$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a63343bf-20b0-46ed-8758-a3e8f35745cc.roa File: a63343bf-20b0-46ed-8758-a3e8f35745cc.roa (raw, json) Hash identifier: wPUFbJ6vv7hJ/46rM7wr4KYDR0vWLtp7v3lgUlnA3aM= Subject key identifier: 9D:8E:7C:C7:67:A7:34:E2:12:3E:32:C8:0F:72:1D:E1:4D:FF:EB:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E72AFD510DE1B26F0145CE07AF66672BD3EFBD1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a63343bf-20b0-46ed-8758-a3e8f35745cc.roa Signing time: Wed 19 Mar 2025 00:20:18 +0000 ROA not before: Wed 19 Mar 2025 00:20:18 +0000 ROA not after: Wed 23 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:72:af:d5:10:de:1b:26:f0:14:5c:e0:7a:f6:66:72:bd:3e:fb:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 19 00:20:18 2025 GMT Not After : Apr 23 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cd:2e:21:00:e1:a9:cb:cb:ab:8e:db:5c:57: 9e:55:47:c3:c8:ec:66:31:e7:36:52:1c:cd:b3:52: 14:d4:5d:10:12:ae:e6:32:67:ca:df:ff:55:bc:2a: 05:12:2b:92:41:39:6e:03:85:70:5a:8e:c6:e2:02: 6a:9e:bd:13:47:2e:b6:e9:ac:5c:d3:6c:9b:d4:54: 4b:a5:7c:ba:5a:1a:5a:b0:e2:fd:b4:81:f3:e1:e8: c4:ea:b2:aa:89:52:df:72:7e:19:f0:b5:e3:fd:eb: 5d:24:a6:1c:aa:db:34:01:a7:85:62:9b:51:65:d7: c0:18:cc:91:9c:10:3b:7d:62:de:de:c5:74:cb:a9: d9:6d:08:07:b8:3d:2f:16:c6:94:a5:70:cc:9a:b4: e2:6e:ca:5e:34:e1:e2:66:2f:a2:31:76:4b:d7:a1: 7c:a9:94:be:0f:52:0a:85:f0:03:4d:9f:fd:c0:82: c3:7f:37:7f:da:1e:2c:1e:fe:b7:ee:d0:bb:d7:33: 8b:cc:04:70:1a:93:3a:c9:6a:c0:46:65:c8:b3:55: 9a:b1:91:e4:6f:f9:56:b0:17:80:a9:ef:18:bb:27: cb:14:21:8d:fb:1f:4e:bf:fa:99:35:40:bf:61:9e: 94:2c:a5:65:78:0b:1c:29:4a:50:34:9d:96:fc:31: 1d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8E:7C:C7:67:A7:34:E2:12:3E:32:C8:0F:72:1D:E1:4D:FF:EB:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a63343bf-20b0-46ed-8758-a3e8f35745cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.160.0/19 Signature Algorithm: sha256WithRSAEncryption cb:79:03:d9:a9:7f:97:61:48:5f:43:b1:52:a5:c9:79:61:e4: 93:15:1e:4e:9b:8a:2e:d9:ef:28:e9:d1:b1:5e:2a:16:15:69: a9:7c:ef:f6:54:5d:fe:8c:8e:ae:e7:ff:df:d0:88:1a:ee:3c: 6e:13:d2:b6:03:8d:25:ca:40:06:1a:27:15:9c:3e:50:3f:b0: 68:be:32:81:8f:74:3f:3a:e0:6f:c0:90:ef:87:d6:ff:ee:5b: d3:fa:1b:eb:9f:58:4a:d0:db:19:13:6e:d5:c9:1d:39:70:d3: 08:8d:89:c3:ab:cd:50:d7:80:52:80:ef:1c:e6:e9:fa:21:8d: 33:c2:45:86:c0:17:dc:d1:30:ac:a8:21:1d:bb:ed:7e:91:7a: 7e:92:e4:5c:44:6f:1b:52:09:30:68:00:45:1c:e5:8e:39:f5: 4d:10:51:b2:13:6d:32:99:f2:52:22:3a:55:19:f8:6c:44:9d: 81:eb:20:8f:b9:94:e0:bb:d0:83:dd:7c:e5:7d:ab:1b:d1:cf: 36:f9:d2:53:06:8d:1d:de:40:4d:c9:b0:99:2c:4b:9a:e5:6e: fb:c3:cf:4d:61:3e:3f:4c:ad:44:08:39:11:be:aa:49:82:12: 79:8f:85:a9:d6:3d:3a:4c:98:8b:df:4a:b6:5b:a8:ee:98:8d: 30:27:86:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfnKv1RDeGybwFFzgevZmcr0++9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE5MDAyMDE4WhcNMjUwNDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzc5NDMyNzQ5ZjBlNWUzYzYxNTM5NjVjYmM2MTgwMWVj YTAzODYzZTM3MDAxYzgwNjRkNTQwZGFkOGE0Yzk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTzS4hAOGpy8urjttcV55VR8PI7GYx5zZSHM2zUhTUXRAS ruYyZ8rf/1W8KgUSK5JBOW4DhXBajsbiAmqevRNHLrbprFzTbJvUVEulfLpaGlqw 4v20gfPh6MTqsqqJUt9yfhnwteP9610kphyq2zQBp4Vim1Fl18AYzJGcEDt9Yt7e xXTLqdltCAe4PS8WxpSlcMyatOJuyl404eJmL6IxdkvXoXyplL4PUgqF8ANNn/3A gsN/N3/aHiwe/rfu0LvXM4vMBHAakzrJasBGZcizVZqxkeRv+VawF4Cp7xi7J8sU IY37H06/+pk1QL9hnpQspWV4CxwpSlA0nZb8MR0zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnY58x2enNOISPjLID3Id4U3/68QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2MzM0M2JmLTIwYjAtNDZlZC04NzU4LWEzZThmMzU3NDVjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4SaAwDQYJKoZIhvcNAQELBQADggEBAMt5A9mpf5dhSF9DsVKlyXlh5JMV Hk6bii7Z7yjp0bFeKhYVaal87/ZUXf6Mjq7n/9/QiBruPG4T0rYDjSXKQAYaJxWc PlA/sGi+MoGPdD864G/AkO+H1v/uW9P6G+ufWErQ2xkTbtXJHTlw0wiNicOrzVDX gFKA7xzm6fohjTPCRYbAF9zRMKyoIR277X6Ren6S5FxEbxtSCTBoAEUc5Y459U0Q UbITbTKZ8lIiOlUZ+GxEnYHrII+5lOC70IPdfOV9qxvRzzb50lMGjR3eQE3JsJks S5rlbvvDz01hPj9MrUQIORG+qkmCEnmPhanWPTpMmIvfSrZbqO6YjTAnhqU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:45 2025 by rpki-client