$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa File: 6da9618c-e798-462f-afd9-32b58ba88cba.roa (raw, json) Hash identifier: g2LMjlXb07lfSnPoX6EfGlRmiQANiQdcY1AeHmd9IE0= Subject key identifier: 6A:DD:98:49:29:68:44:86:15:59:CA:9A:BD:75:28:AB:81:E7:5B:58 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7E2AFFEE50033491519432F0D51CE39A9496DEC4 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa Signing time: Sat 29 Mar 2025 00:10:24 +0000 ROA not before: Sat 29 Mar 2025 00:10:24 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2a:ff:ee:50:03:34:91:51:94:32:f0:d5:1c:e3:9a:94:96:de:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 29 00:10:24 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:f9:90:7c:a4:63:99:f7:79:2a:76:7e:7f: 9a:c8:60:2b:ad:73:4a:5e:6a:10:13:b1:47:e8:4f: 7b:7c:98:f3:5d:85:22:bb:89:a0:ec:58:48:d1:c7: db:9e:88:74:33:c8:d1:7f:50:41:32:33:42:4c:2e: ea:5d:1e:fe:7d:7d:40:76:d1:96:73:2c:9e:58:8c: b6:ad:99:99:44:66:90:14:bf:06:32:4f:26:d7:e3: 9e:54:54:17:02:40:e5:03:4c:79:cb:fa:b9:92:20: 1e:27:f6:51:53:8b:72:e4:80:f5:e3:43:49:71:12: 26:89:4f:29:49:67:b2:61:b1:bb:32:4b:e0:be:ee: 5f:49:0e:ae:d4:87:ad:86:8a:f3:c1:9c:1d:69:0a: 9f:6b:2b:1a:e3:4e:0f:4d:62:b5:be:35:2c:33:ff: 5a:a6:41:87:34:3c:63:bb:7b:68:08:4b:18:18:2f: 82:4a:69:a0:54:b1:0a:8b:b7:a5:4e:fd:d6:99:6e: 6c:a5:b7:e4:b4:7b:b5:da:48:f9:44:a8:15:41:92: ef:af:4b:bb:0a:4d:6a:da:96:e5:24:69:55:23:71: 63:3d:83:ba:52:a5:18:b2:00:4a:b0:f5:bd:fe:fc: a1:6e:ca:45:e7:6b:e8:29:d1:85:ae:6f:93:02:f8: 50:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DD:98:49:29:68:44:86:15:59:CA:9A:BD:75:28:AB:81:E7:5B:58 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:2a:b1:df:1a:48:41:e8:4f:8d:32:72:bd:c2:4a:80:9e:5b: ef:be:62:ac:b4:eb:e3:cc:cb:ef:2f:1d:f5:ca:9e:bf:ab:e2: 9e:28:6b:a1:01:78:59:b2:50:c7:52:00:22:8c:8c:e8:83:f0: 0a:5a:1b:5f:5b:c6:d5:5b:b0:7a:77:cc:67:2b:dc:08:88:d4: 9e:d5:b4:fc:0d:a2:15:78:30:62:13:b4:91:83:0e:6d:43:a7: 1e:c3:d3:84:26:74:fa:fd:08:a1:82:d7:b5:c1:9d:d7:b6:0d: 7f:1f:b4:bb:de:c2:4d:a2:16:6f:4b:9e:0e:dc:d5:4b:30:dd: dd:c7:b0:e4:da:92:cb:ee:bc:31:75:6c:3f:24:49:fa:9c:6b: 01:63:6a:c2:99:b8:2c:8d:6e:99:2c:80:37:aa:66:a7:79:e2: d9:99:eb:3b:2f:95:17:c5:60:1c:6e:35:60:a9:4f:81:ee:5b: 20:ac:43:f4:da:05:fd:3e:05:2d:e4:10:04:91:1d:74:e6:e4: 4a:96:ff:55:74:7f:a1:9a:19:bb:8f:01:f1:35:b0:08:84:de: 45:76:c4:89:7c:ed:bb:11:6e:2c:eb:f4:81:fc:9d:9c:8e:1a: 00:11:7f:6c:01:e4:50:d2:1b:56:90:5f:96:1c:08:dc:17:41: cf:fc:b9:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfir/7lADNJFRlDLw1RzjmpSW3sQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzI5MDAxMDI0WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWI4MTZjYmY5MWU4NDY0ZTBhYmI1YzBhMzcwNThiODUz NzM0ZDBlZTQwOGZlMzk3MmFjYjBhZTZjZjRmZjBjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK8/mQfKRjmfd5KnZ+f5rIYCutc0peahATsUfoT3t8mPNd hSK7iaDsWEjRx9ueiHQzyNF/UEEyM0JMLupdHv59fUB20ZZzLJ5YjLatmZlEZpAU vwYyTybX455UVBcCQOUDTHnL+rmSIB4n9lFTi3LkgPXjQ0lxEiaJTylJZ7Jhsbsy S+C+7l9JDq7Uh62GivPBnB1pCp9rKxrjTg9NYrW+NSwz/1qmQYc0PGO7e2gISxgY L4JKaaBUsQqLt6VO/daZbmylt+S0e7XaSPlEqBVBku+vS7sKTWraluUkaVUjcWM9 g7pSpRiyAEqw9b3+/KFuykXna+gp0YWub5MC+FBzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUat2YSSloRIYVWcqavXUoq4HnW1gwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzZkYTk2MThjLWU3OTgtNDYyZi1hZmQ5LTMyYjU4YmE4OGNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFqeAwDQYJKoZIhvcNAQELBQADggEBAC0qsd8aSEHoT40ycr3CSoCeW+++ Yqy06+PMy+8vHfXKnr+r4p4oa6EBeFmyUMdSACKMjOiD8ApaG19bxtVbsHp3zGcr 3AiI1J7VtPwNohV4MGITtJGDDm1Dpx7D04QmdPr9CKGC17XBnde2DX8ftLvewk2i Fm9Lng7c1Usw3d3HsOTaksvuvDF1bD8kSfqcawFjasKZuCyNbpksgDeqZqd54tmZ 6zsvlRfFYBxuNWCpT4HuWyCsQ/TaBf0+BS3kEASRHXTm5EqW/1V0f6GaGbuPAfE1 sAiE3kV2xIl87bsRbizr9IH8nZyOGgARf2wB5FDSG1aQX5YcCNwXQc/8uY8= -----END CERTIFICATE-----Generated at Sat Apr 5 10:56:25 2025 by rpki-client