$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa File: 9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa (raw, json) Hash identifier: g4fRMXrEnFQ0loPg+kXqzDYcrJrpqU7bAwNLZNneDoA= Subject key identifier: 50:5A:99:65:1E:E8:D0:B7:73:F3:0C:34:4D:61:59:71:B2:40:34:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DAF0C1C035471CE566135EBAD80C9966E855713 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa Signing time: Fri 09 May 2025 00:20:14 +0000 ROA not before: Fri 09 May 2025 00:20:14 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:af:0c:1c:03:54:71:ce:56:61:35:eb:ad:80:c9:96:6e:85:57:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:20:14 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=7b8e4f4083d14757bcd92ca8133c705f20361950903f3f2eccdcf4be038d7b24, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:15:52:1c:7c:6e:49:15:07:f6:ca:df:d2:06: 95:fd:78:fe:f2:7e:80:25:29:0d:d4:69:17:48:5f: 4c:42:ed:da:80:3c:c8:fb:e8:b4:ad:91:6d:f2:be: 86:0c:83:60:a8:97:5c:8e:6c:a4:0c:0e:aa:a3:1d: 31:3b:d5:db:41:3e:42:d2:7a:e1:c6:3d:06:4f:dc: a5:b1:41:43:ed:06:43:35:0f:5c:f6:27:f1:c8:2a: 5d:fb:32:b5:bd:e0:ba:7d:50:3b:43:ec:36:96:22: d3:fc:fe:4c:91:58:39:39:a1:d8:cb:09:46:5a:d0: 47:f0:d2:c5:16:7e:3e:85:aa:02:9c:7b:bf:f7:71: fa:27:7a:69:76:3d:28:c8:d2:44:7a:2b:13:a1:c7: 66:a0:c5:f7:ca:4c:9d:5a:21:4a:21:40:cc:ed:04: c3:ae:5e:10:db:a2:96:6e:6c:7f:7b:3d:99:6c:0b: f1:98:ff:b6:97:1a:6a:09:e5:bb:d7:98:d4:10:4d: a8:93:94:c7:91:81:d4:f8:48:c8:26:db:3f:16:8e: 88:70:0b:d1:34:10:ac:60:16:f0:d1:09:e6:50:45: 90:77:6d:96:e3:94:5e:87:05:50:99:1e:43:85:8e: fe:57:bd:a2:e1:0a:55:0e:97:23:f3:c4:4c:80:91: 00:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5A:99:65:1E:E8:D0:B7:73:F3:0C:34:4D:61:59:71:B2:40:34:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.24.0/21 Signature Algorithm: sha256WithRSAEncryption 78:63:d0:eb:df:fd:f1:e1:64:9f:fb:de:7a:87:71:da:d6:85: cd:f3:c0:fe:05:c4:58:2b:33:6b:22:d0:55:f8:19:c7:3f:7b: 0c:36:c6:d4:e4:4c:e0:42:f3:b3:17:ef:76:57:8d:fe:82:07: fa:71:e5:76:a4:d4:a2:2a:72:1b:06:c4:7f:6f:7e:9d:65:b0: 67:ae:a2:75:76:07:48:ee:ce:d6:16:82:23:81:11:e8:70:a8: 3a:89:0d:b8:96:4d:ab:15:73:43:8f:39:7b:c5:3b:95:9e:0f: 89:e8:e7:99:e3:d7:e2:ca:e3:61:a7:92:22:8c:0c:9a:03:94: d1:9a:7d:d1:31:7f:b8:01:bc:69:eb:a6:a8:b6:c6:3f:73:30: d3:86:e7:bc:56:98:be:f9:3a:62:59:b7:f5:1b:1e:2c:72:b2: ff:47:12:f8:6a:32:aa:1f:68:48:44:6a:3b:28:08:00:50:0d: 7a:a7:0f:d7:25:b8:b7:72:8b:6f:ca:63:a7:7a:70:c7:50:e7: 9e:ae:36:77:ab:05:d3:4a:37:28:df:04:05:de:b7:6b:25:d8: 32:1b:68:3c:7b:84:ee:39:cf:f4:e3:bb:83:ca:68:9b:72:fb: 28:3e:1d:03:1b:ea:b3:64:f1:48:3d:04:bf:9f:bb:e5:38:5c: d8:90:74:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfa8MHANUcc5WYTXrrYDJlm6FVxMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMDE0WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjhlNGY0MDgzZDE0NzU3YmNkOTJjYTgxMzNjNzA1ZjIw MzYxOTUwOTAzZjNmMmVjY2RjZjRiZTAzOGQ3YjI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeFVIcfG5JFQf2yt/SBpX9eP7yfoAlKQ3UaRdIX0xC7dqA PMj76LStkW3yvoYMg2Col1yObKQMDqqjHTE71dtBPkLSeuHGPQZP3KWxQUPtBkM1 D1z2J/HIKl37MrW94Lp9UDtD7DaWItP8/kyRWDk5odjLCUZa0Efw0sUWfj6FqgKc e7/3cfoneml2PSjI0kR6KxOhx2agxffKTJ1aIUohQMztBMOuXhDbopZubH97PZls C/GY/7aXGmoJ5bvXmNQQTaiTlMeRgdT4SMgm2z8WjohwC9E0EKxgFvDRCeZQRZB3 bZbjlF6HBVCZHkOFjv5XvaLhClUOlyPzxEyAkQBfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUFqZZR7o0Ldz8ww0TWFZcbJANIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjdlY2QzLTc1Y2UtNDQ5ZS05OTMwLWM0ZDIzN2IyZTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRsRgwDQYJKoZIhvcNAQELBQADggEBAHhj0Ovf/fHhZJ/73nqHcdrWhc3z wP4FxFgrM2si0FX4Gcc/eww2xtTkTOBC87MX73ZXjf6CB/px5Xak1KIqchsGxH9v fp1lsGeuonV2B0juztYWgiOBEehwqDqJDbiWTasVc0OPOXvFO5WeD4no55nj1+LK 42GnkiKMDJoDlNGafdExf7gBvGnrpqi2xj9zMNOG57xWmL75OmJZt/UbHixysv9H EvhqMqofaEhEajsoCABQDXqnD9cluLdyi2/KY6d6cMdQ556uNnerBdNKNyjfBAXe t2sl2DIbaDx7hO45z/Tju4PKaJty+yg+HQMb6rNk8Ug9BL+fu+U4XNiQdFU= -----END CERTIFICATE-----Generated at Sun May 11 10:47:34 2025 by rpki-client