$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e5cade7-274f-4d8d-9062-f019edfa1e70.roa File: 8e5cade7-274f-4d8d-9062-f019edfa1e70.roa (raw, json) Hash identifier: wFLYzW/+3fISqvKXzCefNLdYIV2ZaLEh9SmcBV6jW6Q= Subject key identifier: 05:E4:03:0B:4D:1A:82:AB:FF:55:16:5D:ED:DB:A0:1D:F2:A4:4B:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1170B3D836B7A3A4D6B471B147DEA747D4510718 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e5cade7-274f-4d8d-9062-f019edfa1e70.roa Signing time: Fri 09 May 2025 00:12:02 +0000 ROA not before: Fri 09 May 2025 00:12:02 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:70:b3:d8:36:b7:a3:a4:d6:b4:71:b1:47:de:a7:47:d4:51:07:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:12:02 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=0c8fda83e6fce84cd0b5a43416740155e556798713196e225f80c0168b7d398e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:b6:9e:1b:45:9b:f7:e1:19:92:ad:79:88: dc:77:93:7e:ce:e1:ab:2f:7a:72:71:76:0f:c1:52: b0:04:52:16:74:22:9f:39:82:29:7e:4a:6e:9b:48: 37:f6:51:49:84:e8:7a:37:4f:07:db:e4:55:5c:ed: 3b:ee:fb:68:ed:cd:94:8e:e0:0a:54:00:1a:80:57: 7b:cb:21:cb:71:7d:f5:dc:76:bf:50:7d:1a:ab:e3: 6c:49:26:70:a5:bc:38:56:32:8b:ab:66:aa:2b:31: 68:88:b2:85:62:bb:40:79:6b:f5:ab:32:74:7d:6b: 97:7d:1e:7a:a6:14:30:65:7c:bf:85:a1:6f:d6:a1: 9b:52:61:d8:a8:e4:7f:c3:64:02:76:47:15:28:7c: 8e:85:cd:35:db:c8:3c:f2:e6:38:bc:d1:03:37:6a: 9a:c8:24:73:f3:19:61:ea:36:54:3b:f2:bd:c3:06: 6a:8f:cc:47:29:3f:89:ab:fe:be:01:4b:ab:f9:03: 69:68:a3:7f:f3:95:54:fd:21:04:4b:f8:3f:15:50: 79:81:5e:54:78:ab:df:92:c0:d9:55:45:28:32:12: 9d:c5:d2:e5:d4:3b:d2:8a:25:1f:83:70:d8:61:48: 0e:9e:d7:ac:52:fa:de:9d:cc:11:0e:32:fb:76:30: 71:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E4:03:0B:4D:1A:82:AB:FF:55:16:5D:ED:DB:A0:1D:F2:A4:4B:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e5cade7-274f-4d8d-9062-f019edfa1e70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.64.0/20 Signature Algorithm: sha256WithRSAEncryption 38:06:86:e3:82:77:5f:fa:ed:50:8b:78:6f:47:fe:59:32:03: ad:8e:1c:fd:d7:e6:2c:d7:96:41:82:e1:6e:bb:2f:f1:d3:b6: 27:1c:ac:d7:7f:5c:a0:7b:44:d3:9d:80:a5:ca:84:4c:1d:79: 77:d1:42:36:a6:6a:bf:c7:3b:3f:47:24:4d:76:cc:4c:1b:5a: cf:42:c7:26:de:31:3e:ea:e5:5e:a2:ac:26:fc:c6:fd:e3:02: 42:ce:0c:a2:e3:b5:94:6b:98:cc:cb:82:63:13:8a:4a:c4:05: 37:97:a8:5c:c6:e6:01:04:74:30:1f:32:07:24:b9:31:89:22: 7e:c1:af:21:dc:ee:ac:4d:41:df:7b:25:cc:fb:27:7b:53:dd: f7:f1:39:38:25:20:ad:08:4c:53:f9:43:10:8e:f0:84:71:aa: 9f:e2:f0:7b:06:6a:fc:43:18:0c:d0:41:2e:96:07:11:4e:8d: 2e:1c:94:ca:7d:86:a1:01:b6:08:bf:20:93:37:05:9e:88:bb: 32:48:d8:0f:74:ae:bc:b2:24:b9:74:6a:1c:7d:49:d8:36:6e: b3:d6:89:0a:5a:39:83:d9:fe:b1:e3:50:ad:31:17:f2:9a:8a: 6b:af:b6:04:c7:c9:6d:b0:a5:36:14:95:c6:ed:7c:11:5b:66: 9f:3d:fd:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEXCz2Da3o6TWtHGxR96nR9RRBxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMjAyWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzhmZGE4M2U2ZmNlODRjZDBiNWE0MzQxNjc0MDE1NWU1 NTY3OTg3MTMxOTZlMjI1ZjgwYzAxNjhiN2QzOThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIKraeG0Wb9+EZkq15iNx3k37O4asvenJxdg/BUrAEUhZ0 Ip85gil+Sm6bSDf2UUmE6Ho3Twfb5FVc7Tvu+2jtzZSO4ApUABqAV3vLIctxffXc dr9QfRqr42xJJnClvDhWMourZqorMWiIsoViu0B5a/WrMnR9a5d9HnqmFDBlfL+F oW/WoZtSYdio5H/DZAJ2RxUofI6FzTXbyDzy5ji80QM3aprIJHPzGWHqNlQ78r3D BmqPzEcpP4mr/r4BS6v5A2loo3/zlVT9IQRL+D8VUHmBXlR4q9+SwNlVRSgyEp3F 0uXUO9KKJR+DcNhhSA6e16xS+t6dzBEOMvt2MHEpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBeQDC00agqv/VRZd7dugHfKkS1UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlNWNhZGU3LTI3NGYtNGQ4ZC05MDYyLWYwMTllZGZhMWU3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SEAwDQYJKoZIhvcNAQELBQADggEBADgGhuOCd1/67VCLeG9H/lkyA62O HP3X5izXlkGC4W67L/HTticcrNd/XKB7RNOdgKXKhEwdeXfRQjamar/HOz9HJE12 zEwbWs9CxybeMT7q5V6irCb8xv3jAkLODKLjtZRrmMzLgmMTikrEBTeXqFzG5gEE dDAfMgckuTGJIn7BryHc7qxNQd97Jcz7J3tT3ffxOTglIK0ITFP5QxCO8IRxqp/i 8HsGavxDGAzQQS6WBxFOjS4clMp9hqEBtgi/IJM3BZ6IuzJI2A90rryyJLl0ahx9 Sdg2brPWiQpaOYPZ/rHjUK0xF/KaimuvtgTHyW2wpTYUlcbtfBFbZp89/W8= -----END CERTIFICATE-----Generated at Fri May 9 02:50:12 2025 by rpki-client