$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa File: c22f83f9-6806-4731-9ee7-da3a022533e2.roa (raw, json) Hash identifier: aqI78/dlHskwI9+CB40nThHgn45FqCHtvcsMWtFCRjM= Subject key identifier: 54:F3:2E:96:A1:19:C0:1F:50:6F:DD:11:8A:B8:37:09:24:4C:73:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 274F6FF258C055F9848D561385A009E2BC90FFFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa Signing time: Fri 02 May 2025 00:21:17 +0000 ROA not before: Fri 02 May 2025 00:21:17 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4f:6f:f2:58:c0:55:f9:84:8d:56:13:85:a0:09:e2:bc:90:ff:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:21:17 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=e965ee8dee59cee9b713b7765de3aa481c353a11fb03edfc7914aecd6854afa2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a9:71:cc:86:33:c6:22:24:7e:bf:fe:27:b5: d6:f3:ca:99:12:29:a7:cb:99:f7:3a:00:73:cd:73: 76:51:02:0b:b7:c1:00:b2:90:6f:db:30:d7:c8:be: 2b:ac:45:a4:80:2a:66:06:de:f6:f4:af:81:e1:6e: 43:5a:94:ef:bb:da:2a:33:b0:72:f8:d8:d0:9a:c6: 01:a0:90:3c:26:ad:3f:ae:49:97:5b:52:87:d4:a5: 55:e7:ac:f9:2a:48:52:d9:2e:ac:08:f6:f1:19:60: 3f:bb:ba:ad:6c:6a:19:68:12:8a:b0:82:20:6e:9a: d4:f2:09:13:ea:e2:8d:d7:62:0f:e8:79:37:6c:1d: 68:ba:e1:27:85:08:ea:46:d8:2c:eb:db:92:ac:25: 37:b8:55:16:56:30:27:42:f8:00:94:eb:04:ca:5f: ac:49:62:99:32:47:8d:22:48:22:a6:80:af:36:8e: 07:4a:98:02:61:b7:ee:46:a2:9a:6f:ec:fe:f7:4a: b0:ba:bc:6d:0c:aa:a3:ea:a5:bc:37:3a:e8:77:b9: ea:c0:54:ee:67:fe:60:9d:97:7c:a9:2e:c4:f6:c1: fd:d4:0c:4f:8a:b3:cb:64:b7:4a:96:89:e6:1c:fb: 4f:bb:2c:1d:4b:2b:f9:b8:44:14:7d:58:67:56:cf: 08:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F3:2E:96:A1:19:C0:1F:50:6F:DD:11:8A:B8:37:09:24:4C:73:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:64:9b:07:03:63:39:d2:0f:55:f2:cb:e8:26:21:6f:a1:b0: 45:34:08:96:c7:90:a7:00:05:bf:78:05:6a:99:a9:8f:63:6f: 02:8e:74:d4:3e:fd:52:6b:ab:81:c7:dc:ba:ae:b9:92:c7:2a: 4e:6a:4d:2e:33:29:43:b3:c1:cb:25:7f:93:6d:cf:85:56:c1: fa:67:a9:cd:c0:d2:93:1f:c8:04:0c:92:c2:b2:72:0e:c6:2c: 0b:c2:e2:c2:96:3a:88:55:7b:de:7a:93:03:ea:2d:b2:2e:21: d7:34:5a:60:6a:8b:59:09:67:63:40:17:fa:d8:34:af:9e:67: 36:61:a3:5f:b6:9f:6e:64:c0:f6:64:76:3c:95:ff:f5:cf:85: 8c:05:d4:97:a3:9d:43:a6:7f:f6:14:35:dc:f6:dd:19:a1:6e: 3f:67:3e:c3:c9:01:92:ac:ff:a1:fd:18:d2:b6:6d:6b:68:8b: 1c:39:0c:96:6a:c7:1c:2e:ff:a2:f5:09:34:ce:e6:85:23:53: f5:5f:aa:40:68:f5:26:3f:5f:ac:a9:6d:36:ad:3a:ea:67:32: e5:98:d7:93:9c:ab:61:e3:3c:c3:91:25:2f:66:20:57:a5:88: d7:f7:73:36:55:dd:84:73:26:e0:b5:17:bf:d1:be:b7:8e:30: 98:d5:01:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ09v8ljAVfmEjVYThaAJ4ryQ//0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAyMTE3WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTY1ZWU4ZGVlNTljZWU5YjcxM2I3NzY1ZGUzYWE0ODFj MzUzYTExZmIwM2VkZmM3OTE0YWVjZDY4NTRhZmEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWqXHMhjPGIiR+v/4ntdbzypkSKafLmfc6AHPNc3ZRAgu3 wQCykG/bMNfIviusRaSAKmYG3vb0r4HhbkNalO+72iozsHL42NCaxgGgkDwmrT+u SZdbUofUpVXnrPkqSFLZLqwI9vEZYD+7uq1sahloEoqwgiBumtTyCRPq4o3XYg/o eTdsHWi64SeFCOpG2Czr25KsJTe4VRZWMCdC+ACU6wTKX6xJYpkyR40iSCKmgK82 jgdKmAJht+5Goppv7P73SrC6vG0MqqPqpbw3Ouh3uerAVO5n/mCdl3ypLsT2wf3U DE+Ks8tkt0qWieYc+0+7LB1LK/m4RBR9WGdWzwj/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVPMulqEZwB9Qb90Rirg3CSRMcwUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMmY4M2Y5LTY4MDYtNDczMS05ZWU3LWRhM2EwMjI1MzNlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCqDzANBgkqhkiG9w0BAQsFAAOCAQEAiGSbBwNjOdIPVfLL6CYhb6GwRTQI lseQpwAFv3gFapmpj2NvAo501D79Umurgcfcuq65kscqTmpNLjMpQ7PByyV/k23P hVbB+mepzcDSkx/IBAySwrJyDsYsC8LiwpY6iFV73nqTA+otsi4h1zRaYGqLWQln Y0AX+tg0r55nNmGjX7afbmTA9mR2PJX/9c+FjAXUl6OdQ6Z/9hQ13PbdGaFuP2c+ w8kBkqz/of0Y0rZta2iLHDkMlmrHHC7/ovUJNM7mhSNT9V+qQGj1Jj9frKltNq06 6mcy5ZjXk5yrYeM8w5ElL2YgV6WI1/dzNlXdhHMm4LUXv9G+t44wmNUBbw== -----END CERTIFICATE-----Generated at Sun May 11 13:11:10 2025 by rpki-client