$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa File: 2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa (raw, json) Hash identifier: 0FInqRCUD1BGcvXhMGB7Qp17ACmf6IBg7DvWU66TG3c= Subject key identifier: 22:9B:63:40:00:91:3F:22:1E:25:3A:38:B0:85:D8:BC:C8:49:31:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 187F52B124F58635906D6F2636772C79BF5799B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa Signing time: Fri 04 Apr 2025 00:10:19 +0000 ROA not before: Fri 04 Apr 2025 00:10:19 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:7f:52:b1:24:f5:86:35:90:6d:6f:26:36:77:2c:79:bf:57:99:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:10:19 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=22ba41595eed9fb5123c3c1cbcd564379907b73d34948fa43e75bcd60efe4605, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:ec:0b:d6:0c:39:68:2b:fc:ee:7c:b4:06: 48:1b:a6:dd:a8:04:27:15:da:ec:e2:11:ab:b2:d2: ed:56:9c:aa:48:c6:bf:8a:37:cf:37:90:8e:93:f7: 96:0e:1b:78:17:61:97:af:25:6f:aa:79:d3:d4:46: a3:9d:02:80:5b:2d:bd:ff:ca:26:07:12:ff:35:05: 4e:9d:90:15:45:9a:3d:d0:da:a8:b9:14:18:9d:f7: 0b:c0:7f:79:38:da:c5:f2:20:f9:db:a3:56:0b:08: 33:ec:41:75:84:ba:7c:44:2c:0c:10:cd:54:d7:2a: 30:62:da:e1:0c:80:6d:ba:b0:7e:fd:d4:42:13:9a: 6f:d3:75:a1:4c:c9:3f:33:f1:f6:34:45:a4:0c:ff: 7f:f1:b8:37:3a:9c:be:55:2c:8e:ad:e1:ad:07:0e: 06:c5:32:b9:d8:df:8a:a6:fb:03:31:4e:42:e8:e6: b1:e4:a2:89:26:f6:3f:8c:3b:f2:25:06:26:57:82: 19:18:29:3e:58:4a:fc:57:d3:64:6a:f2:8a:02:e8: 01:0d:3a:3d:a2:78:e7:f7:a9:24:2b:9b:b6:b6:10: 62:6a:0f:21:01:51:9f:a8:e9:8c:9d:55:7b:7a:54: 0e:a9:e0:de:22:60:f7:17:1e:91:a1:b0:70:d3:5b: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9B:63:40:00:91:3F:22:1E:25:3A:38:B0:85:D8:BC:C8:49:31:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:57:4b:da:b7:9c:7d:07:71:1b:c5:05:25:f2:e7:9e:53:5c: 93:12:38:72:5a:98:56:7e:a4:98:0d:ba:1d:25:ee:91:26:48: 0c:58:22:5a:c6:60:5d:54:33:16:2e:88:49:dc:89:da:08:4a: 5f:05:c8:a8:3b:f5:d1:78:2c:9b:8e:44:15:a7:83:99:85:40: 0a:bd:a9:2c:ed:11:c9:9b:bf:97:70:fa:80:8c:97:46:ba:0f: 55:b2:6d:dd:42:b9:49:e2:ac:1b:b1:93:56:23:0c:9b:6f:46: 45:5d:ca:15:ad:76:d1:8d:de:a3:81:bc:4f:0c:92:76:41:48: 5d:18:0f:0d:45:49:3a:70:3d:79:2b:f4:f7:40:2e:b2:8b:7f: 0b:4e:a9:ee:5e:14:19:0a:d3:be:d0:84:14:14:9b:79:91:82: f6:74:11:5d:31:87:8d:aa:a3:45:3c:04:73:67:12:a1:42:c5: 6d:b0:e3:19:b6:16:89:cc:d3:48:3a:03:f4:aa:37:d6:67:a8: f6:47:9f:01:4f:5c:28:f3:df:5e:84:81:6b:7b:9e:e0:b4:51: 8d:1b:32:40:7a:8e:41:6c:93:0f:cd:d2:46:c7:f1:ac:98:bd: ba:b6:b4:66:eb:6b:7c:4b:6b:96:37:fc:46:1c:2c:bf:ce:90: fe:a9:ad:66 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGH9SsST1hjWQbW8mNncseb9XmbAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMDE5WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmJhNDE1OTVlZWQ5ZmI1MTIzYzNjMWNiY2Q1NjQzNzk5 MDdiNzNkMzQ5NDhmYTQzZTc1YmNkNjBlZmU0NjA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLzOwL1gw5aCv87ny0Bkgbpt2oBCcV2uziEauy0u1WnKpI xr+KN883kI6T95YOG3gXYZevJW+qedPURqOdAoBbLb3/yiYHEv81BU6dkBVFmj3Q 2qi5FBid9wvAf3k42sXyIPnbo1YLCDPsQXWEunxELAwQzVTXKjBi2uEMgG26sH79 1EITmm/TdaFMyT8z8fY0RaQM/3/xuDc6nL5VLI6t4a0HDgbFMrnY34qm+wMxTkLo 5rHkookm9j+MO/IlBiZXghkYKT5YSvxX02Rq8ooC6AENOj2ieOf3qSQrm7a2EGJq DyEBUZ+o6YydVXt6VA6p4N4iYPcXHpGhsHDTWxGdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIptjQACRPyIeJTo4sIXYvMhJMUMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZjcwNDE2LTM5N2EtNGVhNC1iN2IxLWFkN2UwNDVjNzJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2hjANBgkqhkiG9w0BAQsFAAOCAQEAx1dL2recfQdxG8UFJfLnnlNckxI4 clqYVn6kmA26HSXukSZIDFgiWsZgXVQzFi6ISdyJ2ghKXwXIqDv10Xgsm45EFaeD mYVACr2pLO0RyZu/l3D6gIyXRroPVbJt3UK5SeKsG7GTViMMm29GRV3KFa120Y3e o4G8TwySdkFIXRgPDUVJOnA9eSv090Ausot/C06p7l4UGQrTvtCEFBSbeZGC9nQR XTGHjaqjRTwEc2cSoULFbbDjGbYWiczTSDoD9Ko31meo9kefAU9cKPPfXoSBa3ue 4LRRjRsyQHqOQWyTD83SRsfxrJi9ura0ZutrfEtrljf8Rhwsv86Q/qmtZg== -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:29 2025 by rpki-client