$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa File: 96775b6e-d2c7-45b1-b153-6189276f8a53.roa (raw, json) Hash identifier: WOyuuY5z6epWSGRCUtosLsQUr1bMyGWkxrqj35T0gFU= Subject key identifier: AC:49:FF:41:34:93:2E:D9:C8:B9:71:73:E5:A0:A9:2B:D0:94:A9:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B8A6B4F0D4AFD9820729BB5EEB39DC278A05E7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa Signing time: Fri 09 May 2025 00:11:07 +0000 ROA not before: Fri 09 May 2025 00:11:07 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8a:6b:4f:0d:4a:fd:98:20:72:9b:b5:ee:b3:9d:c2:78:a0:5e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:11:07 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=a77b4bd2ef1b7afe83a04cebeed6b096569866712e1a4d1433c1cccaa7513cd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:df:a6:d5:97:0d:df:29:98:e9:f6:4f:4c:4f: 18:cd:8a:7c:38:a6:ca:ee:12:12:f6:62:d8:0f:0e: bc:e5:f0:bc:00:1f:a2:17:33:4f:40:2e:d7:eb:7a: bd:c9:fa:1d:69:ec:2d:68:79:2a:9a:0c:ee:28:c2: ff:b8:af:5b:90:6f:e0:98:1a:c4:1e:d6:c5:9d:5e: e0:d7:a3:65:12:c0:68:48:2e:10:e0:42:40:03:b6: 81:f3:7d:84:31:70:b2:62:fa:52:08:e5:c7:3b:04: fd:ad:9f:f4:f1:35:73:58:6e:f2:71:f1:51:44:de: d7:c9:8c:5b:31:79:eb:69:77:1f:91:65:ff:d7:35: 9e:96:a8:2a:35:9f:b6:53:cb:bf:59:29:91:8e:71: e5:fc:3a:31:9c:11:0a:91:f4:2b:3c:1f:06:44:ef: 1b:6a:a5:f8:c2:97:90:ab:32:9f:5f:17:57:0f:c8: 27:aa:93:9e:35:bd:23:59:4b:2a:59:72:60:50:41: 61:ec:b0:ec:f9:b3:f2:a8:c3:92:b2:64:af:cd:6c: 80:c3:f0:97:77:eb:a6:39:44:b9:88:bb:15:90:14: 8c:dd:25:87:bf:b9:88:85:de:c5:a9:79:76:03:dc: 32:3d:5e:b7:7d:85:ba:eb:56:1a:0a:10:55:87:d9: 42:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:49:FF:41:34:93:2E:D9:C8:B9:71:73:E5:A0:A9:2B:D0:94:A9:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.152.0/21 Signature Algorithm: sha256WithRSAEncryption 95:d4:69:17:4c:45:a5:7d:3c:f4:27:62:c2:e0:57:68:f0:1d: 02:74:27:53:29:e5:e0:53:c6:18:e0:5b:c1:87:28:3e:50:41: 13:82:47:e8:2d:a9:a7:6d:ea:19:db:4f:9d:d9:be:d1:79:0a: 48:23:19:2b:3c:22:56:33:72:53:1f:ce:7d:8f:44:79:7f:dd: f1:10:eb:32:e3:0f:76:d2:49:89:aa:b8:bd:89:2b:68:2c:ab: a7:bb:89:4e:66:2f:5b:a5:ba:4a:44:f6:22:4b:b1:21:9c:b7: 79:2d:da:d8:4a:2d:1c:a4:b0:d3:e4:d9:0b:19:7e:7e:f3:31: 83:7c:96:f0:8c:b8:8e:f4:3b:12:31:2a:c8:84:91:80:58:7f: 30:4c:c1:9c:00:e5:ed:2a:ea:d0:ef:3c:cd:52:9d:78:a4:d8: 44:a1:db:9a:7e:82:d3:a9:15:60:93:78:b1:f5:48:e8:3e:0d: 78:26:c4:f6:d2:3a:59:50:e6:99:60:76:6f:a1:c6:c3:13:67: 6a:3b:89:d4:55:76:90:f4:98:72:05:91:5e:8b:75:63:42:01: 44:22:8b:68:68:e7:a8:70:5b:91:2c:ec:94:2b:eb:4e:2f:e6: f8:69:e3:f1:33:0c:9b:12:77:c1:4d:60:c9:e1:1f:db:d9:0f: 92:cb:8a:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO4prTw1K/Zggcpu17rOdwnigXn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMTA3WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzdiNGJkMmVmMWI3YWZlODNhMDRjZWJlZWQ2YjA5NjU2 OTg2NjcxMmUxYTRkMTQzM2MxY2NjYWE3NTEzY2Q4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA36bVlw3fKZjp9k9MTxjNinw4psruEhL2YtgPDrzl8LwA H6IXM09ALtfrer3J+h1p7C1oeSqaDO4owv+4r1uQb+CYGsQe1sWdXuDXo2USwGhI LhDgQkADtoHzfYQxcLJi+lII5cc7BP2tn/TxNXNYbvJx8VFE3tfJjFsxeetpdx+R Zf/XNZ6WqCo1n7ZTy79ZKZGOceX8OjGcEQqR9Cs8HwZE7xtqpfjCl5CrMp9fF1cP yCeqk541vSNZSypZcmBQQWHssOz5s/Kow5KyZK/NbIDD8Jd366Y5RLmIuxWQFIzd JYe/uYiF3sWpeXYD3DI9Xrd9hbrrVhoKEFWH2UInAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrEn/QTSTLtnIuXFz5aCpK9CUqU0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2Nzc1YjZlLWQyYzctNDViMS1iMTUzLTYxODkyNzZmOGE1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZgwDQYJKoZIhvcNAQELBQADggEBAJXUaRdMRaV9PPQnYsLgV2jwHQJ0 J1Mp5eBTxhjgW8GHKD5QQROCR+gtqadt6hnbT53ZvtF5CkgjGSs8IlYzclMfzn2P RHl/3fEQ6zLjD3bSSYmquL2JK2gsq6e7iU5mL1ulukpE9iJLsSGct3kt2thKLRyk sNPk2QsZfn7zMYN8lvCMuI70OxIxKsiEkYBYfzBMwZwA5e0q6tDvPM1SnXik2ESh 25p+gtOpFWCTeLH1SOg+DXgmxPbSOllQ5plgdm+hxsMTZ2o7idRVdpD0mHIFkV6L dWNCAUQii2ho56hwW5Es7JQr604v5vhp4/EzDJsSd8FNYMnhH9vZD5LLiqc= -----END CERTIFICATE-----Generated at Sat May 10 08:03:24 2025 by rpki-client