$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa File: d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa (raw, json) Hash identifier: XqJSw4t9zDK5uS3dgFzxwVdGRrr/hRJNaxSKabFC1uI= Subject key identifier: A4:BD:54:36:40:F0:FF:0F:63:CB:C5:65:D7:F3:78:91:2D:45:D9:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70E86E9BC2FD80BB74FBDFA629A08A883905ED71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa Signing time: Tue 29 Apr 2025 00:20:52 +0000 ROA not before: Tue 29 Apr 2025 00:20:52 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e8:6e:9b:c2:fd:80:bb:74:fb:df:a6:29:a0:8a:88:39:05:ed:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:52 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=95ae3e58e22306149d4fea867bd6dab2d0e5091c1abcfdd589fcc4bf5b8991e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c8:be:7a:4a:03:8d:e9:f0:f0:f3:4e:66:a2: 49:75:9c:18:d0:88:bb:dc:95:a8:36:2c:53:27:5e: c8:36:2f:c6:ce:f5:26:6f:7d:71:fc:39:3b:e3:43: e5:e1:c1:8c:aa:f7:c4:5f:d0:2e:2a:55:a5:06:38: bd:da:66:6e:d8:53:4d:d3:b8:b4:00:70:08:28:7a: 3b:9c:c3:73:90:ac:26:59:02:1a:b0:25:cf:1c:24: cf:29:25:5e:63:0b:5a:d5:b3:7b:3e:53:8e:e2:d4: 32:cb:1b:d3:c1:91:77:59:db:d6:93:9f:6e:96:0d: 7e:6f:4c:e9:36:b6:43:41:54:ca:b6:06:7f:25:65: 1e:19:91:e5:95:8d:83:ee:0b:e8:5f:c0:fe:08:96: 8c:01:cc:3a:cc:f9:ba:3b:3b:0b:8b:6b:a8:4d:20: 89:b4:0e:5d:95:41:be:55:ca:21:c3:95:9d:24:1b: e3:9c:37:02:45:4b:c0:2f:14:7a:4e:64:97:ec:55: f4:83:f5:0c:82:76:8a:56:36:ca:63:60:28:15:59: 56:60:ba:6d:52:22:fe:16:0b:6c:53:ae:5c:a3:08: 35:ea:47:59:ea:51:2c:db:1c:01:cc:b8:9a:96:a9: 69:d5:76:94:1f:41:38:cc:56:d9:f2:c7:ee:b8:bc: 6e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BD:54:36:40:F0:FF:0F:63:CB:C5:65:D7:F3:78:91:2D:45:D9:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.163.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:b3:c6:df:b0:97:e4:f1:47:5f:49:53:aa:c0:ed:d8:cd:14: 5d:d1:79:61:ee:93:12:5f:24:41:13:2c:69:29:5b:01:cf:b7: 24:20:95:d9:11:52:7b:a1:ea:f5:df:b0:22:c0:08:ba:5d:83: 2d:d3:b4:dd:aa:21:87:ca:2d:45:79:34:15:21:87:8e:4d:8e: e7:f0:b1:cd:58:ed:e0:40:36:78:71:7e:26:0c:ca:45:cd:53: c5:89:cc:64:40:15:3b:1c:7e:ad:80:7e:99:df:b5:69:61:51: 63:85:9d:dd:ec:3d:1f:17:65:11:7b:dc:ff:83:49:58:e9:ed: d9:9e:1d:af:89:14:01:f3:bd:28:cc:9e:71:c2:18:c2:ac:d0: 77:cc:d7:6e:61:9f:03:47:51:f7:e0:5c:70:56:f9:f8:2d:25: b3:1e:4e:d3:9b:fa:bc:66:6c:fc:c6:a9:05:8a:0a:22:27:8f: 69:cd:65:c3:64:49:2e:37:8b:be:76:8a:4a:19:35:70:86:de: cd:0c:6d:10:de:6a:fd:a9:1d:18:b7:b6:f3:9d:37:17:5d:ba: cb:da:b2:77:6a:2c:4c:a0:eb:ea:89:c5:b6:63:c6:d4:4b:f3: e5:61:9a:7e:e6:ba:0f:87:1b:8d:8a:41:28:53:e8:2b:b0:87: db:7d:1b:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcOhum8L9gLt0+9+mKaCKiDkF7XEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMDUyWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWFlM2U1OGUyMjMwNjE0OWQ0ZmVhODY3YmQ2ZGFiMmQw ZTUwOTFjMWFiY2ZkZDU4OWZjYzRiZjViODk5MWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUyL56SgON6fDw805mokl1nBjQiLvclag2LFMnXsg2L8bO 9SZvfXH8OTvjQ+XhwYyq98Rf0C4qVaUGOL3aZm7YU03TuLQAcAgoejucw3OQrCZZ AhqwJc8cJM8pJV5jC1rVs3s+U47i1DLLG9PBkXdZ29aTn26WDX5vTOk2tkNBVMq2 Bn8lZR4ZkeWVjYPuC+hfwP4IlowBzDrM+bo7OwuLa6hNIIm0Dl2VQb5VyiHDlZ0k G+OcNwJFS8AvFHpOZJfsVfSD9QyCdopWNspjYCgVWVZgum1SIv4WC2xTrlyjCDXq R1nqUSzbHAHMuJqWqWnVdpQfQTjMVtnyx+64vG5rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpL1UNkDw/w9jy8Vl1/N4kS1F2VYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZGNhMmVjLTg3ZTItNDAxNC1hNWFkLTBhZmZjMDZjMmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36MwDQYJKoZIhvcNAQELBQADggEBAG+zxt+wl+TxR19JU6rA7djNFF3R eWHukxJfJEETLGkpWwHPtyQgldkRUnuh6vXfsCLACLpdgy3TtN2qIYfKLUV5NBUh h45Njufwsc1Y7eBANnhxfiYMykXNU8WJzGRAFTscfq2AfpnftWlhUWOFnd3sPR8X ZRF73P+DSVjp7dmeHa+JFAHzvSjMnnHCGMKs0HfM125hnwNHUffgXHBW+fgtJbMe TtOb+rxmbPzGqQWKCiInj2nNZcNkSS43i752ikoZNXCG3s0MbRDeav2pHRi3tvOd NxddusvasndqLEyg6+qJxbZjxtRL8+Vhmn7mug+HG42KQShT6Cuwh9t9G00= -----END CERTIFICATE-----Generated at Thu May 8 12:41:22 2025 by rpki-client