$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa File: 284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa (raw, json) Hash identifier: mIyGHkm9P6Lxe/zcyAowhucoN1/MhUr+lR6yxd8SE4s= Subject key identifier: CF:E7:AA:3C:1B:C9:23:47:6E:81:B2:83:E1:63:87:FE:3D:53:AB:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 627C26BEDAF4641AE496D1B535B7D42E0800313C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa Signing time: Wed 09 Apr 2025 00:31:03 +0000 ROA not before: Wed 09 Apr 2025 00:31:03 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 67.220.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7c:26:be:da:f4:64:1a:e4:96:d1:b5:35:b7:d4:2e:08:00:31:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:31:03 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=b22ca4e7d506ba757d4c8d35c3fa329eb1385f76c56565909b7e7efc48fbcec2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2a:e3:34:9b:84:79:4c:20:9f:c5:da:2d:fd: db:6c:b9:d9:5b:11:8e:21:2b:76:45:64:96:11:96: ee:3c:ed:13:25:9e:89:c2:d2:aa:cf:21:66:36:45: a5:20:fb:0b:35:4b:30:54:33:ac:58:8f:d2:1b:44: 46:bc:a2:8d:25:77:90:1f:e2:d1:f7:42:19:02:94: 73:db:0a:a8:5f:c4:b9:94:fd:4f:e0:01:81:7b:f4: 2f:d1:7a:9e:88:d6:79:f6:6f:0b:b6:40:77:7e:61: e5:20:a3:4a:f9:a5:32:fd:a4:31:00:bc:55:2c:4c: da:98:9c:21:7c:35:87:e1:4f:49:1d:cd:fe:d2:30: 39:33:01:58:75:16:74:dc:dc:21:58:76:04:cd:33: 8c:f8:4c:73:0f:e6:2f:fc:16:6f:f6:a5:e2:14:ae: 8d:1e:c6:2d:71:73:83:68:88:9d:41:b3:4a:b7:e3: 53:1d:a1:15:e5:94:6c:6f:fd:70:3c:e2:e7:4b:db: 9e:78:73:b3:93:a3:81:23:7e:25:b2:ca:c4:e6:ee: 8f:99:8d:96:52:ce:de:c8:6d:1e:0a:fd:ec:5d:4e: 5d:15:cf:0b:5c:8b:7b:cc:8e:fd:5b:36:34:3b:dc: 63:bb:86:82:72:0e:0c:47:37:8a:e4:89:ca:33:be: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E7:AA:3C:1B:C9:23:47:6E:81:B2:83:E1:63:87:FE:3D:53:AB:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.220.224.0/19 Signature Algorithm: sha256WithRSAEncryption a6:64:bc:ea:1d:bb:52:0f:c7:87:a5:e6:5a:c1:b4:fc:fd:67: 21:e5:6c:ee:ab:bd:2f:33:34:bd:ff:98:1f:e7:e5:4f:f1:bf: 10:40:ee:b4:e1:fa:ab:32:e6:72:dc:4d:63:ef:0e:73:b3:95: 33:91:93:02:34:87:72:9f:4f:a0:f8:f8:6e:9f:d7:4f:3b:6e: 4a:f2:cb:e0:58:39:de:1e:f0:39:76:56:b4:86:02:c1:d5:29: aa:56:3b:0d:53:69:ac:2b:17:92:6e:c2:40:90:5b:76:25:a1: fc:ea:c9:ac:08:52:6c:0a:8d:8a:ce:a0:6b:08:80:6a:19:51: 66:08:44:b5:d8:1f:fa:e9:51:5a:c7:4b:fd:96:38:74:2a:47: f5:e7:8b:d7:65:ee:75:a0:8e:4a:90:b7:a1:37:6f:08:7c:eb: a1:14:82:5e:05:8a:15:0f:23:df:1e:b2:1f:88:e9:5a:82:85: 92:c5:54:bf:1e:23:56:0e:bc:ba:76:dd:90:1c:a4:df:f4:36: 69:63:1e:29:1a:95:84:4e:fb:ac:b7:a2:c6:e2:7a:3f:82:f3: 70:45:4d:62:f2:90:15:b5:62:8d:49:a2:74:e7:07:7d:3c:b0: 01:b3:dd:5a:9f:e8:f8:8e:e5:39:df:d4:a8:7e:f6:1a:d6:a4: 86:a3:fe:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYnwmvtr0ZBrkltG1NbfULggAMTwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAzMTAzWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjJjYTRlN2Q1MDZiYTc1N2Q0YzhkMzVjM2ZhMzI5ZWIx Mzg1Zjc2YzU2NTY1OTA5YjdlN2VmYzQ4ZmJjZWMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYKuM0m4R5TCCfxdot/dtsudlbEY4hK3ZFZJYRlu487RMl nonC0qrPIWY2RaUg+ws1SzBUM6xYj9IbREa8oo0ld5Af4tH3QhkClHPbCqhfxLmU /U/gAYF79C/Rep6I1nn2bwu2QHd+YeUgo0r5pTL9pDEAvFUsTNqYnCF8NYfhT0kd zf7SMDkzAVh1FnTc3CFYdgTNM4z4THMP5i/8Fm/2peIUro0exi1xc4NoiJ1Bs0q3 41MdoRXllGxv/XA84udL2554c7OTo4EjfiWyysTm7o+ZjZZSzt7IbR4K/exdTl0V zwtci3vMjv1bNjQ73GO7hoJyDgxHN4rkicozvmiDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz+eqPBvJI0dugbKD4WOH/j1Tq+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4NGM5YTFiLTdlNGItNDMzZi1iMWYxLWY0Y2ViZmI2N2RjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVD3OAwDQYJKoZIhvcNAQELBQADggEBAKZkvOodu1IPx4el5lrBtPz9ZyHl bO6rvS8zNL3/mB/n5U/xvxBA7rTh+qsy5nLcTWPvDnOzlTORkwI0h3KfT6D4+G6f 1087bkryy+BYOd4e8Dl2VrSGAsHVKapWOw1TaawrF5JuwkCQW3YlofzqyawIUmwK jYrOoGsIgGoZUWYIRLXYH/rpUVrHS/2WOHQqR/Xni9dl7nWgjkqQt6E3bwh866EU gl4FihUPI98esh+I6VqChZLFVL8eI1YOvLp23ZAcpN/0NmljHikalYRO+6y3osbi ej+C83BFTWLykBW1Yo1JonTnB308sAGz3Vqf6PiO5Tnf1Kh+9hrWpIaj/p8= -----END CERTIFICATE-----Generated at Wed Apr 16 16:46:42 2025 by rpki-client