$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa File: dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa (raw, json) Hash identifier: qCca/G53dSShhnIlpMM1vBjCr5eHa+/EF5nJZgoMTN8= Subject key identifier: 6A:5E:58:5C:8B:FC:4E:77:8E:0C:B3:F6:F0:05:C0:B8:E9:74:46:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F6A991238E12E8F4FF2088605292A32706CBBB9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa Signing time: Fri 14 Mar 2025 00:51:09 +0000 ROA not before: Fri 14 Mar 2025 00:51:09 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:6a:99:12:38:e1:2e:8f:4f:f2:08:86:05:29:2a:32:70:6c:bb:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:51:09 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3c:02:9c:80:ff:d2:e8:6d:e9:47:a3:c4:a4: 2f:91:1b:4b:bb:23:59:08:76:d8:f5:72:af:db:d2: 2f:e4:3e:4f:aa:37:0d:d5:19:be:dd:06:50:eb:22: f8:d0:df:fe:04:8c:f4:a8:23:f7:de:d3:44:22:8c: 13:30:1c:aa:e1:3f:7b:a3:27:11:98:2b:09:a9:e0: 79:09:05:70:20:9a:0e:6b:7b:2f:be:9d:53:cd:0a: e9:5f:71:e8:f4:9d:96:e5:14:87:1f:9c:3a:52:f5: f5:95:d2:65:d8:6c:6c:76:b7:41:fe:24:cc:e6:4f: 38:c2:4f:6f:ef:67:bb:57:bd:0d:af:ff:76:fa:fa: a4:fb:03:ec:ad:cc:e2:1c:e0:f6:fe:b1:4f:d8:c0: f0:cc:b6:88:43:00:17:f0:6f:e0:b9:88:7a:fb:bc: 40:69:da:ac:d5:d5:c5:e5:d1:6a:c2:8f:99:44:52: 4b:64:ad:3c:a8:60:5e:10:14:90:16:12:7c:b0:58: f6:2e:c8:4e:c9:3c:1d:71:2e:69:5b:81:11:db:99: ce:bd:ed:07:a7:72:44:a3:fa:68:4e:41:0d:56:17: 72:08:d9:2a:7d:f5:27:e9:69:58:e5:48:05:52:83: 56:d9:a2:6f:1e:f5:97:a5:3e:56:99:7f:77:0c:f6: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5E:58:5C:8B:FC:4E:77:8E:0C:B3:F6:F0:05:C0:B8:E9:74:46:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.80.0/21 Signature Algorithm: sha256WithRSAEncryption 39:a8:97:cb:c7:71:72:c9:b1:f8:6f:94:5d:65:a4:f4:84:52: a3:fe:f4:3b:47:cc:b8:01:96:ce:03:7b:c9:4b:44:a4:c6:d3: 40:4a:fe:d4:e0:3d:fc:71:73:8f:3a:04:fd:1e:ea:89:33:b5: ba:bf:79:f5:65:ca:bd:eb:85:4b:a7:a5:86:e4:f5:fe:44:dd: 36:7c:9b:be:08:8f:c6:8f:3d:33:68:8d:d1:ef:42:36:15:d6: a4:aa:fd:dd:cd:55:41:f7:6f:92:ff:7b:e8:b1:4c:2d:f1:a4: 97:97:30:92:c3:04:88:97:66:ab:80:10:97:7a:61:54:da:38: ec:55:20:a1:45:cc:dc:7a:d2:10:77:bd:ad:cc:6c:27:93:a3: cb:fb:1e:d0:87:da:4f:0f:35:aa:e5:20:64:f0:16:76:b7:0e: 39:61:e0:60:e9:0e:99:14:b8:6b:3e:df:39:4a:56:a5:c0:0f: 54:4d:29:92:1a:87:fc:36:d7:17:bd:dd:04:4b:f1:d9:75:85: f2:7a:62:50:91:ed:2e:82:ba:fe:8a:23:4d:c6:ea:f7:61:19: 7d:29:02:c4:65:b2:a5:2a:f1:00:53:77:a3:ff:67:69:aa:5a: 06:9e:2a:7b:02:8c:d1:b9:6c:57:ab:62:51:c8:29:a2:7c:c7: 21:b4:06:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX2qZEjjhLo9P8giGBSkqMnBsu7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDA1MTA5WhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjJhNjBkYTFhYzI3NzJlNGQ4YjU3OGI2ZTgxNDE4NGE5 OTNkYjI5NGU2ZDYxYmU2NjM5OTk0NmJiMGY3NDMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCePAKcgP/S6G3pR6PEpC+RG0u7I1kIdtj1cq/b0i/kPk+q Nw3VGb7dBlDrIvjQ3/4EjPSoI/fe00QijBMwHKrhP3ujJxGYKwmp4HkJBXAgmg5r ey++nVPNCulfcej0nZblFIcfnDpS9fWV0mXYbGx2t0H+JMzmTzjCT2/vZ7tXvQ2v /3b6+qT7A+ytzOIc4Pb+sU/YwPDMtohDABfwb+C5iHr7vEBp2qzV1cXl0WrCj5lE UktkrTyoYF4QFJAWEnywWPYuyE7JPB1xLmlbgRHbmc697QenckSj+mhOQQ1WF3II 2Sp99SfpaVjlSAVSg1bZom8e9ZelPlaZf3cM9t/zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUal5YXIv8TneODLP28AXAuOl0RowwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlYTI2MmQwLWU3ZTMtNGJlNC05ZjNkLWUxMmUxYmJjZDg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6FAwDQYJKoZIhvcNAQELBQADggEBADmol8vHcXLJsfhvlF1lpPSEUqP+ 9DtHzLgBls4De8lLRKTG00BK/tTgPfxxc486BP0e6okztbq/efVlyr3rhUunpYbk 9f5E3TZ8m74Ij8aPPTNojdHvQjYV1qSq/d3NVUH3b5L/e+ixTC3xpJeXMJLDBIiX ZquAEJd6YVTaOOxVIKFFzNx60hB3va3MbCeTo8v7HtCH2k8PNarlIGTwFna3Djlh 4GDpDpkUuGs+3zlKVqXAD1RNKZIah/w21xe93QRL8dl1hfJ6YlCR7S6Cuv6KI03G 6vdhGX0pAsRlsqUq8QBTd6P/Z2mqWgaeKnsCjNG5bFerYlHIKaJ8xyG0BtQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:06:32 2025 by rpki-client