$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa File: fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa (raw, json) Hash identifier: ztgN9HgFQDVDbgH844VeGDdOPD5E0dIY783qCxBmb50= Subject key identifier: 58:FF:B5:F9:2F:75:DE:B8:1F:D4:65:6F:98:AB:2D:84:70:E8:C2:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38762EEE413C314FD191FE458179B34AA99CF97B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa Signing time: Wed 30 Apr 2025 00:02:03 +0000 ROA not before: Wed 30 Apr 2025 00:02:03 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:76:2e:ee:41:3c:31:4f:d1:91:fe:45:81:79:b3:4a:a9:9c:f9:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:02:03 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=b2fa76d05a1e8d89d85b70862e9f8e1d67ee2c67c424d8799d4f31ea2a5f312a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:73:98:2a:cd:51:a3:95:e1:58:ef:55:ce:6f: 7f:fd:01:39:7f:6d:69:14:0a:1c:62:1c:1d:16:96: 48:12:48:1d:06:b3:d5:82:22:e4:6d:b0:10:bf:2d: 09:41:f4:8c:03:50:35:51:a1:00:c9:e0:72:4b:b9: 14:3d:58:89:84:cc:7e:69:c6:e3:2b:dd:76:12:9e: 40:ca:1f:ac:be:30:55:3d:29:ac:06:61:86:56:2e: e0:f1:54:c1:b5:6f:f0:da:8f:70:12:fd:1a:b7:52: d6:9b:9f:41:39:0b:c2:3b:3e:d0:0b:55:a9:58:a6: 4d:75:b3:58:71:ca:26:48:ce:82:a4:d9:f9:32:6b: 85:f4:1a:54:3a:8c:e4:eb:89:19:3e:d7:76:ed:51: b5:d3:dc:92:d8:67:7d:10:96:4c:81:0d:a5:21:d1: 92:ce:bc:55:bc:28:5a:14:9d:fe:d4:d4:e5:32:6f: 35:53:cb:a9:9a:36:52:b3:76:32:f7:47:54:0a:1a: 00:91:01:04:9b:77:0a:14:2b:a1:03:59:53:11:f5: 37:48:2d:4e:72:a2:63:05:2e:5b:ff:e3:5b:b9:00: 25:97:32:11:1f:4f:44:b0:cd:80:6e:36:f2:b3:a7: 58:a8:8d:58:5b:b4:d3:30:b9:d8:02:1d:9f:6c:4e: e0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FF:B5:F9:2F:75:DE:B8:1F:D4:65:6F:98:AB:2D:84:70:E8:C2:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:1c:16:db:d5:c2:45:bf:9b:fe:a7:8b:b0:b4:b9:ac:20:4c: c2:47:99:e9:ed:d8:37:65:e5:13:97:92:30:48:ef:f9:8e:af: 77:73:75:b0:b0:8d:64:a1:3d:a8:f6:df:a1:86:0f:34:82:cd: ad:79:6b:28:e2:08:04:b3:d0:c7:32:8c:69:46:27:c9:be:b5: 80:df:88:f0:66:fd:3b:65:65:42:06:00:60:56:01:a9:ba:9e: df:a4:02:3e:c4:a9:de:e6:90:9e:4e:d4:cd:62:50:51:1b:f2: 18:5c:63:06:b4:bf:73:ca:83:c6:78:68:38:2d:4f:45:da:8b: 0d:8d:04:ce:bf:1e:a7:22:8f:cd:a3:9e:bb:ed:ff:b6:e1:ea: 6d:ae:73:58:a5:2f:fc:58:fc:a4:70:0e:b5:63:fd:4d:f9:07: b4:d5:9d:44:6f:a9:21:17:93:84:7d:f1:e1:f8:fe:1e:57:eb: c3:a6:b2:48:bf:fa:13:62:70:ad:73:a8:f5:0d:6c:40:d0:1d: 87:ea:56:d4:29:d3:2d:f6:3f:61:85:e6:0b:a8:ea:d9:ab:e0: e4:ca:11:5b:77:d2:78:da:77:55:8e:e6:bc:a5:b9:ed:cf:06: b4:b6:aa:a8:00:53:d0:82:95:dc:09:a2:a9:ea:53:a9:99:23: ec:1e:30:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOHYu7kE8MU/Rkf5FgXmzSqmc+XswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDMwMDAwMjAzWhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmZhNzZkMDVhMWU4ZDg5ZDg1YjcwODYyZTlmOGUxZDY3 ZWUyYzY3YzQyNGQ4Nzk5ZDRmMzFlYTJhNWYzMTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNc5gqzVGjleFY71XOb3/9ATl/bWkUChxiHB0WlkgSSB0G s9WCIuRtsBC/LQlB9IwDUDVRoQDJ4HJLuRQ9WImEzH5pxuMr3XYSnkDKH6y+MFU9 KawGYYZWLuDxVMG1b/Daj3AS/Rq3Utabn0E5C8I7PtALValYpk11s1hxyiZIzoKk 2fkya4X0GlQ6jOTriRk+13btUbXT3JLYZ30QlkyBDaUh0ZLOvFW8KFoUnf7U1OUy bzVTy6maNlKzdjL3R1QKGgCRAQSbdwoUK6EDWVMR9TdILU5yomMFLlv/41u5ACWX MhEfT0SwzYBuNvKzp1iojVhbtNMwudgCHZ9sTuC9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWP+1+S913rgf1GVvmKsthHDowlAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiYzUyYTAzLWU0ZTYtNDhhMC04Zjg1LTlkOWYxZjlkMDFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBBUDANBgkqhkiG9w0BAQsFAAOCAQEA2BwW29XCRb+b/qeLsLS5rCBMwkeZ 6e3YN2XlE5eSMEjv+Y6vd3N1sLCNZKE9qPbfoYYPNILNrXlrKOIIBLPQxzKMaUYn yb61gN+I8Gb9O2VlQgYAYFYBqbqe36QCPsSp3uaQnk7UzWJQURvyGFxjBrS/c8qD xnhoOC1PRdqLDY0Ezr8epyKPzaOeu+3/tuHqba5zWKUv/Fj8pHAOtWP9TfkHtNWd RG+pIReThH3x4fj+Hlfrw6aySL/6E2JwrXOo9Q1sQNAdh+pW1CnTLfY/YYXmC6jq 2avg5MoRW3fSeNp3VY7mvKW57c8GtLaqqABT0IKV3AmiqepTqZkj7B4wng== -----END CERTIFICATE-----Generated at Mon May 5 05:03:38 2025 by rpki-client