$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa File: 5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa (raw, json) Hash identifier: MZm3cMhb4wVV5VGsZWeC3pCXe3+0U3pl7atrXkPvnU4= Subject key identifier: 2E:9E:A4:74:67:A5:7B:6C:51:9F:5C:B6:AD:EE:4F:21:F4:91:C9:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 766CDEFF3E5CCF8B41F87FDB49B95CE36BB83445 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa Signing time: Sat 29 Mar 2025 00:41:22 +0000 ROA not before: Sat 29 Mar 2025 00:41:22 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.178.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:6c:de:ff:3e:5c:cf:8b:41:f8:7f:db:49:b9:5c:e3:6b:b8:34:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:41:22 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a5:7b:ce:c9:ee:03:d1:27:79:cd:29:7f:27: ca:d8:1c:25:f4:d5:ce:9e:9e:a7:a2:53:d4:e9:b5: 06:b5:77:7c:eb:87:a3:0b:3e:69:c9:b4:0a:9e:57: db:6b:61:1e:7b:cb:a2:e5:e7:17:ea:46:8e:76:3c: d0:a5:9a:39:63:ad:a4:39:b8:7e:d5:89:b4:a4:2e: 49:4d:51:ec:70:97:c8:36:af:7f:bd:66:42:3e:6b: dc:64:0f:16:8d:f1:7c:86:03:d1:69:85:61:8f:e8: 4d:49:d3:5c:c4:3f:b5:16:e6:c0:32:b0:bd:ad:16: c3:f0:f7:8c:67:ab:9d:c1:f5:00:2f:47:08:ad:21: c2:81:a9:c5:2b:a3:c9:33:05:5f:f1:e9:2e:d0:f4: 63:28:64:cb:d8:6d:2d:e2:db:e5:3d:0b:97:8b:82: 3e:c2:65:24:aa:c2:cf:f9:86:08:4e:14:c8:ee:0e: 6b:d9:cc:d5:e7:d3:4b:70:c2:19:ed:4f:b5:e0:85: 76:78:42:fb:8d:65:c4:cc:c1:d1:44:3a:82:bf:69: 5c:60:b8:17:0a:ce:01:92:59:34:00:e7:74:79:69: 75:6b:e5:f5:d5:5b:81:70:cc:c4:de:b3:b1:8f:88: 1a:da:de:97:1d:4d:d2:c2:74:60:a6:02:56:27:2b: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9E:A4:74:67:A5:7B:6C:51:9F:5C:B6:AD:EE:4F:21:F4:91:C9:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.0.0/18 Signature Algorithm: sha256WithRSAEncryption 55:97:e7:67:d2:f2:27:f5:42:d2:07:6d:7b:d2:4f:51:2a:0c: e4:f9:35:b4:a2:8d:5f:89:1c:d7:f0:96:fd:2b:d8:a9:20:ed: 68:e6:2f:39:b8:14:bc:e0:72:6c:dc:21:60:09:c9:a7:7d:9e: f7:08:f4:c7:a8:1c:6e:9d:29:ed:5a:c7:ce:50:54:bc:08:e0: ad:1d:cd:5a:70:58:d7:29:fc:0d:ac:fb:6d:ef:f1:92:9f:ee: 53:86:76:e0:7a:71:0d:f7:bd:a1:1f:b1:55:45:6f:93:d8:c0: 9f:eb:72:a0:72:25:b7:6e:e6:ac:b6:64:b3:95:b5:64:df:c6: 36:81:13:95:93:af:46:00:3e:46:b7:6f:04:c0:75:b2:d2:07: 86:c0:93:d9:55:ee:9b:c7:3b:4d:d0:37:b9:1e:6f:a6:ef:e9: 37:fa:92:6a:2b:23:81:dc:35:b8:58:17:8e:09:0a:24:26:3e: c0:33:b9:87:36:e7:d3:c9:7a:ff:3f:48:81:e6:5e:b9:40:f9: 5a:fa:fd:c3:7d:ac:f9:10:5c:81:f2:0c:9c:b7:e0:9c:56:36: 71:36:57:f2:b3:89:ce:b5:56:8d:41:ab:73:5e:6b:b2:1a:18: 6f:53:97:95:e5:f3:7b:dd:fc:6d:2f:48:1e:18:e1:19:94:50: 92:9e:cf:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdmze/z5cz4tB+H/bSblc42u4NEUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA0MTIyWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2I2NDAxMTAyZGNkMzMwNmUzYmI1MDc0ODUwY2JlNmU0 NzZjNTc3MzAxOTIyMWUwMzY4ZGNhNzljYzhkODMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDspXvOye4D0Sd5zSl/J8rYHCX01c6enqeiU9TptQa1d3zr h6MLPmnJtAqeV9trYR57y6Ll5xfqRo52PNClmjljraQ5uH7VibSkLklNUexwl8g2 r3+9ZkI+a9xkDxaN8XyGA9FphWGP6E1J01zEP7UW5sAysL2tFsPw94xnq53B9QAv RwitIcKBqcUro8kzBV/x6S7Q9GMoZMvYbS3i2+U9C5eLgj7CZSSqws/5hghOFMju DmvZzNXn00twwhntT7XghXZ4QvuNZcTMwdFEOoK/aVxguBcKzgGSWTQA53R5aXVr 5fXVW4FwzMTes7GPiBra3pcdTdLCdGCmAlYnKwxlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULp6kdGele2xRn1y2re5PIfSRyUkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmZmVhMDk2LTEzNGUtNGE0Yy1hYjg4LWQ1ZDIxYjg4NmIzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahsgAwDQYJKoZIhvcNAQELBQADggEBAFWX52fS8if1QtIHbXvST1EqDOT5 NbSijV+JHNfwlv0r2Kkg7WjmLzm4FLzgcmzcIWAJyad9nvcI9MeoHG6dKe1ax85Q VLwI4K0dzVpwWNcp/A2s+23v8ZKf7lOGduB6cQ33vaEfsVVFb5PYwJ/rcqByJbdu 5qy2ZLOVtWTfxjaBE5WTr0YAPka3bwTAdbLSB4bAk9lV7pvHO03QN7keb6bv6Tf6 kmorI4HcNbhYF44JCiQmPsAzuYc259PJev8/SIHmXrlA+Vr6/cN9rPkQXIHyDJy3 4JxWNnE2V/Kzic61Vo1Bq3Nea7IaGG9Tl5Xl83vd/G0vSB4Y4RmUUJKez1E= -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:39 2025 by rpki-client