$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa File: a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa (raw, json) Hash identifier: wS/5UGJQ2O7y1sBfssA0nz7vZWW5+l55L8Mwrs+dI8o= Subject key identifier: 8B:47:75:64:20:DA:4A:D7:0C:F4:45:C5:BD:6E:52:5E:36:A7:04:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42B97CBEDE7937F289A2735A64B6AFA773722453 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa Signing time: Tue 29 Apr 2025 00:01:58 +0000 ROA not before: Tue 29 Apr 2025 00:01:58 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 210.89.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b9:7c:be:de:79:37:f2:89:a2:73:5a:64:b6:af:a7:73:72:24:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:01:58 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=17d02e0efee3a48855faf3f63bca546c00566971f1665015c8626717435c0e53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2f:08:d9:ea:fd:d0:23:4b:d3:62:4b:ea:19: 12:e7:ee:7c:16:35:9e:f9:0d:60:38:ff:ca:0d:94: 83:7b:da:95:0e:f9:5a:10:36:3c:8e:31:d2:e0:ce: 4c:83:cb:e1:89:23:91:91:7d:86:f5:a9:39:1f:96: c4:f9:52:23:b3:9a:ed:48:5a:d4:aa:c8:5b:b7:53: d6:d3:af:39:41:1b:b0:0e:3d:d9:06:e4:0c:9b:08: 12:3a:7c:b1:92:cf:2c:95:2b:03:10:97:57:ab:cd: cb:f5:d5:2f:0e:86:3a:ec:f2:3f:ff:19:03:8f:2d: 33:b4:fd:2d:ed:ea:f7:d9:87:3e:77:c0:d5:9e:34: 0f:25:b8:1f:af:c2:f2:4b:86:72:4c:2f:53:ba:de: 07:61:72:bc:0e:3d:67:49:d0:28:85:18:27:88:bb: 85:61:c5:01:a3:61:87:45:82:98:4a:d7:81:4e:b8: 5d:72:ec:38:a1:1b:8b:2d:4f:3c:43:ed:43:78:10: fa:72:26:b6:06:c0:8c:9f:4d:68:98:43:e8:22:2f: e8:e4:f8:b5:4d:b5:98:eb:f9:9e:23:ff:20:94:21: 12:00:f0:1e:43:91:62:03:02:1e:9d:e7:ef:4e:97: 94:4a:bb:42:1d:7f:37:be:9c:c8:51:b0:ef:ea:b9: 72:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:47:75:64:20:DA:4A:D7:0C:F4:45:C5:BD:6E:52:5E:36:A7:04:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.89.64.0/19 Signature Algorithm: sha256WithRSAEncryption 48:2e:b3:67:c0:a8:d7:04:4f:cc:d9:52:2c:61:a8:dd:03:28: 44:f1:b8:fa:24:83:af:94:98:79:ab:f3:59:e6:9f:f8:de:8d: 50:c0:0a:89:69:d6:b3:91:e7:94:82:d2:dd:fb:cd:9b:2f:0b: b1:97:76:be:c1:bb:54:d1:06:da:3d:0f:7f:c9:1b:25:c6:67: 63:11:86:9f:81:e1:0d:ad:0b:ad:23:6a:50:3f:fd:11:b2:fe: e1:4b:d5:b5:2c:88:07:b3:ae:01:29:12:f3:af:07:8e:a1:9f: 91:3e:7c:18:c2:85:03:c3:a1:78:32:29:00:e0:af:02:72:1a: 69:b8:e9:af:e5:3a:53:e6:cb:bc:b7:14:bf:65:ec:33:52:48: 4a:68:76:ee:6a:d4:90:ac:8c:0d:d3:8f:cf:b6:60:84:32:85: 5a:c1:ad:15:6d:0a:e9:03:a7:4d:b0:1d:0e:ef:4f:76:74:98: 80:37:dc:c4:9d:c2:0c:b3:a2:db:27:45:a5:be:d2:c8:d0:1c: 46:b3:4d:df:76:e8:fa:f6:f8:7a:15:07:ce:96:b3:05:00:89: e5:f9:13:08:61:75:b0:35:61:25:98:62:42:04:2b:5b:88:b2: a2:77:2d:70:22:cb:35:77:2f:80:8b:0e:c3:85:ed:5c:a5:26: b2:19:c3:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQrl8vt55N/KJonNaZLavp3NyJFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMTU4WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2QwMmUwZWZlZTNhNDg4NTVmYWYzZjYzYmNhNTQ2YzAw NTY2OTcxZjE2NjUwMTVjODYyNjcxNzQzNWMwZTUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmLwjZ6v3QI0vTYkvqGRLn7nwWNZ75DWA4/8oNlIN72pUO +VoQNjyOMdLgzkyDy+GJI5GRfYb1qTkflsT5UiOzmu1IWtSqyFu3U9bTrzlBG7AO PdkG5AybCBI6fLGSzyyVKwMQl1erzcv11S8Ohjrs8j//GQOPLTO0/S3t6vfZhz53 wNWeNA8luB+vwvJLhnJML1O63gdhcrwOPWdJ0CiFGCeIu4VhxQGjYYdFgphK14FO uF1y7DihG4stTzxD7UN4EPpyJrYGwIyfTWiYQ+giL+jk+LVNtZjr+Z4j/yCUIRIA 8B5DkWIDAh6d5+9Ol5RKu0Idfze+nMhRsO/quXJbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi0d1ZCDaStcM9EXFvW5SXjanBKMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZTRlNGM4LTMyNWUtNGM0ZC04ZGZhLTI5ZGI3MmMwNGI2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXSWUAwDQYJKoZIhvcNAQELBQADggEBAEgus2fAqNcET8zZUixhqN0DKETx uPokg6+UmHmr81nmn/jejVDAColp1rOR55SC0t37zZsvC7GXdr7Bu1TRBto9D3/J GyXGZ2MRhp+B4Q2tC60jalA//RGy/uFL1bUsiAezrgEpEvOvB46hn5E+fBjChQPD oXgyKQDgrwJyGmm46a/lOlPmy7y3FL9l7DNSSEpodu5q1JCsjA3Tj8+2YIQyhVrB rRVtCukDp02wHQ7vT3Z0mIA33MSdwgyzotsnRaW+0sjQHEazTd926Pr2+HoVB86W swUAieX5EwhhdbA1YSWYYkIEK1uIsqJ3LXAiyzV3L4CLDsOF7VylJrIZw2k= -----END CERTIFICATE-----Generated at Mon May 5 15:44:15 2025 by rpki-client