$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa File: 9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa (raw, json) Hash identifier: redhq7zXhjmpA3TMnRKonV5s4qhSUVOS8+gTwgMS0eo= Subject key identifier: 21:A3:F3:11:69:32:D2:57:19:CE:77:CA:27:15:71:4D:1C:E5:62:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B0B1C25146294B37624D61A50388DE08E2810CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa Signing time: Wed 30 Apr 2025 00:10:13 +0000 ROA not before: Wed 30 Apr 2025 00:10:13 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.45.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0b:1c:25:14:62:94:b3:76:24:d6:1a:50:38:8d:e0:8e:28:10:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:10:13 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=ccfbc2f43b1f04d0764646253f025a9958eac61fec949c1e9dd35a4ead5b4e9d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:75:c8:00:37:e8:b3:95:5d:d4:36:b7:e5:e2: 51:5b:f0:a9:2d:e6:0e:3c:32:69:56:88:7f:90:b3: d4:19:0a:dc:48:46:2d:d1:68:e0:79:73:9a:4f:37: 00:06:d2:f3:65:6c:d7:63:00:79:59:e6:0d:b4:fb: 08:ad:1c:e8:4e:de:0a:62:ee:24:99:d3:cb:1f:dc: fd:c9:da:bd:0a:28:1d:43:8e:3a:13:c0:32:25:a8: 4c:0e:dc:a9:d7:7c:9d:d7:a5:af:48:e7:cd:bb:76: d4:d8:9a:99:d8:71:e0:27:05:09:5d:ca:aa:fd:87: b1:19:36:9e:eb:c4:25:c1:2b:08:f5:8a:0d:32:83: c2:74:09:0f:55:41:db:7f:74:bb:b5:ba:f9:06:37: 79:0e:9e:39:76:a7:47:42:86:a0:f4:7b:b4:74:0a: 91:e8:b4:5c:fd:5b:5c:97:2d:f2:4b:91:3f:8f:dd: 38:2f:10:ab:91:8a:fe:db:5c:f2:80:91:ee:a6:4a: 00:c4:38:b9:9d:2a:40:1a:88:f8:b3:43:ec:5e:b4: f7:2c:ff:8e:d2:47:35:bd:32:c7:19:32:11:b3:36: a6:ae:0f:28:08:27:68:35:02:6a:16:c9:6f:c4:9b: 54:07:3f:dd:02:62:25:1f:ec:e7:45:7c:db:65:a6: 69:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A3:F3:11:69:32:D2:57:19:CE:77:CA:27:15:71:4D:1C:E5:62:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.45.128.0/18 Signature Algorithm: sha256WithRSAEncryption 18:24:15:a9:5d:a2:7d:1b:68:a0:9b:47:7e:56:b2:54:c5:ee: a6:d4:41:85:1c:dd:a2:d4:8a:6b:d6:1f:39:b4:d8:b5:8d:80: 65:21:af:ee:78:e5:30:26:8d:bb:2a:b5:3b:8a:b0:a0:e7:8e: 90:5b:18:b4:91:ab:4e:b6:30:69:d7:0d:0c:ff:98:78:f1:6f: 40:65:c6:7f:9e:15:43:35:7c:0c:d2:64:d6:ed:f5:64:ce:60: eb:7f:78:d9:76:c6:60:bf:80:6a:e6:19:4a:e9:4f:90:56:a2: cb:ef:80:ca:55:bc:fe:3c:7d:bb:9a:ac:ce:ed:bf:6e:ad:0b: 5f:cf:44:f9:ea:4c:48:10:9b:e1:57:5d:bd:f5:7a:98:2e:b9: 5a:03:2f:6a:cc:d6:cf:65:25:90:00:ef:c0:6f:b9:d1:77:52: cc:91:dd:fc:ed:a2:5f:e5:c7:19:65:23:fa:fc:da:61:44:c8: ca:2d:ac:c5:5b:53:16:80:cb:47:c6:6e:d0:c1:a5:04:bb:19: 63:39:f3:e3:65:a3:c0:de:6e:dd:02:7c:4f:99:84:a0:77:dc: 7e:3c:a1:40:5c:4b:55:38:ff:21:33:e6:ff:a8:ec:b5:4c:2e: 9b:7b:d1:0a:a8:7f:82:f5:09:64:d1:a3:96:d6:9d:d9:4a:d5: a6:00:cb:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUewscJRRilLN2JNYaUDiN4I4oEMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDMwMDAxMDEzWhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2ZiYzJmNDNiMWYwNGQwNzY0NjQ2MjUzZjAyNWE5OTU4 ZWFjNjFmZWM5NDljMWU5ZGQzNWE0ZWFkNWI0ZTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCidcgAN+izlV3UNrfl4lFb8Kkt5g48MmlWiH+Qs9QZCtxI Ri3RaOB5c5pPNwAG0vNlbNdjAHlZ5g20+witHOhO3gpi7iSZ08sf3P3J2r0KKB1D jjoTwDIlqEwO3KnXfJ3Xpa9I5827dtTYmpnYceAnBQldyqr9h7EZNp7rxCXBKwj1 ig0yg8J0CQ9VQdt/dLu1uvkGN3kOnjl2p0dChqD0e7R0CpHotFz9W1yXLfJLkT+P 3TgvEKuRiv7bXPKAke6mSgDEOLmdKkAaiPizQ+xetPcs/47SRzW9MscZMhGzNqau DygIJ2g1AmoWyW/Em1QHP90CYiUf7OdFfNtlpml7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIaPzEWky0lcZznfKJxVxTRzlYkowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljYjJjMzQ2LTM2OWItNGM3MC04YjJhLTllM2NlNGFjYzU0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLLYAwDQYJKoZIhvcNAQELBQADggEBABgkFaldon0baKCbR35WslTF7qbU QYUc3aLUimvWHzm02LWNgGUhr+545TAmjbsqtTuKsKDnjpBbGLSRq062MGnXDQz/ mHjxb0Blxn+eFUM1fAzSZNbt9WTOYOt/eNl2xmC/gGrmGUrpT5BWosvvgMpVvP48 fbuarM7tv26tC1/PRPnqTEgQm+FXXb31epguuVoDL2rM1s9lJZAA78BvudF3UsyR 3fztol/lxxllI/r82mFEyMotrMVbUxaAy0fGbtDBpQS7GWM58+Nlo8Debt0CfE+Z hKB33H48oUBcS1U4/yEz5v+o7LVMLpt70Qqof4L1CWTRo5bWndlK1aYAy+4= -----END CERTIFICATE-----Generated at Tue May 13 02:38:20 2025 by rpki-client