$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa File: ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json) Hash identifier: MhDywoZamYSYo+oM8lLZ1JmGdqtaZdcB0CXfDuQC2FM= Subject key identifier: 3C:15:78:97:1A:CA:9B:B5:0C:DB:32:F0:33:8B:2A:52:1D:E6:04:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72EAB8D1BBD3C48366BE9EBA9DA83E41BBFE3C9D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa Signing time: Tue 29 Apr 2025 00:11:20 +0000 ROA not before: Tue 29 Apr 2025 00:11:20 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ea:b8:d1:bb:d3:c4:83:66:be:9e:ba:9d:a8:3e:41:bb:fe:3c:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:20 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=b14a3853c57473081297b2e1cfe8e93a4ca214df36c4007947d6bd2ccd2869dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:12:bf:1c:c3:3b:bb:e2:d6:64:40:36:b8:92: ad:eb:11:13:7e:11:a4:11:9d:a0:16:62:22:94:a0: 8e:07:a7:ec:1e:6d:04:6a:8c:00:0e:0e:96:58:8f: e7:5e:43:4e:15:1c:09:91:e7:9b:fd:f1:ba:a7:f7: 3f:30:f3:36:39:22:7b:e1:a4:9f:3e:14:0d:0d:23: 91:c1:56:28:5c:22:89:33:1b:ca:27:64:86:b2:07: 4b:48:fa:d7:34:1d:24:05:d8:f0:39:aa:d5:25:2a: 5f:c4:f1:3c:ed:44:f6:88:2b:51:9e:22:89:fe:d3: 1d:18:e2:f7:d3:32:85:a2:42:b7:91:c5:a2:46:73: ea:e6:d0:bc:74:10:bd:ba:09:90:f4:4d:17:e1:7a: 62:91:c5:78:2a:08:8e:d6:cb:47:11:7f:00:f1:52: f6:4f:72:2a:0a:48:4c:2d:0b:4a:4e:f8:fd:9e:0c: 2f:12:39:c1:5c:70:63:fd:ab:f4:c5:78:ae:38:cd: 66:bd:e5:53:f6:6f:e5:d7:27:9a:82:db:ba:a6:3d: aa:17:8b:20:06:31:cb:e1:3b:48:3c:98:2e:2d:99: a9:63:e1:7f:89:35:83:c5:ae:d3:6b:f9:c1:6a:0f: 13:a0:fe:03:eb:2b:52:6c:66:56:1b:bb:da:6c:be: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:15:78:97:1A:CA:9B:B5:0C:DB:32:F0:33:8B:2A:52:1D:E6:04:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 82:05:dd:26:6a:87:b4:be:d6:de:00:b1:2b:f6:02:3d:02:51: 74:a7:6d:74:f2:c5:54:d3:a8:01:76:af:50:59:e1:c5:8e:b0: 0b:72:0a:14:3a:88:03:71:77:40:ef:e2:39:ad:df:a3:e5:56: d3:ca:27:73:f6:91:8d:15:08:1e:03:40:c6:bd:bf:a4:b2:48: 4a:5e:bd:ba:4c:29:85:06:b4:10:15:5f:e3:81:cc:5b:66:5a: af:ae:de:51:8b:31:33:9d:cd:9c:0a:6a:97:bf:86:76:cd:45: 7d:b6:dd:ca:9d:18:dc:7c:cc:00:e7:47:2e:4d:9a:6a:ca:c0: 4f:92:b8:02:5f:a6:45:b9:5c:8f:7b:7e:96:a0:5f:2f:65:2d: da:f1:91:a8:41:29:cf:51:19:d1:7c:2a:b6:1d:e8:ca:05:55: bd:2d:07:6c:99:a8:78:ec:2f:ba:a2:28:d5:6d:83:2b:d5:19: 08:11:16:ab:5a:a6:e3:8c:01:bc:39:09:00:42:43:33:bd:69: 55:80:91:b5:14:78:34:b9:42:dd:8e:58:f1:dc:db:c5:23:3e: cc:a1:e1:45:9a:f8:f5:7b:28:dc:a7:f3:7a:ce:2e:60:d4:3b: 2e:a2:3e:1e:84:8d:77:41:b1:9e:50:cf:9e:90:eb:79:42:00: d7:6e:ba:7d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcuq40bvTxINmvp66nag+Qbv+PJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMTIwWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTRhMzg1M2M1NzQ3MzA4MTI5N2IyZTFjZmU4ZTkzYTRj YTIxNGRmMzZjNDAwNzk0N2Q2YmQyY2NkMjg2OWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8Er8cwzu74tZkQDa4kq3rERN+EaQRnaAWYiKUoI4Hp+we bQRqjAAODpZYj+deQ04VHAmR55v98bqn9z8w8zY5InvhpJ8+FA0NI5HBVihcIokz G8onZIayB0tI+tc0HSQF2PA5qtUlKl/E8TztRPaIK1GeIon+0x0Y4vfTMoWiQreR xaJGc+rm0Lx0EL26CZD0TRfhemKRxXgqCI7Wy0cRfwDxUvZPcioKSEwtC0pO+P2e DC8SOcFccGP9q/TFeK44zWa95VP2b+XXJ5qC27qmPaoXiyAGMcvhO0g8mC4tmalj 4X+JNYPFrtNr+cFqDxOg/gPrK1JsZlYbu9psvh5lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPBV4lxrKm7UM2zLwM4sqUh3mBEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmODdlNTMwLTRjZTEtNGY2ZC1hM2JkLTE2MjgyY2ViMzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgrDANBgkqhkiG9w0BAQsFAAOCAQEAggXdJmqHtL7W3gCxK/YCPQJRdKdt dPLFVNOoAXavUFnhxY6wC3IKFDqIA3F3QO/iOa3fo+VW08onc/aRjRUIHgNAxr2/ pLJISl69ukwphQa0EBVf44HMW2Zar67eUYsxM53NnApql7+Gds1Ffbbdyp0Y3HzM AOdHLk2aasrAT5K4Al+mRblcj3t+lqBfL2Ut2vGRqEEpz1EZ0Xwqth3oygVVvS0H bJmoeOwvuqIo1W2DK9UZCBEWq1qm44wBvDkJAEJDM71pVYCRtRR4NLlC3Y5Y8dzb xSM+zKHhRZr49Xso3Kfzes4uYNQ7LqI+HoSNd0GxnlDPnpDreUIA1266fQ== -----END CERTIFICATE-----Generated at Sun May 11 14:57:42 2025 by rpki-client