$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa File: 242b5bdc-078e-4974-9ef3-af03ea079caa.roa (raw, json) Hash identifier: xZ97Qyat0/Mh4rbh4LmjBsKkjMIDPVxHaYZHJ4t/EUg= Subject key identifier: FB:B3:63:19:CB:7D:35:47:90:22:B9:39:70:F0:1B:8C:62:83:79:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54E1BDD4CD4D073CFDE0F7355629E023903C8644 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa Signing time: Tue 08 Apr 2025 00:31:15 +0000 ROA not before: Tue 08 Apr 2025 00:31:15 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e1:bd:d4:cd:4d:07:3c:fd:e0:f7:35:56:29:e0:23:90:3c:86:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:31:15 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=3c8d4f7cbe763ff58357a27e2ccb842757c9f642f98c1384acaf1675bb32a89c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:00:d8:fb:6e:b1:b9:00:fb:05:c7:4f:ff:ef: 63:6c:9e:05:1c:09:72:ef:27:bb:ed:b4:67:9b:6f: e5:0c:81:15:8f:f7:d9:08:3d:15:49:96:1d:3f:4d: f3:37:95:3d:b5:94:8f:86:15:c3:7f:6d:fb:0e:39: 94:1b:a8:de:d8:f3:02:66:03:43:bd:5d:61:42:c8: 19:3e:0d:79:36:62:0e:86:21:a2:cd:ef:b4:6c:58: 72:f1:25:eb:d1:1e:4a:b9:cb:56:cf:3e:91:2b:65: 3d:1e:d9:b2:55:7a:c4:51:85:5d:57:03:85:11:41: 6f:b4:7b:ba:bc:e5:28:69:8a:f4:11:7e:ab:44:c8: 69:83:88:d0:7c:93:63:a7:f4:da:f8:46:44:9c:fa: 5b:93:3b:51:c7:82:0c:11:23:6f:11:48:47:3a:1d: 6b:d2:17:16:34:6e:b0:b5:67:fd:1b:bb:88:77:bd: 94:b3:ec:35:50:b4:fc:5e:9d:56:61:83:fe:8b:71: 3f:f3:92:8e:7d:41:fb:dd:54:78:5e:e7:8e:66:9f: 1a:39:19:b1:dc:35:6a:d7:94:9f:79:74:95:c1:b2: 23:48:b5:a6:00:10:08:a0:a8:49:b1:d0:1d:10:e4: f8:75:41:90:e2:cb:90:4d:74:72:df:81:cc:3e:1b: 44:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B3:63:19:CB:7D:35:47:90:22:B9:39:70:F0:1B:8C:62:83:79:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.120.0/21 Signature Algorithm: sha256WithRSAEncryption cd:22:5b:e0:63:55:5e:67:df:1c:84:b0:85:3b:af:a6:84:89: 24:9f:94:f2:c0:de:66:e4:a4:50:7b:ce:3f:6d:5e:9b:64:e9: 98:88:16:84:6c:03:ae:ee:1c:4a:be:b6:46:9e:0f:66:9c:c0: 32:0a:49:e0:8d:70:d3:08:54:4c:e0:84:48:c7:cd:69:26:c1: 26:f8:7c:5a:d4:f9:b4:a5:84:22:c4:82:44:8b:35:cf:56:15: 04:aa:6d:e4:3e:89:19:cf:f7:0b:f8:e3:d5:08:bf:27:4e:5c: 13:3b:06:6f:3e:2b:3c:df:76:ad:4b:d1:55:87:82:3d:4e:d4: 95:5e:b4:b6:c3:8b:67:e6:4e:06:a4:3a:ef:57:9c:f2:19:77: 23:a4:15:5b:f4:18:33:c8:33:57:13:21:23:d6:6d:5c:11:4c: ed:ea:39:45:3b:a6:dc:78:31:bf:96:20:ee:12:9a:29:01:da: 08:17:0a:fb:a5:9d:2d:50:e5:89:27:83:c3:bc:69:c8:80:ff: 7c:01:9f:11:61:82:ee:39:8d:32:2c:77:93:18:53:eb:36:0e: 1f:69:bf:d5:2f:21:a8:7c:24:5a:16:15:a2:91:78:b3:51:28: 63:87:93:6d:c6:6d:fa:f9:dc:2e:be:95:9e:3e:fc:22:92:e5: 80:af:0b:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVOG91M1NBzz94Pc1VingI5A8hkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMTE1WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzhkNGY3Y2JlNzYzZmY1ODM1N2EyN2UyY2NiODQyNzU3 YzlmNjQyZjk4YzEzODRhY2FmMTY3NWJiMzJhODljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaANj7brG5APsFx0//72NsngUcCXLvJ7vttGebb+UMgRWP 99kIPRVJlh0/TfM3lT21lI+GFcN/bfsOOZQbqN7Y8wJmA0O9XWFCyBk+DXk2Yg6G IaLN77RsWHLxJevRHkq5y1bPPpErZT0e2bJVesRRhV1XA4URQW+0e7q85ShpivQR fqtEyGmDiNB8k2On9Nr4RkSc+luTO1HHggwRI28RSEc6HWvSFxY0brC1Z/0bu4h3 vZSz7DVQtPxenVZhg/6LcT/zko59QfvdVHhe545mnxo5GbHcNWrXlJ95dJXBsiNI taYAEAigqEmx0B0Q5Ph1QZDiy5BNdHLfgcw+G0QFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+7NjGct9NUeQIrk5cPAbjGKDefcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MmI1YmRjLTA3OGUtNDk3NC05ZWYzLWFmMDNlYTA3OWNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM/9ngwDQYJKoZIhvcNAQELBQADggEBAM0iW+BjVV5n3xyEsIU7r6aEiSSf lPLA3mbkpFB7zj9tXptk6ZiIFoRsA67uHEq+tkaeD2acwDIKSeCNcNMIVEzghEjH zWkmwSb4fFrU+bSlhCLEgkSLNc9WFQSqbeQ+iRnP9wv449UIvydOXBM7Bm8+Kzzf dq1L0VWHgj1O1JVetLbDi2fmTgakOu9XnPIZdyOkFVv0GDPIM1cTISPWbVwRTO3q OUU7ptx4Mb+WIO4SmikB2ggXCvulnS1Q5Ykng8O8aciA/3wBnxFhgu45jTIsd5MY U+s2Dh9pv9UvIah8JFoWFaKReLNRKGOHk23Gbfr53C6+lZ4+/CKS5YCvC+I= -----END CERTIFICATE-----Generated at Wed Apr 16 16:48:46 2025 by rpki-client