$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa File: 2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa (raw, json) Hash identifier: MXeydqJ3saa+lW5A6CtNfnUTe8aCGSRDPhrlq5yJLmw= Subject key identifier: 6B:6A:27:C2:7F:46:FD:6C:AD:DD:F3:8B:53:9D:5E:17:C4:CA:D7:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79993B02EF8CFA217A2A211734C720A083A4C7B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa Signing time: Tue 08 Apr 2025 00:01:43 +0000 ROA not before: Tue 08 Apr 2025 00:01:43 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 10 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:99:3b:02:ef:8c:fa:21:7a:2a:21:17:34:c7:20:a0:83:a4:c7:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:01:43 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:9f:6a:25:41:8e:cf:97:3e:3f:13:c6:18:67: 73:b2:e3:77:11:7e:06:ce:c5:4c:7f:65:0f:67:58: d6:54:30:bb:d3:b2:a2:a3:35:c8:5e:08:ab:6f:32: 1c:7b:0d:1a:37:a5:70:e7:7d:22:38:cf:2b:05:31: 7c:02:d2:ef:0d:72:35:f4:d6:17:9e:3d:98:28:a3: 40:ee:d9:46:5b:f7:62:93:de:ee:51:02:bb:45:b8: 66:2f:c1:43:74:ff:aa:73:af:39:7d:0e:83:d3:b8: 68:8c:70:50:00:35:0d:87:67:56:32:77:94:23:05: 3c:93:5d:ef:70:19:83:28:c9:28:c8:d6:f8:5c:c9: 47:3e:8e:37:3c:59:fd:1c:9c:c2:d5:8b:3e:cb:f8: cd:5f:71:ea:16:9a:dc:41:e4:81:12:b6:3c:b3:8b: 6c:0c:04:de:33:8f:fb:ba:85:71:84:a0:99:db:58: 26:8a:dd:2b:a6:1c:58:7b:2f:ce:59:d4:4e:b6:05: 93:aa:41:55:e6:ec:3c:c9:07:33:1d:d5:29:e0:07: ca:14:1e:ff:ec:9c:ad:ec:35:17:97:5e:9f:67:ee: 24:6a:71:bc:cb:07:b6:df:82:79:34:0e:ad:48:02: eb:ac:9b:8c:30:a7:2f:59:8c:09:3a:89:7f:c5:14: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6A:27:C2:7F:46:FD:6C:AD:DD:F3:8B:53:9D:5E:17:C4:CA:D7:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption 95:3e:cc:8f:84:73:c0:97:e9:44:4c:50:db:cb:98:b2:7b:45: 35:68:cf:4a:80:d7:63:1b:b8:2d:a3:28:6f:5b:69:7e:5d:0a: 14:9b:18:da:c9:20:1b:e5:19:85:b4:e2:74:32:42:18:b5:b3: 46:26:f2:fe:52:d7:18:01:b3:e6:60:e7:de:42:52:3b:b8:ea: 64:89:6b:91:0e:6a:eb:23:56:d6:1f:6d:66:f6:a1:fc:8a:c3: 00:73:0c:98:62:e0:77:15:31:c0:ed:0c:3e:35:ad:67:be:95: 8a:d6:ec:9c:de:2d:50:36:92:c4:98:c9:be:4f:dc:bd:ca:7f: f8:f7:41:aa:ad:d3:4d:d1:2a:7b:68:43:85:7b:7e:28:5d:04: b8:6d:b2:89:e8:86:c3:4a:0e:f4:49:41:d9:fa:3c:6a:c8:e4: 70:1d:1b:da:bf:b1:92:95:4d:8b:1c:0f:95:d2:99:37:c0:27: ac:9d:b2:c8:9e:ac:2b:28:11:24:f9:a3:2c:17:d5:32:15:48: f1:4b:14:04:8b:7f:15:24:29:f6:01:e5:12:7d:29:74:2d:3d: 32:30:c0:13:5e:cd:ca:d6:f8:5f:e5:41:f6:96:7d:ab:db:16: bc:d9:5a:91:b1:f2:49:db:2b:2f:38:e7:82:ab:c8:3a:19:e5: 00:40:9c:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeZk7Au+M+iF6KiEXNMcgoIOkx7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAwMTQzWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDhhMTU4OTg1N2MxYWVjOTA1ZjQ2ZmJmNWU3YjUzMTY3 ZGE3NzAyODRjNTgxMGM4NDRjMzYzYzkwODlmMzUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGn2olQY7Plz4/E8YYZ3Oy43cRfgbOxUx/ZQ9nWNZUMLvT sqKjNcheCKtvMhx7DRo3pXDnfSI4zysFMXwC0u8NcjX01heePZgoo0Du2UZb92KT 3u5RArtFuGYvwUN0/6pzrzl9DoPTuGiMcFAANQ2HZ1Yyd5QjBTyTXe9wGYMoySjI 1vhcyUc+jjc8Wf0cnMLViz7L+M1fceoWmtxB5IEStjyzi2wMBN4zj/u6hXGEoJnb WCaK3SumHFh7L85Z1E62BZOqQVXm7DzJBzMd1SngB8oUHv/snK3sNReXXp9n7iRq cbzLB7bfgnk0Dq1IAuusm4wwpy9ZjAk6iX/FFBGnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUa2onwn9G/Wyt3fOLU51eF8TK19IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGQwZjU1LTNiYjYtNDMwYS04Y2NjLTJjMGNiZjUwZDc0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSzjANBgkqhkiG9w0BAQsFAAOCAQEAlT7Mj4RzwJfpRExQ28uYsntFNWjP SoDXYxu4LaMob1tpfl0KFJsY2skgG+UZhbTidDJCGLWzRiby/lLXGAGz5mDn3kJS O7jqZIlrkQ5q6yNW1h9tZvah/IrDAHMMmGLgdxUxwO0MPjWtZ76VitbsnN4tUDaS xJjJvk/cvcp/+PdBqq3TTdEqe2hDhXt+KF0EuG2yieiGw0oO9ElB2fo8asjkcB0b 2r+xkpVNixwPldKZN8AnrJ2yyJ6sKygRJPmjLBfVMhVI8UsUBIt/FSQp9gHlEn0p dC09MjDAE17Nytb4X+VB9pZ9q9sWvNlakbHySdsrLzjngqvIOhnlAECcYQ== -----END CERTIFICATE-----Generated at Wed Apr 9 01:48:54 2025 by rpki-client