$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa File: 436af8e8-480b-485b-a232-f1503410322c.roa (raw, json) Hash identifier: G/AdEGGIP0D5y+VaXJwaSjc1L1iuOE4NpUOWTvIjfL0= Subject key identifier: 13:88:63:DF:5C:7D:E1:3F:08:AC:B6:6D:C0:E1:B4:77:1B:71:F1:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7301718BCE55A0B5D9D408D48A1A11D6B163C797 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa Signing time: Sat 29 Mar 2025 00:11:18 +0000 ROA not before: Sat 29 Mar 2025 00:11:18 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:01:71:8b:ce:55:a0:b5:d9:d4:08:d4:8a:1a:11:d6:b1:63:c7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:11:18 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:69:97:9d:d2:52:c8:77:52:9e:7e:98:b9:e5: 29:04:d9:0f:00:65:74:f9:5d:3a:40:8c:be:1c:a8: 84:53:ac:b4:f1:49:f6:6b:d9:e5:28:11:3e:1f:29: a1:c3:99:0e:0f:9b:b4:bb:63:69:b7:09:97:7c:3b: 5b:d1:87:c9:be:fd:64:9f:c1:74:52:1d:5e:12:68: ef:1f:ce:bd:d6:3f:a6:52:f0:41:e2:a6:ce:aa:f4: 16:c2:da:31:e5:af:4e:c5:ee:57:2e:00:f8:88:6f: 31:74:24:6c:cb:e4:c9:b4:8d:0d:db:54:90:00:14: d5:35:66:3e:7b:6c:ab:b9:95:73:55:17:77:57:a1: f9:50:5c:d7:6f:5f:dd:1a:12:14:13:42:fb:72:3e: cf:bf:a7:3f:5b:8e:00:24:10:88:74:9c:ab:d4:46: 3e:74:2d:c1:e0:87:d7:32:55:0e:b1:8f:bf:ed:23: 94:da:23:c9:4c:29:a8:18:ec:75:65:6e:24:2c:a0: d4:54:aa:07:26:a0:3d:9f:13:61:e9:b7:5b:b1:9a: ee:5c:33:dd:9b:fc:c9:80:ab:68:19:0b:05:11:3e: b2:b3:8e:63:79:69:f6:1a:cd:f8:77:26:80:74:57: d1:53:6d:4e:45:5f:9b:4e:55:fa:ae:ed:dd:a6:4a: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:88:63:DF:5C:7D:E1:3F:08:AC:B6:6D:C0:E1:B4:77:1B:71:F1:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:d0:be:ae:93:00:a3:88:1b:07:8c:84:c2:2f:2d:91:47:eb: 9a:bc:41:c7:75:04:77:cd:4e:bf:6a:bc:ac:27:11:69:65:d5: 22:df:92:b3:f9:b3:e4:b3:fb:ef:6d:5d:ea:b4:69:95:97:9f: d9:df:ba:83:b1:00:dc:4a:92:90:75:b9:49:59:f7:dc:4d:b9: 44:2f:7a:dd:ca:e2:a4:ee:60:fe:ac:62:74:b5:a5:aa:3f:69: f9:ba:f1:23:ba:30:46:a1:5e:0d:9f:05:9f:61:87:ec:53:b7: 29:ac:39:3e:5b:3a:73:9e:f6:82:c4:b6:c6:0f:6f:11:5f:3a: 4e:82:6c:fd:9d:22:2a:77:78:62:d7:0d:ee:17:a7:59:23:71: cd:7d:c6:18:d5:3e:a1:c4:01:40:36:28:c2:63:17:78:95:a6: 32:94:49:46:fe:4e:73:f1:ea:87:f7:65:a2:5b:db:ae:a2:be: 28:29:1a:6e:df:ea:07:d3:f2:c2:ca:b4:cb:3d:39:f1:79:02: c1:3b:a4:71:5c:2c:4b:46:2d:1b:fa:a6:7c:03:41:b0:29:c6: 22:4c:16:67:54:18:bb:df:7b:72:3e:83:c2:41:11:6f:05:fd: ac:ba:b0:37:ce:cf:0c:d5:e0:71:65:69:c3:5d:09:08:08:76: e6:ee:70:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcwFxi85VoLXZ1AjUihoR1rFjx5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAxMTE4WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTAwNDhhYzViZjVlNjVlY2U1NzJiYmFmMWRhOWExYjVh MmU2YjRmMjg5NmNkYWE1OWMxNGFkZGMxN2UyOWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwaZed0lLId1Kefpi55SkE2Q8AZXT5XTpAjL4cqIRTrLTx SfZr2eUoET4fKaHDmQ4Pm7S7Y2m3CZd8O1vRh8m+/WSfwXRSHV4SaO8fzr3WP6ZS 8EHips6q9BbC2jHlr07F7lcuAPiIbzF0JGzL5Mm0jQ3bVJAAFNU1Zj57bKu5lXNV F3dXoflQXNdvX90aEhQTQvtyPs+/pz9bjgAkEIh0nKvURj50LcHgh9cyVQ6xj7/t I5TaI8lMKagY7HVlbiQsoNRUqgcmoD2fE2Hpt1uxmu5cM92b/MmAq2gZCwURPrKz jmN5afYazfh3JoB0V9FTbU5FX5tOVfqu7d2mSuWxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE4hj31x94T8IrLZtwOG0dxtx8ccwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNmFmOGU4LTQ4MGItNDg1Yi1hMjMyLWYxNTAzNDEwMzIyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBACvQvq6TAKOIGweMhMIvLZFH65q8 Qcd1BHfNTr9qvKwnEWll1SLfkrP5s+Sz++9tXeq0aZWXn9nfuoOxANxKkpB1uUlZ 99xNuUQvet3K4qTuYP6sYnS1pao/afm68SO6MEahXg2fBZ9hh+xTtymsOT5bOnOe 9oLEtsYPbxFfOk6CbP2dIip3eGLXDe4Xp1kjcc19xhjVPqHEAUA2KMJjF3iVpjKU SUb+TnPx6of3ZaJb266ivigpGm7f6gfT8sLKtMs9OfF5AsE7pHFcLEtGLRv6pnwD QbApxiJMFmdUGLvfe3I+g8JBEW8F/ay6sDfOzwzV4HFlacNdCQgIdubucKU= -----END CERTIFICATE-----Generated at Sat Apr 5 21:55:45 2025 by rpki-client