$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2348448-c641-49ba-bf2c-926c26af7c99.roa File: b2348448-c641-49ba-bf2c-926c26af7c99.roa (raw, json) Hash identifier: KpXLl99I2tTA0byAx9EZL2voDCiWqFcEgQTSz6l0Qq8= Subject key identifier: F5:17:DB:EB:C4:A9:CB:EA:A7:9D:C5:90:B1:2A:67:F2:24:E6:83:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A806E8109B16D4FEF90E7BA70285DE4286C6A98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2348448-c641-49ba-bf2c-926c26af7c99.roa Signing time: Mon 28 Apr 2025 15:00:19 +0000 ROA not before: Mon 28 Apr 2025 15:00:19 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.194.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:80:6e:81:09:b1:6d:4f:ef:90:e7:ba:70:28:5d:e4:28:6c:6a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:00:19 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=7399f541aee8efd1889d8eb29831d0e8eb8993329e76e660369e86243e839a71, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:33:dc:ae:16:20:25:29:0e:d5:21:07:49:d1: 84:bd:9f:c0:1d:55:30:b0:35:59:58:20:69:66:96: 98:b8:fb:11:36:0c:2a:66:fd:f1:3a:62:cb:c1:5d: c9:22:11:9a:9f:97:f3:78:98:d6:54:45:ff:f2:d3: 77:0b:df:ce:23:2b:9b:0e:f8:3d:08:a4:92:f6:a1: 21:3f:4f:ed:d1:f1:70:ad:89:d6:56:54:9f:0b:d5: 2e:14:03:64:39:18:48:d5:b1:b2:96:dc:fa:fb:b5: 15:ba:45:08:ec:45:07:cd:d2:d6:5b:9b:3e:45:88: 23:1d:f2:63:46:5c:5d:da:9f:f6:83:0c:78:ac:86: a3:9c:22:49:ef:ae:5d:7a:87:1d:45:3b:81:3b:74: 06:8b:81:d6:19:82:5a:e8:c1:63:c2:92:53:57:a8: 15:b4:2b:a4:9d:c3:3f:84:c4:62:f8:ad:0c:5e:81: 94:f4:db:ad:d4:18:24:d1:7f:6d:7d:82:b3:c1:88: 77:67:d1:19:f9:f8:b0:1a:46:12:91:f0:7b:71:7e: 26:f5:5c:9d:b9:56:f7:bb:2a:0d:a9:68:45:d6:c3: a9:ca:30:60:1f:ac:18:7a:dc:89:81:f4:7d:cc:be: fe:f8:9e:69:7c:a1:e7:c5:40:c6:ee:0c:dc:24:e1: f1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:17:DB:EB:C4:A9:CB:EA:A7:9D:C5:90:B1:2A:67:F2:24:E6:83:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2348448-c641-49ba-bf2c-926c26af7c99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.194.224.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:1f:1f:26:73:f7:3d:eb:34:41:f4:21:d1:b3:3d:4c:d7:c5: 95:53:7a:5a:9f:b9:ad:f6:78:d8:a0:fb:d4:95:39:31:c7:9e: 5c:75:a5:4f:fa:7d:f1:c9:c7:6e:a1:d8:0e:2c:d2:2d:f9:a2: 0e:dd:92:0b:c3:0a:01:cf:5f:99:46:ba:09:cb:7c:af:78:a1: b7:18:77:9c:d1:76:bd:d8:81:b5:f2:09:8c:9d:ff:47:d8:fb: 2b:5c:a8:3d:b9:07:4a:5a:33:6f:d2:31:be:e4:92:ad:59:6b: 7e:9d:1a:c2:9d:1f:86:5a:82:ab:61:4f:83:51:9f:59:64:d5: d7:af:e2:46:66:c8:1b:ef:38:11:86:b6:d8:e6:9c:00:7a:eb: 07:f3:2c:fb:ca:e1:7b:06:ce:84:76:cb:3f:95:a7:55:82:5e: 40:c4:6b:40:2c:be:3c:99:ae:5d:98:24:0c:c7:d7:66:02:ab: a9:76:1c:df:2a:2c:6c:d9:1b:08:bd:6c:bd:7e:77:cc:20:52: 29:05:b9:97:1f:c4:05:d9:3a:24:84:06:a5:4c:ef:39:e0:3d: 4b:83:a0:99:f8:e6:e9:03:c8:b9:8f:87:47:15:b1:7a:d8:04: 6f:15:dc:33:03:70:b2:6c:78:20:b7:f5:93:19:e1:3a:24:56: 2e:16:da:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeoBugQmxbU/vkOe6cChd5ChsapgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUwMDE5WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Mzk5ZjU0MWFlZThlZmQxODg5ZDhlYjI5ODMxZDBlOGVi ODk5MzMyOWU3NmU2NjAzNjllODYyNDNlODM5YTcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNM9yuFiAlKQ7VIQdJ0YS9n8AdVTCwNVlYIGlmlpi4+xE2 DCpm/fE6YsvBXckiEZqfl/N4mNZURf/y03cL384jK5sO+D0IpJL2oSE/T+3R8XCt idZWVJ8L1S4UA2Q5GEjVsbKW3Pr7tRW6RQjsRQfN0tZbmz5FiCMd8mNGXF3an/aD DHishqOcIknvrl16hx1FO4E7dAaLgdYZglrowWPCklNXqBW0K6Sdwz+ExGL4rQxe gZT0263UGCTRf219grPBiHdn0Rn5+LAaRhKR8Htxfib1XJ25Vve7Kg2paEXWw6nK MGAfrBh63ImB9H3Mvv74nml8oefFQMbuDNwk4fGZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Rfb68Spy+qnncWQsSpn8iTmg3owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMzQ4NDQ4LWM2NDEtNDliYS1iZjJjLTkyNmMyNmFmN2M5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVowuAwDQYJKoZIhvcNAQELBQADggEBAA0fHyZz9z3rNEH0IdGzPUzXxZVT elqfua32eNig+9SVOTHHnlx1pU/6ffHJx26h2A4s0i35og7dkgvDCgHPX5lGugnL fK94obcYd5zRdr3YgbXyCYyd/0fY+ytcqD25B0paM2/SMb7kkq1Za36dGsKdH4Za gqthT4NRn1lk1dev4kZmyBvvOBGGttjmnAB66wfzLPvK4XsGzoR2yz+Vp1WCXkDE a0AsvjyZrl2YJAzH12YCq6l2HN8qLGzZGwi9bL1+d8wgUikFuZcfxAXZOiSEBqVM 7zngPUuDoJn45ukDyLmPh0cVsXrYBG8V3DMDcLJseCC39ZMZ4TokVi4W2sg= -----END CERTIFICATE-----Generated at Sat May 10 19:39:51 2025 by rpki-client