea:57:c1: bb:d4:15:68:c3:e2:f2:09:22:68:db:26:d8:a3:0f:6b:5c:b3: ae:e6:66:4e:26:07:28:ee:26:9c:16:89:26:a8:40:65:25:8b: 9a:12:76:f8:07:6f:cf:6f:df:59:f7:61:4d:6a:e7:1d:25:95: 3e:59:0d:b2:dd:a7:9a:de:39:93:e0:3c:c2:1c:47:c8:a6:7c: ca:36:6d:52:cc:3b:0d:1e:71:4a:37:41:25:76:b0:bc:c6:a4: e1:e6:57:06:33:6b:72:48:33:57:9c:cd:c4:9e:0b:e2:5a:93: df:ff:91:f1:ea:fa:ca:03:0f:21:ad:ea:13:82:65:90:0f:d8: eb:8e:e1:67:6f:3d:91:af:3c:c9:09:88:58:01:b5:63:55:41: 82:f0:e0:aa:00:5d:de:e5:36:64:20:cd:8a:79:01:ef:ed:2c: b4:cb:ef:a0:7a:a8:d9:37:f8:7b:d2:a6:b9:02:fc:c9:37:25: 5d:eb:a5:e2:8f:2e:2c:85:e1:94:9e:4b:72:d4:d9:50:04:39: ac:44:ad:9b:72:f5:fb:d4:d9:91:8d:c7:e7:53:1a:35:e7:e9: f7:96:ea:16:fe:0c:9b:87:39:5e:97:39:2e:f0:f3:a0:20:74: ba:43:96:a0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYQ2yfNmtQsZ5YSXq12neWRvAtEQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDI0WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWY5MjEzNjc0NjhiODBmOTZiMmJkMjVjOGZjMmU5Y2Q2 MGZhZmI3MDY2NWU3NTYyMWRhNmNhNzFjOGExZjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiRg7CsJ89veEnRjXOpXzkB1HFrivtdkYCQL2SwL2KdbVR +35gqOMqA1anMgV+Re0E21kxzjmE8sVJS27sJpHow35aK8XieNSE7zL4ygvjbY0l Z0lkizPlDAtccCzDD2T7WZGRZZCkbyTAVb4bhwdMzN2kPTS9S/nlBKh4aBBYqmnf P25YHea2iYNLLre5N65oZnvwnJm6vLvswKtRxVOi5VIUaJTokLYyY7TQkJSR584i +VIO2Y/wrc5HNefegxya5FaEVtt0UQpQZEgwxj/wRiTydxkdH/1tGvE7vjctXaCR H8KGom9gsuOMqOoO2CgLWpxcL8OvrkJx3Fe571uRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3UN94NhVSeQLGrYFeUPjWht36L4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDk4NzA3LTNlYmQtNDVhNS1iMDcyLTU2OTY5Nzc0MzNiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCd8zANBgkqhkiG9w0BAQsFAAOCAQEAW9PRPqCJpSnQoAVqsosN6lfBu9QV aMPi8gkiaNsm2KMPa1yzruZmTiYHKO4mnBaJJqhAZSWLmhJ2+Advz2/fWfdhTWrn HSWVPlkNst2nmt45k+A8whxHyKZ8yjZtUsw7DR5xSjdBJXawvMak4eZXBjNrckgz V5zNxJ4L4lqT3/+R8er6ygMPIa3qE4JlkA/Y647hZ289ka88yQmIWAG1Y1VBgvDg qgBd3uU2ZCDNinkB7+0stMvvoHqo2Tf4e9KmuQL8yTclXeul4o8uLIXhlJ5LctTZ UAQ5rEStm3L1+9TZkY3H51MaNefp95bqFv4Mm4c5Xpc5LvDzoCB0ukOWoA== -----END CERTIFICATE-----Generated at Mon May 12 22:47:28 2025 by rpki-client