$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa File: c81689da-9859-446e-ac73-705fc08fb300.roa (raw, json) Hash identifier: I48OlIbCftBJALTpBoDFVyw3ShoavNdiWRDlIaY1ZOs= Subject key identifier: 9E:37:8B:36:AE:99:6B:D5:05:C1:33:C1:5B:41:FF:A8:07:75:F3:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 472D989D0FFABC7CB9C928B4337BD384857CDB53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa Signing time: Sat 03 May 2025 00:40:11 +0000 ROA not before: Sat 03 May 2025 00:40:11 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.41.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2d:98:9d:0f:fa:bc:7c:b9:c9:28:b4:33:7b:d3:84:85:7c:db:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:40:11 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=c56c053d58d3461e48e72685b971826144c9f8371ea8efbb2f94076f6804e1c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ab:5d:cd:32:65:2a:20:43:3f:24:2c:c3:88: 5a:4c:36:de:5e:f5:c0:73:6b:aa:b1:bb:01:89:c1: 75:24:2e:d0:31:3e:0e:ad:5f:96:3b:f8:9c:fd:39: 64:c9:db:10:69:5c:21:a9:54:ae:24:37:2d:a7:ab: 29:58:85:9e:6f:32:d2:f8:88:07:49:85:4e:ac:a4: 25:6e:54:0d:00:4e:60:92:0b:1a:ff:86:c2:44:53: 0d:bf:99:78:1b:cf:00:fe:3e:22:af:e5:de:3c:f2: ed:1d:e8:e8:17:22:23:1b:3e:b9:5b:60:b1:79:49: b4:7a:54:74:c5:78:42:ba:bd:4f:73:ae:99:7a:6d: 7b:e9:0f:e6:6e:8b:b3:1e:79:1f:11:e7:a4:8e:74: 92:46:9d:51:c9:74:c2:af:d8:6a:30:eb:4f:7e:fb: 1e:b3:7d:e4:14:02:e5:69:44:29:11:36:46:33:92: b8:6e:77:0a:11:e5:a0:52:65:64:ea:41:fc:d8:7a: ec:a7:46:99:47:1b:32:43:37:cf:bf:11:42:ce:4f: 4d:c3:96:67:02:9a:7c:d3:50:ce:69:05:b7:47:ff: 82:ab:f2:a2:cc:04:81:04:3c:55:6d:ed:11:e7:78: b1:25:dd:5b:bb:5e:eb:0f:1e:be:ef:c1:17:f3:5e: d2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:37:8B:36:AE:99:6B:D5:05:C1:33:C1:5B:41:FF:A8:07:75:F3:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c81689da-9859-446e-ac73-705fc08fb300.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.41.0.0/20 Signature Algorithm: sha256WithRSAEncryption 12:a5:16:7c:c8:e3:c6:dd:21:b5:2e:47:e7:39:eb:bf:43:17: d6:e0:23:36:27:3f:d7:ee:6c:2b:a9:c6:28:8c:cf:15:c6:b8: f1:99:2b:59:71:cc:73:93:68:4d:5e:fb:bb:b3:63:60:07:b8: 96:bb:5f:10:be:45:35:c3:bd:01:6a:82:78:e1:1f:cf:8f:d7: 3a:a4:08:cc:10:34:fa:aa:b3:b2:f7:16:55:a6:03:bc:95:ef: 20:27:3c:e7:e3:34:99:e5:9c:17:57:ea:9a:f0:91:bf:96:af: f3:84:14:61:3e:bc:a8:7d:ed:52:1d:08:86:0c:37:86:a3:0f: 5e:f5:8f:0e:61:7f:25:d0:bd:8b:68:1b:dd:41:3f:6e:90:6e: 63:6b:2f:3d:27:08:5f:6a:4a:c0:61:ac:08:b4:76:3d:b2:e1: 31:05:f2:1d:28:87:da:a6:dd:e6:dc:c0:10:c2:c5:08:76:d1: 30:7e:8b:e4:0f:2e:0d:5c:2c:fa:69:de:a2:bb:55:f2:9f:8d: fd:f5:3e:a8:3f:50:01:83:f3:8c:00:18:bd:b0:33:c7:6b:49: b8:a5:ec:57:84:31:7a:fd:28:59:82:a7:8f:40:3d:1e:83:ff: 8a:28:12:95:2f:93:13:35:51:db:4e:e7:3a:9a:ae:44:eb:74: 52:f4:5c:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURy2YnQ/6vHy5ySi0M3vThIV821MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MDExWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTZjMDUzZDU4ZDM0NjFlNDhlNzI2ODViOTcxODI2MTQ0 YzlmODM3MWVhOGVmYmIyZjk0MDc2ZjY4MDRlMWMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0q13NMmUqIEM/JCzDiFpMNt5e9cBza6qxuwGJwXUkLtAx Pg6tX5Y7+Jz9OWTJ2xBpXCGpVK4kNy2nqylYhZ5vMtL4iAdJhU6spCVuVA0ATmCS Cxr/hsJEUw2/mXgbzwD+PiKv5d488u0d6OgXIiMbPrlbYLF5SbR6VHTFeEK6vU9z rpl6bXvpD+Zui7MeeR8R56SOdJJGnVHJdMKv2Gow609++x6zfeQUAuVpRCkRNkYz krhudwoR5aBSZWTqQfzYeuynRplHGzJDN8+/EULOT03DlmcCmnzTUM5pBbdH/4Kr 8qLMBIEEPFVt7RHneLEl3Vu7XusPHr7vwRfzXtKvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnjeLNq6Za9UFwTPBW0H/qAd181YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MTY4OWRhLTk4NTktNDQ2ZS1hYzczLTcwNWZjMDhmYjMwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARIKQAwDQYJKoZIhvcNAQELBQADggEBABKlFnzI48bdIbUuR+c5679DF9bg IzYnP9fubCupxiiMzxXGuPGZK1lxzHOTaE1e+7uzY2AHuJa7XxC+RTXDvQFqgnjh H8+P1zqkCMwQNPqqs7L3FlWmA7yV7yAnPOfjNJnlnBdX6prwkb+Wr/OEFGE+vKh9 7VIdCIYMN4ajD171jw5hfyXQvYtoG91BP26QbmNrLz0nCF9qSsBhrAi0dj2y4TEF 8h0oh9qm3ebcwBDCxQh20TB+i+QPLg1cLPpp3qK7VfKfjf31Pqg/UAGD84wAGL2w M8drSbil7FeEMXr9KFmCp49APR6D/4ooEpUvkxM1UdtO5zqarkTrdFL0XNc= -----END CERTIFICATE-----Generated at Sun May 11 20:06:04 2025 by rpki-client