$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa File: e85f7629-042d-460b-8057-96331b4ff972.roa (raw, json) Hash identifier: 8rlE+INrO6jXpjmZrJd6T0NNsd6+ryClTaiPI+cxKxY= Subject key identifier: 0F:B0:9C:6D:49:BC:B7:50:42:23:EC:01:0E:46:B1:7F:AE:7D:A8:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EE4C7E99A07CEA4A056D510CE78FDCEF041C625 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa Signing time: Fri 09 May 2025 00:20:16 +0000 ROA not before: Fri 09 May 2025 00:20:16 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.19.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e4:c7:e9:9a:07:ce:a4:a0:56:d5:10:ce:78:fd:ce:f0:41:c6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:20:16 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=745d84bf1d73b6ff06b69124382fbd793de4444465a4123cdfb87e253b383d86, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f3:84:9e:75:62:b3:1d:06:fb:84:e5:ca:62: 87:d4:59:34:91:41:a3:90:e7:68:c9:c2:18:a3:69: 50:86:d3:7e:0e:08:16:58:99:c9:ae:e7:99:1d:65: c5:37:25:9b:77:7b:e1:83:5a:18:7a:f8:e9:af:6b: b5:8b:7e:cd:80:9f:6c:3c:d5:93:dd:52:e0:ee:c9: fb:4f:e6:dc:bc:c3:e5:33:7f:ee:e3:17:7d:ba:d6: 8e:f8:46:40:93:2e:0f:f5:85:53:ab:a7:68:d4:b2: 37:17:92:e8:97:ab:f0:ed:d5:65:2a:81:2f:c5:b8: 92:e2:14:7e:a2:37:d3:12:cc:31:d2:db:bd:0f:9c: 87:d2:7a:4d:fb:7e:8b:fe:86:41:58:6f:69:71:23: ff:de:76:91:cb:09:d6:5d:6d:5a:eb:5a:10:86:55: 41:cc:57:3e:70:80:44:0a:7b:9f:4d:50:f2:1d:41: d9:bd:d8:a6:bf:e3:10:a8:e3:04:fa:ce:a5:b3:34: cf:60:af:28:8d:37:bb:1f:d9:96:b4:d1:59:6f:1f: a8:5d:0e:9a:11:04:00:89:de:0a:ba:b1:fc:f5:af: 32:10:14:3a:22:55:c9:7c:c4:93:2c:73:2f:51:69: ec:c8:fb:6a:7d:bc:31:76:93:bc:ad:d1:a8:74:77: 75:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B0:9C:6D:49:BC:B7:50:42:23:EC:01:0E:46:B1:7F:AE:7D:A8:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.19.0.0/17 Signature Algorithm: sha256WithRSAEncryption a2:57:b7:45:a5:57:22:08:ad:cf:b0:9b:75:12:7c:52:4a:89: 77:8d:2b:6f:6b:7d:7d:9f:88:d0:72:70:2e:58:cc:c2:6a:42: 11:0a:84:ad:33:81:30:99:f4:af:ab:c4:6c:8f:e2:4b:a4:92: c9:f9:01:94:d2:b7:a7:c5:7b:8a:67:91:e7:cd:f7:5e:69:c2: 8e:ab:a6:7b:cf:87:cd:91:4e:ba:13:3f:36:c4:ce:df:4a:9c: 35:79:f6:bc:f8:95:2d:91:f9:f6:7b:f1:3c:83:35:4b:a9:c3: 70:b3:41:52:e8:fd:49:ab:06:2b:b6:05:15:5b:23:95:28:c8: d0:db:52:6f:ef:cf:94:e4:e8:fa:d9:2f:7e:ad:5a:04:56:04: 25:18:64:d9:95:f6:60:2e:58:22:28:57:a5:2b:ee:68:42:6c: 99:5e:95:17:f8:d1:c9:1b:24:28:22:66:c3:bb:23:70:bb:25: 02:fb:f7:08:3f:7c:f5:bb:28:c5:2d:ec:60:6d:9c:87:47:64: 32:e2:a2:72:20:eb:4f:c7:fd:05:95:94:1a:8a:50:5e:80:6e: b0:9e:a4:09:fe:e3:64:62:aa:fb:59:7c:1d:ac:ee:70:bd:cf: 44:a4:5d:0f:c9:71:10:6f:e1:03:5f:59:9c:5d:da:45:1e:2f: e5:10:24:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPuTH6ZoHzqSgVtUQznj9zvBBxiUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMDE2WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDVkODRiZjFkNzNiNmZmMDZiNjkxMjQzODJmYmQ3OTNk ZTQ0NDQ0NjVhNDEyM2NkZmI4N2UyNTNiMzgzZDg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw84SedWKzHQb7hOXKYofUWTSRQaOQ52jJwhijaVCG034O CBZYmcmu55kdZcU3JZt3e+GDWhh6+Omva7WLfs2An2w81ZPdUuDuyftP5ty8w+Uz f+7jF3261o74RkCTLg/1hVOrp2jUsjcXkuiXq/Dt1WUqgS/FuJLiFH6iN9MSzDHS 270PnIfSek37fov+hkFYb2lxI//edpHLCdZdbVrrWhCGVUHMVz5wgEQKe59NUPId Qdm92Ka/4xCo4wT6zqWzNM9gryiNN7sf2Za00VlvH6hdDpoRBACJ3gq6sfz1rzIQ FDoiVcl8xJMscy9RaezI+2p9vDF2k7yt0ah0d3WFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD7CcbUm8t1BCI+wBDkaxf659qLEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWY3NjI5LTA0MmQtNDYwYi04MDU3LTk2MzMxYjRmZjk3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfREwAwDQYJKoZIhvcNAQELBQADggEBAKJXt0WlVyIIrc+wm3USfFJKiXeN K29rfX2fiNBycC5YzMJqQhEKhK0zgTCZ9K+rxGyP4kukksn5AZTSt6fFe4pnkefN 915pwo6rpnvPh82RTroTPzbEzt9KnDV59rz4lS2R+fZ78TyDNUupw3CzQVLo/Umr Biu2BRVbI5UoyNDbUm/vz5Tk6PrZL36tWgRWBCUYZNmV9mAuWCIoV6Ur7mhCbJle lRf40ckbJCgiZsO7I3C7JQL79wg/fPW7KMUt7GBtnIdHZDLionIg60/H/QWVlBqK UF6AbrCepAn+42RiqvtZfB2s7nC9z0SkXQ/JcRBv4QNfWZxd2kUeL+UQJI0= -----END CERTIFICATE-----Generated at Sun May 11 11:08:19 2025 by rpki-client