$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa File: 9d4ea817-9a30-46eb-adae-ea1411984c84.roa (raw, json) Hash identifier: nkyzzsCOKTbAp35FAHZPk0BPP+M4r+2zIWEBwp5ZzCU= Subject key identifier: 76:2E:81:70:4E:BF:38:A7:53:5B:C6:78:22:A9:04:96:88:E2:A9:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36CF501AF140DC48F672FA7573D39F364B0AF025 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa Signing time: Tue 06 May 2025 00:10:22 +0000 ROA not before: Tue 06 May 2025 00:10:22 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.45.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:cf:50:1a:f1:40:dc:48:f6:72:fa:75:73:d3:9f:36:4b:0a:f0:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:10:22 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=0a9311ab61ac0edfcb9dea5586b944ac9e519f02c9780acd3e930edeeec162f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:df:55:33:b8:4a:a6:a5:6c:1c:e3:e0:0d:91: 9c:7c:2c:a9:4d:22:f3:6a:ef:17:1c:93:20:54:56: 77:a9:85:90:b2:5c:ed:bd:62:c0:f0:97:dc:9e:19: c0:54:c5:f8:6a:64:63:52:04:df:af:7e:96:da:f9: fd:2a:8f:7e:1b:8b:46:f1:bf:56:ab:58:4c:64:f9: 9d:0f:5a:80:fb:13:b9:d3:f3:95:59:18:f6:ec:5c: d7:51:f1:64:b5:b7:eb:1a:a3:15:73:cb:0a:dc:22: 30:9a:b2:f8:2d:76:f4:58:87:7b:8b:a4:bc:08:98: e0:4f:e5:fd:ac:23:34:0a:7e:ec:3e:5d:0f:27:9e: 74:9e:ca:85:66:27:c0:c6:58:10:b4:b5:54:d4:c2: d6:d3:21:4b:68:76:02:84:5f:f7:6b:24:d5:77:98: 58:83:78:5e:1a:af:c3:2c:40:80:3d:03:37:ef:78: f9:5b:79:3c:e3:b1:27:a7:42:85:ed:78:0b:37:e8: 4a:bd:07:33:08:8e:00:2e:50:7e:9b:50:09:ba:75: 30:49:e6:4f:3a:68:fc:64:37:fe:00:b7:37:fc:fa: a7:1d:d5:f0:60:37:9d:d1:ae:54:5c:e7:62:33:3b: f5:45:ae:cb:94:9e:2c:75:e1:97:f1:10:ff:71:16: 4e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2E:81:70:4E:BF:38:A7:53:5B:C6:78:22:A9:04:96:88:E2:A9:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:9f:ba:33:d8:4b:7b:e1:fc:c7:89:98:fc:2f:8b:30:2d:b6: 85:44:a6:cd:da:77:ac:0e:76:e1:2a:0d:55:d8:17:be:2a:a0: 08:9a:c3:01:7e:fa:76:d5:66:22:7f:6a:c4:42:11:f1:ce:7a: 94:6a:f0:93:b7:3b:47:a8:ca:c9:7d:8f:2a:f6:6b:e0:43:24: 1c:67:8f:ed:c1:38:20:e0:26:b6:e7:bb:28:8e:83:22:7f:48: 33:6d:2d:f4:d0:79:db:19:ef:0e:78:6d:4d:a6:90:e1:cf:f8: 14:ea:f9:7f:f0:4d:1b:d8:6f:60:66:2c:65:24:02:f6:45:51: ad:a0:62:5e:c6:bf:be:a6:6b:57:15:36:77:2e:4e:10:db:cd: a6:1b:e2:fe:70:46:8e:4b:8e:22:ff:b1:a4:14:96:7a:0a:45: 2f:b9:23:94:d4:d3:ae:c6:2d:79:2a:b1:c1:de:75:1f:63:58: d8:c6:d1:40:a6:88:17:ef:a4:31:bb:2b:3c:d8:1a:e2:1c:59: 5b:b8:c3:9b:3a:49:1e:85:65:e5:34:74:ff:2e:0d:7e:f8:39: a2:8d:2f:0e:88:8f:fe:fe:ea:8d:70:39:3d:33:2b:3c:cd:57: 15:aa:47:c8:33:1a:24:81:95:ad:53:72:e2:3c:37:56:a7:2e: e2:9f:67:af -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNs9QGvFA3Ej2cvp1c9OfNksK8CUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA2MDAxMDIyWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTkzMTFhYjYxYWMwZWRmY2I5ZGVhNTU4NmI5NDRhYzll NTE5ZjAyYzk3ODBhY2QzZTkzMGVkZWVlYzE2MmYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe31UzuEqmpWwc4+ANkZx8LKlNIvNq7xcckyBUVnephZCy XO29YsDwl9yeGcBUxfhqZGNSBN+vfpba+f0qj34bi0bxv1arWExk+Z0PWoD7E7nT 85VZGPbsXNdR8WS1t+saoxVzywrcIjCasvgtdvRYh3uLpLwImOBP5f2sIzQKfuw+ XQ8nnnSeyoVmJ8DGWBC0tVTUwtbTIUtodgKEX/drJNV3mFiDeF4ar8MsQIA9Azfv ePlbeTzjsSenQoXteAs36Eq9BzMIjgAuUH6bUAm6dTBJ5k86aPxkN/4Atzf8+qcd 1fBgN53RrlRc52IzO/VFrsuUnix14ZfxEP9xFk41AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdi6BcE6/OKdTW8Z4IqkElojiqbkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkNGVhODE3LTlhMzAtNDZlYi1hZGFlLWVhMTQxMTk4NGM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoLTANBgkqhkiG9w0BAQsFAAOCAQEAXp+6M9hLe+H8x4mY/C+LMC22hUSm zdp3rA524SoNVdgXviqgCJrDAX76dtVmIn9qxEIR8c56lGrwk7c7R6jKyX2PKvZr 4EMkHGeP7cE4IOAmtue7KI6DIn9IM20t9NB52xnvDnhtTaaQ4c/4FOr5f/BNG9hv YGYsZSQC9kVRraBiXsa/vqZrVxU2dy5OENvNphvi/nBGjkuOIv+xpBSWegpFL7kj lNTTrsYteSqxwd51H2NY2MbRQKaIF++kMbsrPNga4hxZW7jDmzpJHoVl5TR0/y4N fvg5oo0vDoiP/v7qjXA5PTMrPM1XFapHyDMaJIGVrVNy4jw3Vqcu4p9nrw== -----END CERTIFICATE-----Generated at Sun May 11 10:45:21 2025 by rpki-client