$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa File: aae2d162-8718-4e30-8f4a-57332cb846c6.roa (raw, json) Hash identifier: DAkTEK5/voOZHDAY8jXeEYkdf+1Bfl5LslnnX6zjGEM= Subject key identifier: 40:4C:57:F4:ED:AB:69:B8:8E:26:F9:72:61:4A:CC:C6:A9:1F:D1:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2134576DC6E62A2A2E9E99B45444D9823E2DCCA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa Signing time: Wed 02 Apr 2025 00:21:43 +0000 ROA not before: Wed 02 Apr 2025 00:21:43 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:34:57:6d:c6:e6:2a:2a:2e:9e:99:b4:54:44:d9:82:3e:2d:cc:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:21:43 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:70:e1:90:d7:11:aa:f1:8f:be:d3:4a:b5:f0: c3:e7:5e:38:5f:4f:d2:b6:67:12:dd:f8:b7:a3:d4: 29:96:30:1a:a3:47:27:0a:a5:ce:6e:4c:89:0c:d1: ae:a6:b2:4d:b3:15:1e:88:4c:09:c8:fa:80:03:8f: ce:0e:cf:95:bd:78:4e:f6:24:18:f2:4d:1d:77:04: 93:16:6e:80:3d:f2:67:47:34:12:4e:1f:b2:eb:c5: b3:c8:e7:83:70:5d:49:c8:f8:f2:5f:e8:44:a2:fa: 47:92:5c:bd:ad:50:f6:a2:15:d8:bd:be:35:f1:6b: c2:d9:8a:80:99:b0:db:6b:47:6b:e9:f4:bf:dc:89: 2b:aa:5d:9f:79:67:7a:19:96:1e:e6:a5:90:46:ac: 03:28:1f:1d:b0:3e:dc:e1:38:b0:d8:95:82:c6:8e: 49:b0:ed:ec:c7:73:52:d5:d3:e5:dd:f8:ef:e5:1d: 1e:22:f4:14:e6:53:b2:8a:6d:19:53:f4:13:0c:9b: ec:6b:d2:3b:c3:3f:c9:8a:d3:23:5f:9c:d9:2b:d1: 43:ad:3a:31:8a:e6:20:20:36:dc:ba:6a:d9:01:d7: 26:38:dd:fa:c2:9d:92:5c:5a:8e:c9:6d:ea:a9:3f: 85:8a:cc:1c:ae:d4:e3:48:3b:c9:e2:b1:31:d5:1b: 07:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:57:F4:ED:AB:69:B8:8E:26:F9:72:61:4A:CC:C6:A9:1F:D1:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.160.0/19 Signature Algorithm: sha256WithRSAEncryption 83:75:9f:81:f9:4a:a2:3c:e0:97:95:de:3a:54:4f:bf:b3:12: c6:24:91:0c:ab:39:e8:c2:d1:e4:5c:05:bf:6e:5b:59:62:65: 3c:eb:3b:be:2d:a2:40:cf:5f:0f:08:bb:f7:df:d6:04:f4:85: a7:91:6e:86:75:45:6d:e4:1d:2d:e1:41:6b:30:40:f1:73:66: cb:95:8e:45:57:82:56:16:0a:cc:45:58:41:64:1a:a5:c3:5d: 2b:4a:71:03:b8:fa:ba:5e:22:73:b1:30:0b:cb:21:9a:2a:b5: 9a:3e:0a:df:01:4c:2c:57:93:49:13:0d:21:c1:33:db:3c:13: ae:4e:61:7c:1d:fc:5d:90:1a:f2:67:cc:a3:f8:df:5d:56:cf: 98:22:ad:a9:aa:90:c5:4a:9b:8f:3d:a3:f0:cf:79:6d:fb:dc: 8a:2b:73:44:96:52:43:a3:ab:34:0c:91:71:fb:75:03:66:81: 8f:a4:b5:cb:7b:44:7e:dc:9b:64:30:b0:37:31:56:2e:08:5a: b1:64:89:92:e3:07:78:1e:d7:5a:bb:6a:81:ab:59:3a:40:f5: 3e:6e:5a:7c:ae:cd:f9:1d:cb:46:56:d9:72:3f:84:fc:79:f9: 6d:d1:d2:6e:6f:dc:28:85:4f:d1:fc:91:43:5f:54:af:30:67: 45:a2:44:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUITRXbcbmKiounpm0VETZgj4tzKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAyMTQzWhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDI0N2E1ZTg4ZTZhM2Q0ZmJmNDM1NWY2ZDU5M2RmNjZl OGJlODYyNTMyYmQwMDg3N2RkYWQ4ZTRjN2ViNDVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXcOGQ1xGq8Y++00q18MPnXjhfT9K2ZxLd+Lej1CmWMBqj RycKpc5uTIkM0a6msk2zFR6ITAnI+oADj84Oz5W9eE72JBjyTR13BJMWboA98mdH NBJOH7LrxbPI54NwXUnI+PJf6ESi+keSXL2tUPaiFdi9vjXxa8LZioCZsNtrR2vp 9L/ciSuqXZ95Z3oZlh7mpZBGrAMoHx2wPtzhOLDYlYLGjkmw7ezHc1LV0+Xd+O/l HR4i9BTmU7KKbRlT9BMMm+xr0jvDP8mK0yNfnNkr0UOtOjGK5iAgNty6atkB1yY4 3frCnZJcWo7JbeqpP4WKzByu1ONIO8nisTHVGwcDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQExX9O2rabiOJvlyYUrMxqkf0f4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhZTJkMTYyLTg3MTgtNGUzMC04ZjRhLTU3MzMyY2I4NDZjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUtOaAwDQYJKoZIhvcNAQELBQADggEBAIN1n4H5SqI84JeV3jpUT7+zEsYk kQyrOejC0eRcBb9uW1liZTzrO74tokDPXw8Iu/ff1gT0haeRboZ1RW3kHS3hQWsw QPFzZsuVjkVXglYWCsxFWEFkGqXDXStKcQO4+rpeInOxMAvLIZoqtZo+Ct8BTCxX k0kTDSHBM9s8E65OYXwd/F2QGvJnzKP4311Wz5giramqkMVKm489o/DPeW373Ior c0SWUkOjqzQMkXH7dQNmgY+ktct7RH7cm2QwsDcxVi4IWrFkiZLjB3ge11q7aoGr WTpA9T5uWnyuzfkdy0ZW2XI/hPx5+W3R0m5v3CiFT9H8kUNfVK8wZ0WiRBM= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:41 2025 by rpki-client