$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa File: d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa (raw, json) Hash identifier: X848CjXqJ8NjYjVj4KLhjaAGohTdxdbeOH+yW4OwYKg= Subject key identifier: 04:84:44:43:AF:DA:9F:3D:EC:60:82:F8:94:12:7D:E7:BD:1B:C8:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16F74C17E6BE59F2539E224902C533F726FA0FE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa Signing time: Wed 30 Apr 2025 00:01:26 +0000 ROA not before: Wed 30 Apr 2025 00:01:26 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:f7:4c:17:e6:be:59:f2:53:9e:22:49:02:c5:33:f7:26:fa:0f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:01:26 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=ff2a8b1fea5809ff1d79ed3c5a87a2f23ce1b63d90a1ebb9f87f307d09b80bda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fd:3c:0b:e1:d0:49:39:52:29:2d:3d:fd:2d: 32:67:65:03:94:e5:2d:23:ac:86:11:08:65:4f:bf: 52:97:09:08:1a:a0:30:02:36:b8:0b:11:49:24:bc: 5c:ff:17:85:45:06:b2:65:bc:da:c9:08:ff:71:18: 45:3b:74:a1:2d:f3:e3:75:2f:1e:0c:29:3f:0b:66: e4:3a:f0:f4:58:3a:e0:b3:8c:93:4c:1b:2b:b6:24: 1e:9c:e4:ff:27:f4:30:99:5b:98:b1:fc:46:b1:53: 0a:7e:5e:a6:28:f4:2c:b7:4f:fa:ec:e8:c5:95:b4: c7:59:06:41:e3:72:54:29:c7:d3:50:8d:f8:a9:2a: 27:49:ff:75:5c:a6:50:9c:b9:4e:ad:14:4a:95:82: a0:9c:25:bd:04:c0:51:4f:be:b0:76:bc:5b:20:1a: 27:ee:69:1b:00:d4:25:ae:b1:81:a7:c8:81:09:e1: f9:32:c6:92:fb:37:e8:e2:01:d6:63:04:f1:90:2f: 05:3e:46:97:63:04:df:24:78:e7:e9:97:df:19:59: 73:69:ea:36:0c:1d:39:99:fa:79:6c:52:3a:4d:da: 99:cd:7c:d2:bc:39:9f:b9:55:05:cb:1c:1a:1a:0b: 92:94:ae:6c:ae:9b:50:8b:e9:cd:2b:91:6d:db:85: 54:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:84:44:43:AF:DA:9F:3D:EC:60:82:F8:94:12:7D:E7:BD:1B:C8:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 36:be:ba:51:6d:b7:26:ef:8d:67:43:ac:b1:13:04:71:13:c5: dc:f3:32:14:31:02:72:5c:bc:fb:f1:5c:34:b9:03:0b:db:2c: ae:68:7e:3a:8f:5d:10:bf:27:56:68:3b:bb:fe:0e:11:9f:f6: 76:6f:a3:2f:bc:9f:10:41:28:57:5b:60:38:a8:18:a7:f5:39: 9b:c4:39:2a:3a:1e:ee:46:4f:90:41:6b:8a:24:c2:5b:c5:4e: 7c:09:6b:91:b4:97:93:04:ce:bd:14:70:66:0f:19:c6:52:af: c3:b9:78:22:ee:63:9d:02:2a:f6:2f:ba:08:b1:ab:5f:6a:32: ea:41:f3:6e:e7:1f:45:1d:08:38:8f:50:82:4c:1e:95:50:37: 35:44:ae:86:19:d9:c9:15:13:30:32:7b:41:10:7a:aa:2d:01: b1:b8:1a:67:c2:e4:23:ac:78:34:6f:6d:f5:f0:f7:be:0a:41: 0b:1d:7e:c9:6a:a3:e2:b8:61:3f:f1:aa:84:f4:e6:63:2f:d1: 81:7e:e1:2b:cc:3f:e1:85:c1:3a:10:fa:ea:5d:81:36:c0:77: 86:60:39:de:c0:b5:2c:33:8a:9b:de:55:30:6e:ae:1b:70:f7: ae:2e:f1:fe:6b:1b:bb:dc:13:ce:d7:3d:d5:8e:a9:31:82:dc: f7:6b:57:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFvdMF+a+WfJTniJJAsUz9yb6D+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDMwMDAwMTI2WhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjJhOGIxZmVhNTgwOWZmMWQ3OWVkM2M1YTg3YTJmMjNj ZTFiNjNkOTBhMWViYjlmODdmMzA3ZDA5YjgwYmRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT/TwL4dBJOVIpLT39LTJnZQOU5S0jrIYRCGVPv1KXCQga oDACNrgLEUkkvFz/F4VFBrJlvNrJCP9xGEU7dKEt8+N1Lx4MKT8LZuQ68PRYOuCz jJNMGyu2JB6c5P8n9DCZW5ix/EaxUwp+XqYo9Cy3T/rs6MWVtMdZBkHjclQpx9NQ jfipKidJ/3VcplCcuU6tFEqVgqCcJb0EwFFPvrB2vFsgGifuaRsA1CWusYGnyIEJ 4fkyxpL7N+jiAdZjBPGQLwU+RpdjBN8keOfpl98ZWXNp6jYMHTmZ+nlsUjpN2pnN fNK8OZ+5VQXLHBoaC5KUrmyum1CL6c0rkW3bhVQZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBIREQ6/anz3sYIL4lBJ9570byIUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwYWVjY2E4LWI1YjItNDU5NS05ZjBhLTU4MDgwOGQwYTIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBADa+ulFttybvjWdDrLETBHETxdzz MhQxAnJcvPvxXDS5AwvbLK5ofjqPXRC/J1ZoO7v+DhGf9nZvoy+8nxBBKFdbYDio GKf1OZvEOSo6Hu5GT5BBa4okwlvFTnwJa5G0l5MEzr0UcGYPGcZSr8O5eCLuY50C KvYvugixq19qMupB827nH0UdCDiPUIJMHpVQNzVEroYZ2ckVEzAye0EQeqotAbG4 GmfC5COseDRvbfXw974KQQsdfslqo+K4YT/xqoT05mMv0YF+4SvMP+GFwToQ+upd gTbAd4ZgOd7AtSwzipveVTBurhtw964u8f5rG7vcE87XPdWOqTGC3PdrV0Q= -----END CERTIFICATE-----Generated at Sun May 11 09:33:25 2025 by rpki-client