$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa File: 33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa (raw, json) Hash identifier: TuEWl54QJLvh+XYlttdOkzxgFTBizUaSYsDgBnESLUE= Subject key identifier: C0:17:E8:44:1E:55:46:6F:94:03:C7:8A:A9:25:7C:8B:B1:76:1F:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43E73086DA494DCC2BDBE90A543E2D10246143AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa Signing time: Mon 31 Mar 2025 15:11:29 +0000 ROA not before: Mon 31 Mar 2025 15:11:29 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 139.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e7:30:86:da:49:4d:cc:2b:db:e9:0a:54:3e:2d:10:24:61:43:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:11:29 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=612fb21caf749cf0eeeabe07bcfb8f4376c274a4d7534a0beb67de6e429a5312, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ac:70:b2:90:9b:b5:85:2b:bb:2f:5b:14:cd: b0:23:d5:66:88:cf:d7:1e:34:6f:31:22:47:3b:c4: be:38:a6:c2:55:1c:ef:31:ef:39:06:48:0c:87:be: 27:a0:53:6c:df:95:34:ee:2a:43:81:2c:71:a5:01: 6b:50:bb:c9:f6:8e:eb:3b:18:14:16:ce:ae:bd:3e: 39:f7:a9:52:9a:36:62:a3:23:58:a6:61:3c:19:61: 76:ce:a5:76:78:4f:55:95:f5:9e:c8:07:1a:f9:71: 2a:19:69:a7:a1:9f:8a:52:39:e2:d2:60:e5:7d:74: f9:c9:78:56:0a:8c:f5:43:e9:3d:b2:79:84:87:37: 10:b3:41:0c:76:f5:04:38:65:2b:81:91:f5:5c:88: 34:10:65:6e:d3:09:20:62:be:12:71:3a:2f:0f:ce: 8d:ca:c0:4f:27:64:17:3e:40:a7:ca:43:66:22:35: 45:f8:ab:73:e7:9f:2b:7e:0a:f8:3b:eb:e6:11:91: 58:ea:36:0e:92:67:21:6b:57:9c:8e:8c:a4:5f:58: 74:ba:d2:92:ae:c6:7c:2f:5b:78:d3:ed:db:69:4c: 69:59:b2:88:87:8c:4d:a7:01:2c:48:07:41:63:4d: d3:fc:df:60:78:30:34:12:1a:9e:58:69:57:05:7d: c4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:17:E8:44:1E:55:46:6F:94:03:C7:8A:A9:25:7C:8B:B1:76:1F:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:c0:34:23:4a:78:57:e6:2e:b7:7f:47:0f:77:76:74:0c:2d: a3:fc:57:6e:85:a7:10:a9:e4:4c:d5:e0:df:83:6d:08:42:4e: bf:78:33:f2:72:ed:a7:78:85:5f:c5:4a:1e:f4:f7:2f:49:81: 26:e0:07:de:0e:7f:3c:67:12:1e:68:d1:2a:8c:77:7f:6e:a7: 7d:94:c7:94:5c:3c:bd:3b:f8:8e:ce:c3:50:f6:3a:39:00:6d: a4:ec:0a:90:81:b3:d8:43:a1:30:79:a2:72:34:68:6c:b9:b6: 73:15:21:80:e2:50:e4:7f:4d:41:ff:1b:25:10:0b:83:f3:14: 64:fe:98:5d:08:8c:ca:ff:6b:43:5f:c3:e2:bb:a8:69:59:0a: f7:c7:87:cc:eb:2d:c1:fb:a3:e6:6f:2b:4e:26:89:10:8e:fd: 8a:ab:69:88:ce:31:7b:28:a6:f6:9a:38:9d:ef:ef:20:d9:88: b8:05:9a:09:0a:4d:c3:f0:73:10:1a:e8:67:7c:94:56:8b:57: 4d:4d:5e:a9:b5:a7:8a:18:67:99:06:a2:b4:8f:d3:49:32:87: c4:54:3c:3e:a7:60:74:89:ac:d4:5b:31:55:9f:c2:98:bd:55: eb:59:71:82:fb:12:5d:fb:59:eb:ee:1f:6e:c4:db:75:b3:7e: 0c:d7:fc:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ+cwhtpJTcwr2+kKVD4tECRhQ64wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUxMTI5WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTJmYjIxY2FmNzQ5Y2YwZWVlYWJlMDdiY2ZiOGY0Mzc2 YzI3NGE0ZDc1MzRhMGJlYjY3ZGU2ZTQyOWE1MzEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDerHCykJu1hSu7L1sUzbAj1WaIz9ceNG8xIkc7xL44psJV HO8x7zkGSAyHviegU2zflTTuKkOBLHGlAWtQu8n2jus7GBQWzq69Pjn3qVKaNmKj I1imYTwZYXbOpXZ4T1WV9Z7IBxr5cSoZaaehn4pSOeLSYOV9dPnJeFYKjPVD6T2y eYSHNxCzQQx29QQ4ZSuBkfVciDQQZW7TCSBivhJxOi8Pzo3KwE8nZBc+QKfKQ2Yi NUX4q3Pnnyt+Cvg76+YRkVjqNg6SZyFrV5yOjKRfWHS60pKuxnwvW3jT7dtpTGlZ soiHjE2nASxIB0FjTdP832B4MDQSGp5YaVcFfcSXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwBfoRB5VRm+UA8eKqSV8i7F2H4MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzYTMzZjM0LWVlZmYtNGVjMC1iMTJkLWJhYzRkZmE3OWZlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLWTANBgkqhkiG9w0BAQsFAAOCAQEAvMA0I0p4V+Yut39HD3d2dAwto/xX boWnEKnkTNXg34NtCEJOv3gz8nLtp3iFX8VKHvT3L0mBJuAH3g5/PGcSHmjRKox3 f26nfZTHlFw8vTv4js7DUPY6OQBtpOwKkIGz2EOhMHmicjRobLm2cxUhgOJQ5H9N Qf8bJRALg/MUZP6YXQiMyv9rQ1/D4ruoaVkK98eHzOstwfuj5m8rTiaJEI79iqtp iM4xeyim9po4ne/vINmIuAWaCQpNw/BzEBroZ3yUVotXTU1eqbWnihhnmQaitI/T STKHxFQ8PqdgdIms1FsxVZ/CmL1V61lxgvsSXftZ6+4fbsTbdbN+DNf8/Q== -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:30 2025 by rpki-client