$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa File: 2cd41937-b307-4b78-8756-47c56035ec43.roa (raw, json) Hash identifier: 0LnpC5Z4IsMJ8MiHn9dB0N5bEHwTcaOLIvaboDQ899U= Subject key identifier: FD:51:F6:A9:ED:BE:80:44:25:0C:C7:53:3D:AD:16:D6:6E:83:AE:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36334A2B2C599267AE77D74650DBF1270D50ABF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa Signing time: Fri 04 Apr 2025 00:12:00 +0000 ROA not before: Fri 04 Apr 2025 00:12:00 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:33:4a:2b:2c:59:92:67:ae:77:d7:46:50:db:f1:27:0d:50:ab:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:12:00 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=82a49aaa6b1630ffb65416cdab69bfee41ccca14d0b521b40f379de2ba42d5a5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4f:4f:f1:be:48:4e:7d:b6:e7:84:a3:0a:e3: 57:7f:cc:27:3b:c9:84:c6:1a:fb:a9:a1:20:51:e5: 76:06:9d:70:74:8f:8b:3e:c8:f4:77:8a:2a:ad:b4: b7:5f:89:a2:ba:f4:99:b6:5c:50:da:8e:91:3e:66: c6:8e:4f:71:e3:18:01:a4:1d:ea:3b:86:77:4d:e3: 34:4d:2d:04:60:dd:d6:c7:03:67:30:2a:c9:8b:3c: a4:ef:ff:55:68:64:4a:c1:7e:67:04:cb:bd:85:bc: 51:41:82:9a:43:ba:7b:2d:34:11:fc:97:1c:6a:70: 4e:33:95:c8:6f:fa:fe:bd:11:38:e6:17:c4:da:32: 3e:82:bf:22:cd:1c:08:81:28:c6:85:a0:d8:a4:85: b3:00:fd:a5:80:a6:6b:a9:97:f4:3d:8f:3f:78:5d: 09:67:69:64:ba:68:2a:02:d2:79:02:6a:4d:ca:e8: 4a:b6:9e:a3:81:3b:cc:56:7b:ca:19:13:46:0c:f6: 98:df:21:c9:8c:26:7b:35:91:bd:bb:8c:89:00:cc: d9:8a:c9:00:98:6c:74:f5:ef:b3:81:e4:8a:72:0e: 28:ca:f8:9d:7b:ab:e8:1e:de:f3:6b:00:1a:1a:67: 08:59:69:90:47:7d:8e:4e:8e:5f:be:8c:3c:51:2a: e7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:51:F6:A9:ED:BE:80:44:25:0C:C7:53:3D:AD:16:D6:6E:83:AE:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.16.0/20 Signature Algorithm: sha256WithRSAEncryption 85:1e:05:39:a3:a8:0d:93:27:b0:27:9b:3a:29:63:cd:e7:d0: e3:65:23:06:c2:17:d3:20:fb:b1:4f:f4:c6:79:9c:d5:b8:18: ed:5f:5f:5d:02:6f:5c:d8:3b:21:a7:d7:47:7b:96:a8:ae:83: 68:c3:76:dc:d9:5f:ec:c9:65:08:6a:04:11:9e:e6:8d:64:e3: a9:9f:8a:d8:30:bc:7e:d8:2a:59:54:1d:71:f4:20:51:51:82: 2e:f4:00:24:e0:fe:5c:b4:a6:57:95:da:67:e1:82:bd:ec:2f: 56:d8:72:f1:c6:fb:5e:fd:89:e6:67:ad:da:5b:ad:1e:40:7f: 95:48:33:41:52:12:6a:5b:9d:6e:5e:3a:af:17:6d:dc:65:6a: 29:e2:1d:eb:96:0a:94:bc:71:fd:03:90:a6:0f:84:85:65:2a: 73:a4:f3:32:58:58:94:50:e0:fb:98:53:ca:18:4a:49:6c:3e: d9:b4:97:cf:86:54:7a:11:14:87:fb:6b:a5:21:67:50:5f:85: d8:18:d7:46:30:d1:b1:a2:94:88:a3:1b:5c:7d:f9:b6:07:67: 6c:0c:08:d8:96:37:84:1f:34:21:c5:4d:08:84:66:9a:a1:c4: 9d:0d:52:fd:0d:50:9e:4e:d5:eb:a2:32:84:db:39:35:ab:1d: 0b:e3:0a:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNjNKKyxZkmeud9dGUNvxJw1Qq/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMjAwWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmE0OWFhYTZiMTYzMGZmYjY1NDE2Y2RhYjY5YmZlZTQx Y2NjYTE0ZDBiNTIxYjQwZjM3OWRlMmJhNDJkNWE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoT0/xvkhOfbbnhKMK41d/zCc7yYTGGvupoSBR5XYGnXB0 j4s+yPR3iiqttLdfiaK69Jm2XFDajpE+ZsaOT3HjGAGkHeo7hndN4zRNLQRg3dbH A2cwKsmLPKTv/1VoZErBfmcEy72FvFFBgppDunstNBH8lxxqcE4zlchv+v69ETjm F8TaMj6CvyLNHAiBKMaFoNikhbMA/aWApmupl/Q9jz94XQlnaWS6aCoC0nkCak3K 6Eq2nqOBO8xWe8oZE0YM9pjfIcmMJns1kb27jIkAzNmKyQCYbHT177OB5IpyDijK +J17q+ge3vNrABoaZwhZaZBHfY5Ojl++jDxRKue1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/VH2qe2+gEQlDMdTPa0W1m6DroswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjZDQxOTM3LWIzMDctNGI3OC04NzU2LTQ3YzU2MDM1ZWM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjNhAwDQYJKoZIhvcNAQELBQADggEBAIUeBTmjqA2TJ7AnmzopY83n0ONl IwbCF9Mg+7FP9MZ5nNW4GO1fX10Cb1zYOyGn10d7lqiug2jDdtzZX+zJZQhqBBGe 5o1k46mfitgwvH7YKllUHXH0IFFRgi70ACTg/ly0pleV2mfhgr3sL1bYcvHG+179 ieZnrdpbrR5Af5VIM0FSEmpbnW5eOq8XbdxlainiHeuWCpS8cf0DkKYPhIVlKnOk 8zJYWJRQ4PuYU8oYSklsPtm0l8+GVHoRFIf7a6UhZ1BfhdgY10Yw0bGilIijG1x9 +bYHZ2wMCNiWN4QfNCHFTQiEZpqhxJ0NUv0NUJ5O1euiMoTbOTWrHQvjCnI= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:51 2025 by rpki-client