$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa File: 30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa (raw, json) Hash identifier: /uyEEqgLcgIomN1m8w1IK439cWuzUIiCU9AEvvfYO9M= Subject key identifier: 50:5A:DA:3B:B1:3D:06:95:CF:7D:31:A9:35:CB:2B:F4:D8:EF:3C:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17A18CD56392AE8929A4CBA40C6AB2BAE2FB5D8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa Signing time: Fri 21 Mar 2025 00:21:29 +0000 ROA not before: Fri 21 Mar 2025 00:21:29 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.67.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a1:8c:d5:63:92:ae:89:29:a4:cb:a4:0c:6a:b2:ba:e2:fb:5d:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 21 00:21:29 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:07:0e:46:ff:ff:dd:92:d6:1e:c6:b0:5f:4d: 2c:f0:22:02:05:4a:6c:60:a3:0a:68:8a:a4:be:af: 40:94:26:3a:f8:f2:df:56:18:12:41:e3:c9:01:87: b2:e2:cd:3f:07:a4:7d:38:52:46:09:16:f4:4d:ec: fa:07:4e:07:6a:8e:77:10:f6:60:90:ee:f6:e8:15: 17:3d:fd:a8:9f:98:0b:1a:29:04:4f:2b:78:42:0e: ca:23:73:ed:44:f4:20:49:eb:ab:5e:33:31:ea:ce: 1d:39:1a:af:fc:bd:40:a5:58:e2:26:62:c3:e5:d3: 84:5b:eb:6f:a2:20:3a:b1:87:1a:62:ea:de:2f:96: d7:31:18:ab:95:f9:58:10:1a:3b:ac:73:38:92:20: 3f:4e:31:dd:d1:0b:d7:6e:e5:b2:67:7b:d0:b0:27: 6f:e7:ae:58:58:2b:89:7a:43:a3:6b:a6:1c:b8:84: 43:ed:86:50:a5:c5:23:9f:f1:02:9e:4a:53:27:69: b6:d7:ad:a4:9d:3e:82:70:98:0b:10:61:e2:0e:da: 3f:e8:b1:bc:b3:7c:1c:72:84:a8:ee:3e:fd:43:68: be:61:72:c9:f2:ed:43:ef:00:51:22:ac:5c:e2:b7: b9:ce:d8:55:55:8b:0a:59:dd:5e:f0:d0:d6:dd:e2: f7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5A:DA:3B:B1:3D:06:95:CF:7D:31:A9:35:CB:2B:F4:D8:EF:3C:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.67.224.0/20 Signature Algorithm: sha256WithRSAEncryption ae:fb:3d:a1:5c:36:c2:f5:04:8d:eb:48:b2:1e:54:44:cf:09: 27:1e:41:eb:c9:78:17:c5:d0:f2:a4:cb:1c:3e:2c:6a:2d:41: b2:86:17:6c:81:0e:a3:3c:d1:7e:43:e1:2a:8a:2d:b4:a6:a4: d8:49:30:31:23:fb:6b:bb:cd:03:a1:2c:3b:c3:21:29:b1:3a: a9:f2:c2:da:6b:5a:33:a6:35:e8:0f:6f:2d:09:83:80:4c:65: 99:98:b0:ea:be:22:59:88:5e:34:4c:db:f0:5c:2b:ff:a4:6b: e3:e3:7f:d6:5d:d3:55:22:1f:d4:79:9c:43:f0:bc:1b:3d:f3: 89:94:c4:b5:a7:e7:47:7c:ca:05:98:fe:68:99:82:4b:8a:ff: c6:92:45:72:bb:00:e3:c6:ba:ad:0e:10:1a:e1:1b:87:76:a5: ef:46:a3:0c:d2:41:64:29:d1:c4:69:1d:c4:26:ad:a4:75:5f: 51:1e:d9:14:73:6b:d1:1a:e6:e0:8f:4b:89:d0:05:de:00:45: e9:cf:6f:48:11:b1:bc:39:e7:e7:85:7c:f0:31:9d:a4:26:13: be:b7:ef:ca:0a:bb:20:9f:df:81:c5:c0:ad:d6:c7:e2:4d:3c: a2:4b:89:2d:50:27:a2:12:be:5b:ea:e3:9a:f8:8f:03:fe:9f: 18:18:e9:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF6GM1WOSrokppMukDGqyuuL7XY4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIxMDAyMTI5WhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWI2MTRhZDlkMjg1Y2UxOTYxMzg1ZTI3YWQ0MmZjNjFl MGQwN2ZmMTQ0ZmRmNzI5ODM4Y2MxZGI0YzNjNTE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfBw5G///dktYexrBfTSzwIgIFSmxgowpoiqS+r0CUJjr4 8t9WGBJB48kBh7LizT8HpH04UkYJFvRN7PoHTgdqjncQ9mCQ7vboFRc9/aifmAsa KQRPK3hCDsojc+1E9CBJ66teMzHqzh05Gq/8vUClWOImYsPl04Rb62+iIDqxhxpi 6t4vltcxGKuV+VgQGjuscziSID9OMd3RC9du5bJne9CwJ2/nrlhYK4l6Q6Nrphy4 hEPthlClxSOf8QKeSlMnabbXraSdPoJwmAsQYeIO2j/osbyzfBxyhKjuPv1DaL5h csny7UPvAFEirFzit7nO2FVViwpZ3V7w0Nbd4ve9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUFraO7E9BpXPfTGpNcsr9NjvPGcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwYTk5ODcxLWFlMzUtNGQ1MC04ZTZhLWQyODQ5ZjIwYTBiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAREQ+AwDQYJKoZIhvcNAQELBQADggEBAK77PaFcNsL1BI3rSLIeVETPCSce QevJeBfF0PKkyxw+LGotQbKGF2yBDqM80X5D4SqKLbSmpNhJMDEj+2u7zQOhLDvD ISmxOqnywtprWjOmNegPby0Jg4BMZZmYsOq+IlmIXjRM2/BcK/+ka+Pjf9Zd01Ui H9R5nEPwvBs984mUxLWn50d8ygWY/miZgkuK/8aSRXK7AOPGuq0OEBrhG4d2pe9G owzSQWQp0cRpHcQmraR1X1Ee2RRza9Ea5uCPS4nQBd4ARenPb0gRsbw55+eFfPAx naQmE76378oKuyCf34HFwK3Wx+JNPKJLiS1QJ6ISvlvq45r4jwP+nxgY6W4= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:25 2025 by rpki-client