$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa File: 202fa196-7fc4-42d7-9eda-ead645c20087.roa (raw, json) Hash identifier: GdZ0jJXrgerrt5HaGvFUNB4LhT+scyREwHIZigXrkVw= Subject key identifier: F6:28:AE:13:84:6B:C4:32:58:10:9C:BE:AD:E9:67:49:03:DC:09:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B32E8203B74451EC2D0B00A88EF01C002D9C675 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa Signing time: Tue 08 Apr 2025 00:42:10 +0000 ROA not before: Tue 08 Apr 2025 00:42:10 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:32:e8:20:3b:74:45:1e:c2:d0:b0:0a:88:ef:01:c0:02:d9:c6:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:42:10 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=87324132487e70fdd21690a8e8227753b880b803fabd7cef4d09a2ab3485a632, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e8:04:d8:88:e6:80:e8:32:45:85:f4:58:4c: 8d:4a:a7:df:01:39:47:cf:3f:f5:b7:a5:89:50:cc: 53:9c:e4:8f:18:88:4c:65:d7:a4:b0:c3:c6:9c:56: be:7c:0b:2d:89:8b:22:fa:a2:aa:b0:8f:c7:47:d7: 23:ad:b4:a3:20:2c:08:5c:30:12:d5:c3:29:26:1c: 1f:09:f0:5d:b4:37:54:ab:d4:e1:f4:b6:79:46:3e: f1:10:f0:eb:50:b9:cf:63:8d:56:a1:03:4e:65:ac: 05:1e:ab:45:4b:53:28:5b:a2:e4:a0:fc:c2:27:ea: 1b:7e:70:83:87:47:38:38:ed:93:82:db:43:35:00: 62:4d:22:89:5e:a1:c9:fe:54:54:39:77:74:17:f9: 33:da:13:83:7d:83:98:5b:ff:80:4e:9f:c3:24:09: df:c4:fb:c2:14:63:f2:b3:71:0d:3b:0d:a3:b8:60: a2:d2:3b:3f:09:64:f9:0c:71:f1:f4:89:5c:7b:94: 3f:3d:03:66:f6:85:ab:55:77:8f:e2:5d:e2:98:f6: 1e:1a:f0:55:5c:41:1b:43:19:3b:a3:b0:ef:d6:bc: 12:79:ca:65:f1:c7:73:f6:ca:90:8e:96:59:a7:a6: 6f:43:04:a5:5d:ea:43:ef:58:5c:aa:d3:91:a0:69: 0b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:28:AE:13:84:6B:C4:32:58:10:9C:BE:AD:E9:67:49:03:DC:09:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.160.0/24 Signature Algorithm: sha256WithRSAEncryption b9:53:75:42:1c:52:e0:d5:00:5c:c7:b6:85:39:f6:c9:6d:08: a7:b5:13:30:db:25:bd:60:7d:20:01:93:9b:36:2e:a1:e2:47: 2b:10:c5:4f:60:59:ae:0d:e5:cc:3d:b5:74:d5:de:97:2f:3e: 8d:6c:f1:4d:e4:aa:f2:ae:0a:20:4f:ca:a3:a2:a4:89:67:a7: a8:e7:18:d0:ce:e7:7b:fc:25:77:6f:50:c9:47:8f:d9:ba:79: 00:75:59:3c:65:5c:45:10:b9:1c:92:da:eb:cd:2c:ee:aa:cb: 90:6e:cc:e0:25:85:3e:90:03:98:c9:32:a9:bc:da:83:0b:d7: 73:72:d3:17:83:3f:2c:3a:c3:30:66:3d:8f:d7:d3:8d:8a:d5: 11:f5:ee:bc:8e:6b:d8:dc:75:7a:3d:b9:b3:ba:0a:fd:f2:70: 97:28:ab:e8:d2:4d:dd:eb:e7:50:4c:db:a7:4c:44:68:5b:0f: 9e:9f:ca:fa:29:af:7e:f9:5b:76:ed:af:d5:5e:5d:e8:05:72: 0e:c2:d8:97:dc:e1:76:b4:9b:cc:4c:7e:0a:9d:1e:86:17:25: 70:4d:98:d5:9c:8d:49:bc:91:4a:92:0c:d4:de:de:89:a1:8b: e2:cc:00:58:e7:7d:0b:f0:78:59:21:60:3d:b7:aa:1b:f0:4c: 2c:d3:2a:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKzLoIDt0RR7C0LAKiO8BwALZxnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA0MjEwWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzMyNDEzMjQ4N2U3MGZkZDIxNjkwYThlODIyNzc1M2I4 ODBiODAzZmFiZDdjZWY0ZDA5YTJhYjM0ODVhNjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn6ATYiOaA6DJFhfRYTI1Kp98BOUfPP/W3pYlQzFOc5I8Y iExl16Sww8acVr58Cy2JiyL6oqqwj8dH1yOttKMgLAhcMBLVwykmHB8J8F20N1Sr 1OH0tnlGPvEQ8OtQuc9jjVahA05lrAUeq0VLUyhbouSg/MIn6ht+cIOHRzg47ZOC 20M1AGJNIoleocn+VFQ5d3QX+TPaE4N9g5hb/4BOn8MkCd/E+8IUY/KzcQ07DaO4 YKLSOz8JZPkMcfH0iVx7lD89A2b2hatVd4/iXeKY9h4a8FVcQRtDGTujsO/WvBJ5 ymXxx3P2ypCOllmnpm9DBKVd6kPvWFyq05GgaQtTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9iiuE4RrxDJYEJy+relnSQPcCZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwMmZhMTk2LTdmYzQtNDJkNy05ZWRhLWVhZDY0NWMyMDA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36AwDQYJKoZIhvcNAQELBQADggEBALlTdUIcUuDVAFzHtoU59sltCKe1 EzDbJb1gfSABk5s2LqHiRysQxU9gWa4N5cw9tXTV3pcvPo1s8U3kqvKuCiBPyqOi pIlnp6jnGNDO53v8JXdvUMlHj9m6eQB1WTxlXEUQuRyS2uvNLO6qy5BuzOAlhT6Q A5jJMqm82oML13Ny0xeDPyw6wzBmPY/X042K1RH17ryOa9jcdXo9ubO6Cv3ycJco q+jSTd3r51BM26dMRGhbD56fyvopr375W3btr9VeXegFcg7C2Jfc4Xa0m8xMfgqd HoYXJXBNmNWcjUm8kUqSDNTe3omhi+LMAFjnfQvweFkhYD23qhvwTCzTKos= -----END CERTIFICATE-----Generated at Wed Apr 16 16:48:53 2025 by rpki-client