$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e4c0c1e-a4b0-46fc-b3b7-324622602ccd.roa File: 9e4c0c1e-a4b0-46fc-b3b7-324622602ccd.roa (raw, json) Hash identifier: jftu6bLsevUZGbjMkPfbiEK0QbaJuatmhIBpriEwIfc= Subject key identifier: FD:0A:5C:25:5A:1A:0E:32:BE:ED:60:C0:8E:7A:A9:50:03:89:66:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4552977E02E1A58E6C20498EDB4D3DC591010FCC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e4c0c1e-a4b0-46fc-b3b7-324622602ccd.roa Signing time: Thu 08 May 2025 18:53:19 +0000 ROA not before: Thu 08 May 2025 18:53:19 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.146.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:52:97:7e:02:e1:a5:8e:6c:20:49:8e:db:4d:3d:c5:91:01:0f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 18:53:19 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=b1bfd9d4676646b1009992076d023f8c50eae848f3307b8c21c1d887cd934e57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:63:88:df:28:f6:fe:4b:85:b1:58:15:47:b2: a7:0c:99:9c:95:1b:c2:29:17:49:17:7f:d2:b4:5e: 9a:f0:d8:cf:a9:3f:77:18:2a:62:43:4a:8e:52:f0: 30:0f:6d:18:7a:d3:31:42:29:d0:16:9b:dc:61:ce: 20:d1:f9:6a:cd:5d:ce:fc:67:4b:05:14:62:5c:09: 66:bf:15:bf:3f:21:8c:8d:9a:4a:a2:7a:a7:40:49: ca:bb:b8:18:78:61:af:2d:d3:c9:7d:30:78:86:2b: fa:06:ed:c0:af:54:70:9d:d1:2e:90:49:0f:f6:4c: d1:d7:6c:57:d1:79:4a:8b:5f:cf:cb:b7:3e:1e:da: 1a:db:97:14:40:1d:cb:f2:a3:1a:bf:a7:c3:98:f1: 55:e5:9a:78:4d:f0:ea:94:df:22:a9:eb:76:f5:8c: 10:19:ed:c4:03:12:1e:67:2c:41:de:95:5a:54:a2: ce:3c:55:4e:9e:54:3f:c7:7f:33:68:6c:aa:ce:da: 61:40:8e:30:99:aa:4d:16:35:43:44:a3:b4:a5:b2: 29:2b:b3:e7:18:ed:f9:0f:4f:32:25:de:51:9e:72: 98:76:be:05:66:aa:52:48:39:e8:c2:e9:7d:33:65: e9:2c:a0:4f:08:59:11:87:cc:da:0e:6a:24:a3:07: fa:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0A:5C:25:5A:1A:0E:32:BE:ED:60:C0:8E:7A:A9:50:03:89:66:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e4c0c1e-a4b0-46fc-b3b7-324622602ccd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.146.40.0/21 Signature Algorithm: sha256WithRSAEncryption 35:49:b6:9b:f2:a2:48:1a:fd:5f:8a:00:e3:6f:ae:ff:2d:14: 93:2f:8d:ee:73:39:36:44:e2:31:3a:37:9d:f0:85:c8:f7:72: dc:f6:34:3b:7b:ec:fb:fc:a4:69:fb:49:16:de:72:b2:d5:e2: 99:5d:55:1d:33:4f:54:5b:5d:ed:e1:0e:a2:06:c9:aa:43:c9: e6:c5:3a:8c:7f:90:18:30:7c:61:98:85:a7:dd:8c:25:28:94: c9:23:aa:ea:79:25:ee:eb:93:ee:c9:8b:2d:b2:71:c3:86:1e: 2a:df:3c:86:bf:d8:80:60:51:33:9d:f6:c7:89:77:63:7a:dc: 6a:73:fd:0b:23:0d:f1:f3:7f:a3:d2:9d:b8:80:1c:49:8b:13: 1a:b7:2b:e6:79:37:2c:07:9f:49:2a:a1:00:0f:49:e6:f5:82: 56:80:38:e7:85:e6:00:ff:8f:4e:da:1e:b3:3b:90:47:17:22: 3f:3d:83:6b:8b:5f:6f:b0:a1:b8:7f:b7:4a:80:db:10:d5:76: 1c:16:9b:4d:b0:d7:e9:2f:b7:83:8f:1a:b0:aa:7c:42:4a:67: 49:9e:fa:83:db:68:ed:85:18:8a:84:21:e5:ac:9d:22:a1:9b: dd:a8:7d:a9:e3:e0:37:44:4e:54:8e:ef:ba:83:6d:03:04:80: ef:75:83:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURVKXfgLhpY5sIEmO2009xZEBD8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTg1MzE5WhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWJmZDlkNDY3NjY0NmIxMDA5OTkyMDc2ZDAyM2Y4YzUw ZWFlODQ4ZjMzMDdiOGMyMWMxZDg4N2NkOTM0ZTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtY4jfKPb+S4WxWBVHsqcMmZyVG8IpF0kXf9K0Xprw2M+p P3cYKmJDSo5S8DAPbRh60zFCKdAWm9xhziDR+WrNXc78Z0sFFGJcCWa/Fb8/IYyN mkqieqdAScq7uBh4Ya8t08l9MHiGK/oG7cCvVHCd0S6QSQ/2TNHXbFfReUqLX8/L tz4e2hrblxRAHcvyoxq/p8OY8VXlmnhN8OqU3yKp63b1jBAZ7cQDEh5nLEHelVpU os48VU6eVD/HfzNobKrO2mFAjjCZqk0WNUNEo7Slsikrs+cY7fkPTzIl3lGecph2 vgVmqlJIOejC6X0zZeksoE8IWRGHzNoOaiSjB/rrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/QpcJVoaDjK+7WDAjnqpUAOJZsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllNGMwYzFlLWE0YjAtNDZmYy1iM2I3LTMyNDYyMjYwMmNjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNkigwDQYJKoZIhvcNAQELBQADggEBADVJtpvyokga/V+KAONvrv8tFJMv je5zOTZE4jE6N53whcj3ctz2NDt77Pv8pGn7SRbecrLV4pldVR0zT1RbXe3hDqIG yapDyebFOox/kBgwfGGYhafdjCUolMkjqup5Je7rk+7Jiy2yccOGHirfPIa/2IBg UTOd9seJd2N63Gpz/QsjDfHzf6PSnbiAHEmLExq3K+Z5NywHn0kqoQAPSeb1glaA OOeF5gD/j07aHrM7kEcXIj89g2uLX2+wobh/t0qA2xDVdhwWm02w1+kvt4OPGrCq fEJKZ0me+oPbaO2FGIqEIeWsnSKhm92ofanj4DdETlSO77qDbQMEgO91g+s= -----END CERTIFICATE-----Generated at Sun May 11 20:42:55 2025 by rpki-client