$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa File: a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa (raw, json) Hash identifier: FS2TFaJXMmIqDwtwnynJAbtSQWVL553XH30LUUnwkcs= Subject key identifier: 3D:7F:0C:80:D0:6D:B2:95:38:92:9D:43:6C:43:2E:26:10:0E:19:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49177ED497843C967EB132CAC57A9D08C7A53BB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa Signing time: Fri 02 May 2025 00:21:19 +0000 ROA not before: Fri 02 May 2025 00:21:19 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.83.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:17:7e:d4:97:84:3c:96:7e:b1:32:ca:c5:7a:9d:08:c7:a5:3b:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:21:19 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=a196e9712c90346c6944517e0c5b128033162a2ec23d4c764327a7e1ada11c3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:39:30:06:ee:40:47:14:ab:d9:42:db:ab:c7: 5d:b6:be:8e:92:3d:38:af:70:01:57:16:a8:fb:5f: b1:cd:9b:e4:22:fd:9d:dc:47:00:f7:06:bb:1c:e4: e0:a2:d6:6b:98:e9:4c:e2:5a:f1:96:5a:06:4a:d8: c5:12:de:74:63:88:ba:3d:74:8d:07:fb:8a:13:05: 2d:21:65:74:ef:0b:fc:7a:01:17:a8:80:ef:6a:7b: 49:11:03:94:61:1b:12:e8:60:a8:7e:83:58:c0:7c: 79:c6:81:74:80:c5:83:a7:56:d6:cc:aa:b8:a0:ec: d1:3d:8f:98:39:19:aa:03:ff:16:78:b6:6a:42:4b: 79:43:04:f5:7c:dd:a2:12:14:e9:bc:f7:ae:85:56: 70:bd:59:4a:36:d0:eb:29:d3:8f:b8:8b:28:16:6f: 78:54:8e:12:22:57:5b:e2:62:b7:66:e9:a6:80:06: f1:ba:c4:ef:74:d3:8b:0e:49:bc:e1:a4:b0:52:27: a5:d7:ad:2e:01:8a:99:b3:d9:a7:eb:f5:de:35:39: 91:3d:b8:eb:08:52:8e:a2:53:54:3d:00:e9:f9:e6: ac:3a:8b:64:7c:a0:67:1a:63:2c:a9:ca:25:02:32: 5d:13:a2:b4:66:94:2e:a6:e4:44:2b:41:c6:d4:cb: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7F:0C:80:D0:6D:B2:95:38:92:9D:43:6C:43:2E:26:10:0E:19:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.200.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:60:2a:6a:e6:84:c7:79:0e:b4:6f:ab:92:86:f9:86:22:a9: d0:6b:ce:ea:83:8d:2c:c5:e7:5a:21:2f:8e:f3:d5:d1:34:88: f2:a3:9c:c9:20:a7:17:b7:a1:ba:10:77:6c:c0:1c:ed:5f:80: 1a:69:9c:3d:dc:92:b3:30:24:b8:10:1f:05:46:af:74:d6:7d: 5e:b4:37:f2:87:c1:28:fe:c3:7f:95:e4:7b:ff:50:e4:e6:f9: af:dc:a0:c7:2c:9c:aa:51:da:91:ec:d0:ca:65:5e:ce:d4:84: b4:07:df:a6:dc:3d:16:31:23:77:fe:d1:df:65:6d:a6:d3:f0: 10:e2:10:ac:35:dd:2e:7b:07:72:29:d3:45:98:55:3c:12:7b: 15:81:79:4d:cb:d9:8a:b4:9d:7f:cc:c4:45:66:49:c5:8b:73: e1:eb:f3:9e:2d:18:9e:b8:03:fd:50:28:a8:e4:bd:50:da:e3: 8e:cf:79:5b:8e:a6:c6:b7:55:2f:62:e2:9b:a5:db:b8:1d:84: 6d:18:fd:ce:27:7d:39:c2:64:32:db:36:58:eb:c5:3d:7f:a1: 4c:5a:93:73:5c:f2:13:b3:e0:2d:11:54:58:f3:bd:f2:e5:62: 75:2c:30:d4:92:37:ed:aa:40:5f:9e:99:21:07:56:87:6c:d6: 9b:73:b5:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSRd+1JeEPJZ+sTLKxXqdCMelO7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAyMTE5WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTk2ZTk3MTJjOTAzNDZjNjk0NDUxN2UwYzViMTI4MDMz MTYyYTJlYzIzZDRjNzY0MzI3YTdlMWFkYTExYzNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcOTAG7kBHFKvZQturx122vo6SPTivcAFXFqj7X7HNm+Qi /Z3cRwD3Brsc5OCi1muY6UziWvGWWgZK2MUS3nRjiLo9dI0H+4oTBS0hZXTvC/x6 AReogO9qe0kRA5RhGxLoYKh+g1jAfHnGgXSAxYOnVtbMqrig7NE9j5g5GaoD/xZ4 tmpCS3lDBPV83aISFOm8966FVnC9WUo20Osp04+4iygWb3hUjhIiV1viYrdm6aaA BvG6xO9004sOSbzhpLBSJ6XXrS4Bipmz2afr9d41OZE9uOsIUo6iU1Q9AOn55qw6 i2R8oGcaYyypyiUCMl0TorRmlC6m5EQrQcbUyy0lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPX8MgNBtspU4kp1DbEMuJhAOGTowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5MGI1MGU3LTI3MjktNDdkOS1iOTM4LWE4YmFmYmZhOGZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKtU8gwDQYJKoZIhvcNAQELBQADggEBAItgKmrmhMd5DrRvq5KG+YYiqdBr zuqDjSzF51ohL47z1dE0iPKjnMkgpxe3oboQd2zAHO1fgBppnD3ckrMwJLgQHwVG r3TWfV60N/KHwSj+w3+V5Hv/UOTm+a/coMcsnKpR2pHs0MplXs7UhLQH36bcPRYx I3f+0d9lbabT8BDiEKw13S57B3Ip00WYVTwSexWBeU3L2Yq0nX/MxEVmScWLc+Hr 854tGJ64A/1QKKjkvVDa447PeVuOpsa3VS9i4pul27gdhG0Y/c4nfTnCZDLbNljr xT1/oUxak3Nc8hOz4C0RVFjzvfLlYnUsMNSSN+2qQF+emSEHVods1ptztdw= -----END CERTIFICATE-----Generated at Mon May 5 06:38:32 2025 by rpki-client