$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa File: cb7f1187-36a4-49c8-a940-b8a58490830b.roa (raw, json) Hash identifier: zcp24pu+bJCthZQzCb2al6oc6bT6KIQMxl4ufE39gXw= Subject key identifier: 1F:1A:59:F5:13:A9:8B:4A:CB:33:CC:A2:B4:7E:31:36:1E:E7:37:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E388C0C82FAD07F3B7B282F70728002B514C0D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa Signing time: Thu 08 May 2025 19:23:32 +0000 ROA not before: Thu 08 May 2025 19:23:32 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.162.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:38:8c:0c:82:fa:d0:7f:3b:7b:28:2f:70:72:80:02:b5:14:c0:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 19:23:32 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=6459d64a4a8fb454229a05bd13464411b4b69aef855e7028a047d46704c0fd90, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9d:f1:0a:8d:40:00:0c:98:90:98:89:cb:91: 02:f2:dd:63:a2:4e:c9:01:0d:22:b0:b9:57:32:08: ea:90:b2:83:d3:92:01:4a:47:0a:f6:0d:ee:f7:3f: 76:fe:c1:1f:fb:09:37:32:4d:68:08:b8:2d:4f:2e: 70:d4:15:02:62:4d:47:2d:ee:5a:c3:5e:7e:4d:5a: dc:ab:41:b2:3b:a1:42:90:ea:d1:a5:64:eb:ca:15: 33:87:93:08:96:a4:04:21:87:47:24:17:7f:19:86: f1:1b:0b:3b:48:86:f1:3d:63:d0:93:f1:19:71:7f: 9a:69:05:fe:1b:61:87:9b:bf:e2:a5:d4:55:f6:b5: 54:4b:58:50:da:66:90:8e:7c:05:74:d4:8a:00:2f: 61:07:87:5b:a7:39:a2:59:f6:95:c8:c6:52:23:79: b1:0c:97:59:a5:2f:2f:43:ff:be:5a:80:f3:ae:43: 55:2f:0f:3b:43:0e:16:00:74:9c:a1:0f:11:d6:52: 07:46:ca:e5:91:05:99:83:6a:f3:fd:d9:a6:a5:97: e4:6f:88:25:55:03:28:23:b1:db:9d:e0:fa:27:56: 87:ea:0d:33:47:96:70:21:ce:9b:21:88:40:dd:d2: 4b:4a:a7:da:a7:2a:e6:28:e7:98:af:0f:cb:d1:9b: ac:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1A:59:F5:13:A9:8B:4A:CB:33:CC:A2:B4:7E:31:36:1E:E7:37:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.162.0.0/20 Signature Algorithm: sha256WithRSAEncryption 51:6a:8e:d5:1b:66:b5:3f:1b:b9:ad:d2:9e:c9:3d:6f:a6:e0: 9e:f8:39:af:ee:8a:b5:b9:61:1c:23:4e:43:ce:4e:c0:7d:78: 7a:9f:f8:6b:83:4f:96:84:2f:ee:d2:83:2b:ae:4a:68:3e:72: c2:9d:03:8a:bc:ce:d2:27:40:b9:35:29:56:48:83:34:59:31: e1:a7:b6:eb:21:f3:0a:3d:8e:a8:20:ad:86:94:ff:0d:c9:3f: 83:9e:71:ea:a9:25:53:c1:c2:77:65:d4:d1:06:7d:c9:56:53: 20:6a:12:61:18:c3:bf:71:16:8d:b0:f9:03:7e:70:90:c0:d1: 9d:c2:f4:86:b9:9f:30:ba:6f:d7:4c:b1:d2:f1:a5:07:67:0d: 6a:f2:34:62:d7:be:ef:3d:52:53:22:be:42:50:18:34:d2:c8: 2e:ec:45:f9:e0:bb:79:e1:06:68:f4:42:15:43:ae:09:b5:31: 9d:51:f6:3a:33:7d:5e:4a:e9:29:88:8b:24:4c:6b:dc:c3:48: a4:71:00:63:af:a8:98:f0:10:b4:02:3d:dc:47:6e:23:5a:c3: 8f:cf:a9:36:0a:15:13:c2:c2:5d:2d:71:55:f2:d8:42:12:fd: 01:e9:31:cf:b6:e4:8b:be:a3:c9:38:90:e5:42:66:a6:8c:c1: 81:b9:f7:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULjiMDIL60H87eygvcHKAArUUwNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTkyMzMyWhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDU5ZDY0YTRhOGZiNDU0MjI5YTA1YmQxMzQ2NDQxMWI0 YjY5YWVmODU1ZTcwMjhhMDQ3ZDQ2NzA0YzBmZDkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhnfEKjUAADJiQmInLkQLy3WOiTskBDSKwuVcyCOqQsoPT kgFKRwr2De73P3b+wR/7CTcyTWgIuC1PLnDUFQJiTUct7lrDXn5NWtyrQbI7oUKQ 6tGlZOvKFTOHkwiWpAQhh0ckF38ZhvEbCztIhvE9Y9CT8Rlxf5ppBf4bYYebv+Kl 1FX2tVRLWFDaZpCOfAV01IoAL2EHh1unOaJZ9pXIxlIjebEMl1mlLy9D/75agPOu Q1UvDztDDhYAdJyhDxHWUgdGyuWRBZmDavP92aall+RviCVVAygjsdud4PonVofq DTNHlnAhzpshiEDd0ktKp9qnKuYo55ivD8vRm6yLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHxpZ9ROpi0rLM8yitH4xNh7nN2owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiN2YxMTg3LTM2YTQtNDljOC1hOTQwLWI4YTU4NDkwODMwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNogAwDQYJKoZIhvcNAQELBQADggEBAFFqjtUbZrU/G7mt0p7JPW+m4J74 Oa/uirW5YRwjTkPOTsB9eHqf+GuDT5aEL+7SgyuuSmg+csKdA4q8ztInQLk1KVZI gzRZMeGntush8wo9jqggrYaU/w3JP4OeceqpJVPBwndl1NEGfclWUyBqEmEYw79x Fo2w+QN+cJDA0Z3C9Ia5nzC6b9dMsdLxpQdnDWryNGLXvu89UlMivkJQGDTSyC7s Rfngu3nhBmj0QhVDrgm1MZ1R9jozfV5K6SmIiyRMa9zDSKRxAGOvqJjwELQCPdxH biNaw4/PqTYKFRPCwl0tcVXy2EIS/QHpMc+25Iu+o8k4kOVCZqaMwYG591g= -----END CERTIFICATE-----Generated at Sun May 11 18:00:29 2025 by rpki-client