$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa File: 2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa (raw, json) Hash identifier: G8mNDEbHV9TjOdjC5BEyqYIPa3ZcAej205RvgCISGaA= Subject key identifier: 83:44:DC:F1:C7:3D:7A:FD:E2:18:4B:10:20:4E:FA:EB:A2:7A:49:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D44191F4D88797F53216570F912DF63BAD8EDAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa Signing time: Mon 07 Apr 2025 15:00:58 +0000 ROA not before: Mon 07 Apr 2025 15:00:58 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 155.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:44:19:1f:4d:88:79:7f:53:21:65:70:f9:12:df:63:ba:d8:ed:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:00:58 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=d305e33fd5aed70d53dcb7164abbd66ea9d210b7cd557aad8cf861fd39c65bf3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ab:aa:af:a1:3a:a3:7f:31:3c:4c:5e:b9:c2: 9a:db:b1:ce:a1:04:77:d8:2c:3b:f1:07:e5:b9:69: 77:78:79:4c:77:ae:da:ee:d6:1e:b6:0b:61:68:1d: 53:b1:c9:06:28:62:b4:25:43:8d:56:35:49:b1:58: ca:17:c6:a9:63:cd:89:a7:70:ad:4b:7d:e7:1f:d9: e9:70:db:7c:6f:45:07:e7:55:6f:db:ba:6d:0a:c2: 5e:a9:c6:9e:d8:3c:51:a8:28:3f:ad:d9:27:43:77: 39:59:1a:4c:89:91:00:8a:89:b6:ec:05:7c:95:09: 66:56:6a:8c:04:32:87:4a:6b:13:5d:ec:c7:60:33: 74:6c:d3:df:b6:8a:f9:01:ac:81:75:04:5c:d2:3e: 6c:f5:0c:75:04:0e:3a:fa:58:5f:49:3b:e7:2f:c9: 7e:e5:46:0d:d9:56:8f:41:35:d7:61:7c:32:3d:0d: ac:11:db:de:5c:8f:2e:85:92:7c:c3:a0:9d:de:d9: 1f:21:ca:53:f7:5b:54:f1:87:44:52:a0:06:c3:9f: dc:3d:96:96:24:65:6d:b8:a1:ce:b6:8c:90:c0:6e: f0:69:8f:7d:e0:b7:d8:bd:ce:4d:54:ed:1e:45:e8: 44:28:b4:ca:44:ac:6e:1f:2d:60:3c:3f:38:1d:e7: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:44:DC:F1:C7:3D:7A:FD:E2:18:4B:10:20:4E:FA:EB:A2:7A:49:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:47:54:0a:5b:bb:34:4c:45:e4:9b:2c:ba:f9:aa:c2:8d:46: bf:ae:95:dd:1c:65:b4:ae:b7:76:92:ba:d3:21:52:71:5d:89: 94:ba:a7:3c:d5:82:a2:8c:3b:60:cd:fd:d3:34:73:78:de:8b: 78:f6:17:d7:98:e6:f7:5e:38:a4:83:07:0d:01:21:d3:ef:ee: 0c:33:9b:a3:5c:4c:22:9a:dd:83:e8:8d:56:cb:df:81:5c:d3: d2:bb:16:82:e8:38:2c:63:fd:af:df:03:4e:07:14:8b:69:08: 7a:e0:bf:d7:5c:1b:6c:12:3a:a4:b9:aa:d1:45:01:13:b5:fd: 5c:94:0a:15:28:fb:30:34:aa:8c:e0:b8:56:6f:6c:a4:bb:f9: c0:f9:41:91:e8:6e:a4:a7:5e:12:e0:c5:aa:79:4a:d4:36:47: cf:1f:31:7b:28:62:11:bd:3b:37:b9:e2:8f:63:45:2c:31:22: 6b:39:8c:15:4e:71:3e:c7:be:e0:91:60:1a:7c:9a:eb:20:ea: 44:42:0d:6b:fa:b7:16:3e:5b:5a:d6:6a:ab:05:8d:26:46:9c: 96:26:50:ff:62:ec:99:be:34:87:4a:5c:a0:ae:ce:cf:6b:9f: d5:d9:34:f8:a3:66:e2:7e:32:d1:78:5c:e0:39:72:76:15:91: 20:98:0e:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPUQZH02IeX9TIWVw+RLfY7rY7awwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMDU4WhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzA1ZTMzZmQ1YWVkNzBkNTNkY2I3MTY0YWJiZDY2ZWE5 ZDIxMGI3Y2Q1NTdhYWQ4Y2Y4NjFmZDM5YzY1YmYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5q6qvoTqjfzE8TF65wprbsc6hBHfYLDvxB+W5aXd4eUx3 rtru1h62C2FoHVOxyQYoYrQlQ41WNUmxWMoXxqljzYmncK1Lfecf2elw23xvRQfn VW/bum0Kwl6pxp7YPFGoKD+t2SdDdzlZGkyJkQCKibbsBXyVCWZWaowEModKaxNd 7MdgM3Rs09+2ivkBrIF1BFzSPmz1DHUEDjr6WF9JO+cvyX7lRg3ZVo9BNddhfDI9 DawR295cjy6FknzDoJ3e2R8hylP3W1Txh0RSoAbDn9w9lpYkZW24oc62jJDAbvBp j33gt9i9zk1U7R5F6EQotMpErG4fLWA8Pzgd58ZLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUg0Tc8cc9ev3iGEsQIE7666J6SXUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNGQxZTVmLTE0ODMtNDAxMS1hN2IzLTAzNTNhMmM3NDEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbKDANBgkqhkiG9w0BAQsFAAOCAQEAWkdUClu7NExF5Jssuvmqwo1Gv66V 3RxltK63dpK60yFScV2JlLqnPNWCoow7YM390zRzeN6LePYX15jm9144pIMHDQEh 0+/uDDObo1xMIprdg+iNVsvfgVzT0rsWgug4LGP9r98DTgcUi2kIeuC/11wbbBI6 pLmq0UUBE7X9XJQKFSj7MDSqjOC4Vm9spLv5wPlBkehupKdeEuDFqnlK1DZHzx8x eyhiEb07N7nij2NFLDEiazmMFU5xPse+4JFgGnya6yDqREINa/q3Fj5bWtZqqwWN JkacliZQ/2Lsmb40h0pcoK7Oz2uf1dk0+KNm4n4y0Xhc4DlydhWRIJgOmg== -----END CERTIFICATE-----Generated at Wed Apr 16 16:48:33 2025 by rpki-client