$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa File: f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa (raw, json) Hash identifier: ZGrY8TLd5y5yjHs/OSzB4M5ZDEIx45Xfixh2O0dw7Ts= Subject key identifier: E9:CC:03:F9:F1:4A:A4:DB:16:CF:6C:6B:BD:8F:02:B6:C9:C5:56:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F2480481D2DBBCC07A563EAE882297A33756113 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa Signing time: Thu 08 May 2025 17:22:07 +0000 ROA not before: Thu 08 May 2025 17:22:07 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:24:80:48:1d:2d:bb:cc:07:a5:63:ea:e8:82:29:7a:33:75:61:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 17:22:07 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=cba7994e53cd1648773e10e8d811406bdb1a0e9bc3bbe5740724c1662ce87356, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:8d:44:66:02:45:2e:02:c5:d4:b6:d8:9a: 87:d3:9b:1e:4d:ba:58:bc:ac:33:78:30:c7:48:f0: 7f:c2:8a:23:ad:2f:6f:86:99:cc:31:56:88:12:a2: 8c:80:a4:d3:4b:6b:49:25:fe:0e:fc:29:11:e4:c8: b5:4c:ff:dd:08:de:f8:a7:0f:68:1e:ac:fa:33:05: 54:3d:46:6f:46:d9:07:8f:c6:7e:63:dd:b3:c3:86: 43:72:e4:9e:3c:67:4d:fc:5d:20:4e:20:d3:20:92: b9:4f:ee:0e:55:a8:ed:cb:7d:e2:5f:6d:51:c0:f5: bb:75:f9:79:a6:66:bd:7f:8f:e2:d6:2e:74:db:17: 61:ad:1c:c0:da:f6:cf:0d:92:c9:40:33:65:01:ab: 85:62:f9:3a:4d:e4:60:f7:cb:bd:09:15:52:a7:28: d9:6d:36:a8:ac:7f:f7:4c:d6:37:40:fd:6e:17:84: 1e:35:c0:ec:ce:0f:60:c3:94:90:18:ed:9b:e8:d5: 1b:5e:10:53:bf:a2:b1:fa:97:fe:ea:ee:92:92:76: e9:79:f9:fa:45:fa:8d:f5:19:be:3e:81:9d:00:b7: cf:40:95:da:ad:56:9c:63:ae:72:19:fc:be:f5:ee: f5:b9:80:0f:55:c8:01:17:f4:f7:f2:50:2f:d6:83: ad:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CC:03:F9:F1:4A:A4:DB:16:CF:6C:6B:BD:8F:02:B6:C9:C5:56:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.64.0/20 Signature Algorithm: sha256WithRSAEncryption b7:d7:ac:62:21:d3:0c:1c:0c:b4:bb:65:2f:1c:64:9d:6b:46: d6:47:09:e9:87:d1:95:01:a9:31:0b:4c:50:5a:f3:97:2c:5f: ba:88:4e:e0:a9:20:0a:e1:c3:ad:71:27:3c:ea:3c:da:b9:63: ef:1a:e2:42:0b:cf:35:3a:6e:f1:ec:cd:8c:08:fa:30:46:f6: 03:f6:93:05:50:4d:74:fb:b6:6e:33:16:ed:e7:f6:d7:6a:57: 34:d6:1b:8f:40:2b:a7:25:73:82:ff:83:23:c3:74:ff:20:51: 4d:fe:0d:ea:9f:33:b0:76:c3:67:6e:21:de:6b:d0:b4:b7:4e: 35:21:75:b9:c9:15:f4:84:c9:dd:c0:25:cf:b8:16:ca:cc:5f: 41:12:50:39:76:d5:34:0f:ab:78:e7:f9:8d:3e:30:e3:9a:ad: 28:0f:a9:d1:a9:7d:90:f0:14:0e:9b:62:eb:62:07:a0:7b:5c: 9a:1b:cb:9e:54:56:a0:4b:c8:f5:36:5f:56:f8:61:ec:d8:6e: fb:d0:96:c3:66:7c:d4:23:b4:7a:f5:5c:f0:b3:1e:a2:63:b1: 16:57:2f:d2:4a:4e:57:41:a6:c9:18:9b:11:e9:0e:40:ee:bd: ed:4c:1c:06:ae:25:ad:c5:7c:d4:e8:4e:d1:08:13:42:ab:b8: 0e:5a:fa:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfySASB0tu8wHpWPq6IIpejN1YRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTcyMjA3WhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmE3OTk0ZTUzY2QxNjQ4NzczZTEwZThkODExNDA2YmRi MWEwZTliYzNiYmU1NzQwNzI0YzE2NjJjZTg3MzU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTDY1EZgJFLgLF1LbYmofTmx5Nuli8rDN4MMdI8H/CiiOt L2+GmcwxVogSooyApNNLa0kl/g78KRHkyLVM/90I3vinD2gerPozBVQ9Rm9G2QeP xn5j3bPDhkNy5J48Z038XSBOINMgkrlP7g5VqO3LfeJfbVHA9bt1+XmmZr1/j+LW LnTbF2GtHMDa9s8NkslAM2UBq4Vi+TpN5GD3y70JFVKnKNltNqisf/dM1jdA/W4X hB41wOzOD2DDlJAY7Zvo1RteEFO/orH6l/7q7pKSdul5+fpF+o31Gb4+gZ0At89A ldqtVpxjrnIZ/L717vW5gA9VyAEX9PfyUC/Wg62RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6cwD+fFKpNsWz2xrvY8CtsnFVnEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOTFkNGE1LWQ1OWMtNDM4Ni1hNWM5LTVmZWU0ZTJhNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgEAwDQYJKoZIhvcNAQELBQADggEBALfXrGIh0wwcDLS7ZS8cZJ1rRtZH CemH0ZUBqTELTFBa85csX7qITuCpIArhw61xJzzqPNq5Y+8a4kILzzU6bvHszYwI +jBG9gP2kwVQTXT7tm4zFu3n9tdqVzTWG49AK6clc4L/gyPDdP8gUU3+DeqfM7B2 w2duId5r0LS3TjUhdbnJFfSEyd3AJc+4FsrMX0ESUDl21TQPq3jn+Y0+MOOarSgP qdGpfZDwFA6bYutiB6B7XJoby55UVqBLyPU2X1b4YezYbvvQlsNmfNQjtHr1XPCz HqJjsRZXL9JKTldBpskYmxHpDkDuve1MHAauJa3FfNToTtEIE0KruA5a+jM= -----END CERTIFICATE-----Generated at Sun May 11 18:06:26 2025 by rpki-client