$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: kBCtEUfP+w0yCARJS3CefLGo2KxBEsViGooGbcOJjnU= Subject key identifier: 1A:0D:8B:5A:85:9A:2F:1A:A6:AF:28:E2:8F:C8:A4:94:24:63:6F:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30DDF364950345E2D20F410E0409BC9FE6596F31 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Mon 31 Mar 2025 15:20:33 +0000 ROA not before: Mon 31 Mar 2025 15:20:33 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:dd:f3:64:95:03:45:e2:d2:0f:41:0e:04:09:bc:9f:e6:59:6f:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:20:33 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=18237146739c39a31d4efdf28839b788cfe848fb2a3d5929eee2d1ce6c05e83e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f7:88:18:ed:9c:34:09:89:fd:c8:3f:c0:0e: 8b:37:4f:60:51:f6:d0:ff:e0:2b:52:3e:e1:92:2f: 19:fc:55:5a:a9:c3:50:0a:48:78:80:42:84:4d:0b: a1:57:4a:76:e1:69:96:0a:59:3c:8b:28:0d:1a:10: 7d:88:37:d0:ac:35:d3:1d:1d:8f:8a:52:10:78:39: 03:7e:8e:e6:cb:f2:15:6f:b6:89:60:e1:9f:26:3d: 9e:15:fb:31:b5:8a:7d:d8:ce:22:0e:1e:ac:fe:ab: ea:4e:55:77:41:b7:65:6c:60:4a:3b:7f:32:96:b1: 39:e2:da:7a:d0:8f:6d:88:04:04:88:b6:71:88:c9: 7e:3a:83:92:3f:54:cb:b3:89:f8:46:f6:e2:8f:a3: 8e:f4:32:36:51:4c:06:4d:81:2f:32:d8:42:8d:1b: 9e:b9:d3:d0:5e:b9:93:b4:aa:a1:20:39:b8:01:19: a2:bd:5c:2d:f3:2e:0c:4c:67:d0:75:15:e5:4b:a6: 79:04:63:c2:be:62:7f:22:77:5b:78:87:a8:c8:27: ae:ca:fd:2b:c8:3e:2b:92:13:be:11:ef:fd:5c:69: 67:cf:a9:1f:7a:be:24:c5:23:77:b7:68:01:92:a0: a5:e1:a5:1d:19:40:2f:94:c9:1e:b8:d4:a8:35:98: b1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0D:8B:5A:85:9A:2F:1A:A6:AF:28:E2:8F:C8:A4:94:24:63:6F:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 22:08:5c:59:3e:b7:1b:e7:ae:da:62:f6:13:53:4c:cd:81:cd: 2d:4f:ea:3a:d9:85:ae:2d:9b:55:65:b8:59:cf:91:55:87:31: c8:d6:b3:de:51:25:8f:3a:7b:37:bc:1e:f9:b9:10:8e:5f:ab: eb:26:15:0b:e6:bd:91:90:de:8b:af:7f:0d:ce:e9:cb:f5:62: 4f:b4:9f:96:e6:4e:35:d1:b6:53:c4:16:65:71:37:bb:39:53: 68:d1:f1:14:21:6e:36:22:7f:10:24:cb:a6:ec:d9:41:71:76: dd:e6:01:0f:a9:b5:3f:58:23:99:7f:d4:4d:8a:b4:70:7e:28: 8c:f4:3f:63:c1:43:80:9a:cd:2b:1b:27:bf:2b:cb:be:55:97: 8c:a5:87:7d:0b:fe:19:ca:fd:a2:b1:e0:5e:5f:e1:e4:e7:ee: 86:9a:fa:7c:0b:df:ef:aa:a1:a9:7a:61:cd:3d:74:43:0b:a9: c3:36:14:60:15:31:c2:6e:98:13:ff:b4:e0:16:fa:8f:1a:c3: af:b5:29:26:1b:e1:2f:03:e4:98:f9:99:34:26:02:b7:ae:a6: a0:05:14:f6:46:89:a2:d8:6c:dd:83:45:a2:90:03:a5:4b:19: de:b5:68:8e:b6:2b:fe:7d:7e:30:b6:f5:8b:94:54:d0:e8:e8: 8f:74:6b:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMN3zZJUDReLSD0EOBAm8n+ZZbzEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUyMDMzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODIzNzE0NjczOWMzOWEzMWQ0ZWZkZjI4ODM5Yjc4OGNm ZTg0OGZiMmEzZDU5MjllZWUyZDFjZTZjMDVlODNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK94gY7Zw0CYn9yD/ADos3T2BR9tD/4CtSPuGSLxn8VVqp w1AKSHiAQoRNC6FXSnbhaZYKWTyLKA0aEH2IN9CsNdMdHY+KUhB4OQN+jubL8hVv tolg4Z8mPZ4V+zG1in3YziIOHqz+q+pOVXdBt2VsYEo7fzKWsTni2nrQj22IBASI tnGIyX46g5I/VMuzifhG9uKPo470MjZRTAZNgS8y2EKNG56509BeuZO0qqEgObgB GaK9XC3zLgxMZ9B1FeVLpnkEY8K+Yn8id1t4h6jIJ67K/SvIPiuSE74R7/1caWfP qR96viTFI3e3aAGSoKXhpR0ZQC+UyR641Kg1mLF3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGg2LWoWaLxqmryjij8iklCRjbz8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBACIIXFk+txvnrtpi9hNTTM2BzS1P 6jrZha4tm1VluFnPkVWHMcjWs95RJY86eze8Hvm5EI5fq+smFQvmvZGQ3ouvfw3O 6cv1Yk+0n5bmTjXRtlPEFmVxN7s5U2jR8RQhbjYifxAky6bs2UFxdt3mAQ+ptT9Y I5l/1E2KtHB+KIz0P2PBQ4CazSsbJ78ry75Vl4ylh30L/hnK/aKx4F5f4eTn7oaa +nwL3++qoal6Yc09dEMLqcM2FGAVMcJumBP/tOAW+o8aw6+1KSYb4S8D5Jj5mTQm AreupqAFFPZGiaLYbN2DRaKQA6VLGd61aI62K/59fjC29YuUVNDo6I90a+o= -----END CERTIFICATE-----Generated at Wed Apr 16 16:40:51 2025 by rpki-client