$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f3125c-a240-4e96-98f9-38d7861a1143.roa File: 40f3125c-a240-4e96-98f9-38d7861a1143.roa (raw, json) Hash identifier: JgGMOSPJdN0oTLM+2H7j+BT6RFSaGCE8zIpJHyfHqzo= Subject key identifier: 85:88:A0:12:0A:BC:45:CD:6D:0B:EB:62:AA:9A:7F:68:A3:7F:9B:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 322878FD5E4E3ED2660FE3A97296A18EE07E08A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f3125c-a240-4e96-98f9-38d7861a1143.roa Signing time: Mon 14 Apr 2025 15:10:29 +0000 ROA not before: Mon 14 Apr 2025 15:10:29 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.73.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:28:78:fd:5e:4e:3e:d2:66:0f:e3:a9:72:96:a1:8e:e0:7e:08:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:10:29 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=fb13242dfb0355bed997f3bd397fbfd75dd78f50d188f27722c537b4f4f28c6f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f4:7d:a6:8c:d0:d1:6f:10:05:8d:57:09:c1: 5f:44:43:94:68:4f:6c:08:72:6f:03:f2:1e:46:e3: 4d:a9:43:c6:ac:fc:ea:bb:fe:40:63:44:7b:da:ce: 6e:9b:c9:3a:0a:fd:36:ee:3e:f1:c0:57:92:6b:7b: ef:76:e3:82:40:34:83:30:a9:b1:47:b7:77:fc:c0: b8:86:2d:fb:06:f5:bb:f8:7a:10:31:b8:f6:d3:fb: df:54:0e:f1:5a:61:07:07:43:2f:f5:aa:78:ca:39: 7c:b1:5b:5e:b0:69:ae:78:fa:cb:a0:fa:9b:7c:38: 84:88:47:0d:c6:92:61:0b:63:2a:6d:a0:4e:27:6b: 7d:cf:8e:78:41:f2:ff:27:b1:e8:40:23:3d:04:37: 3b:08:9f:15:a1:a4:4e:58:e7:15:ff:ac:10:d6:2a: c4:c5:37:81:e7:f8:0f:6f:75:95:c8:e8:57:4a:1a: 47:0b:ff:e3:a8:c1:d5:83:e9:01:3b:34:4d:9a:a9: 69:0b:ee:2f:bf:39:59:bf:7f:7c:f6:d9:e3:e8:03: e8:d7:c7:0b:20:17:a0:ea:4b:07:66:b4:17:09:e9: 11:24:3e:38:93:57:bc:90:1d:48:2a:fc:8a:42:9d: 41:62:42:5a:61:81:db:2d:be:48:0f:96:25:2b:cb: 62:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:88:A0:12:0A:BC:45:CD:6D:0B:EB:62:AA:9A:7F:68:A3:7F:9B:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f3125c-a240-4e96-98f9-38d7861a1143.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.152.0/21 Signature Algorithm: sha256WithRSAEncryption 37:6a:a3:7c:4d:35:9c:70:03:99:f8:5f:d7:4f:c1:3a:06:ec: 74:38:bc:94:f4:68:f0:60:d4:4d:56:33:df:5d:80:b9:08:0b: 8f:9f:b7:9e:d0:d9:c4:68:01:e6:42:77:26:b6:ee:db:86:28: 69:ef:bc:74:ee:74:83:3d:f2:22:08:66:6d:94:ce:84:4d:3b: a9:5e:de:b2:b7:bd:ee:8b:74:3e:be:b9:02:62:69:7a:dc:d7: cd:5e:a5:46:4c:b5:29:04:ee:3c:9e:46:e2:c1:31:20:56:4f: c4:86:83:8f:3d:f6:0d:b5:17:e9:9f:e8:2b:2c:7d:b4:bf:97: 94:d6:54:f1:59:a2:b1:79:ff:f8:d7:85:db:53:e0:4f:ac:1a: 2c:f6:48:e4:b0:9c:8d:8c:83:05:a1:7c:dd:fb:aa:b2:69:8f: 8d:05:34:0e:05:70:25:4c:df:10:97:9f:20:d0:39:64:23:b6: c2:da:1a:ad:91:cc:8b:6f:ec:54:11:e3:46:7f:6c:6f:5e:6b: 89:48:b3:a2:fd:55:17:e6:e3:ae:bd:48:f6:ba:49:5f:bd:11: 6d:71:e2:35:ed:5a:91:f8:27:43:80:8c:f2:22:0a:ae:0b:a5: 20:fa:09:48:f9:2a:3b:18:37:cd:30:85:2b:93:5d:d6:0b:76: ba:aa:34:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMih4/V5OPtJmD+OpcpahjuB+CKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUxMDI5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjEzMjQyZGZiMDM1NWJlZDk5N2YzYmQzOTdmYmZkNzVk ZDc4ZjUwZDE4OGYyNzcyMmM1MzdiNGY0ZjI4YzZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx9H2mjNDRbxAFjVcJwV9EQ5RoT2wIcm8D8h5G402pQ8as /Oq7/kBjRHvazm6byToK/TbuPvHAV5Jre+9244JANIMwqbFHt3f8wLiGLfsG9bv4 ehAxuPbT+99UDvFaYQcHQy/1qnjKOXyxW16waa54+sug+pt8OISIRw3GkmELYypt oE4na33PjnhB8v8nsehAIz0ENzsInxWhpE5Y5xX/rBDWKsTFN4Hn+A9vdZXI6FdK GkcL/+OowdWD6QE7NE2aqWkL7i+/OVm/f3z22ePoA+jXxwsgF6DqSwdmtBcJ6REk PjiTV7yQHUgq/IpCnUFiQlphgdstvkgPliUry2KdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhYigEgq8Rc1tC+tiqpp/aKN/m4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwZjMxMjVjLWEyNDAtNGU5Ni05OGY5LTM4ZDc4NjFhMTE0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZgwDQYJKoZIhvcNAQELBQADggEBADdqo3xNNZxwA5n4X9dPwToG7HQ4 vJT0aPBg1E1WM99dgLkIC4+ft57Q2cRoAeZCdya27tuGKGnvvHTudIM98iIIZm2U zoRNO6le3rK3ve6LdD6+uQJiaXrc181epUZMtSkE7jyeRuLBMSBWT8SGg4899g21 F+mf6CssfbS/l5TWVPFZorF5//jXhdtT4E+sGiz2SOSwnI2MgwWhfN37qrJpj40F NA4FcCVM3xCXnyDQOWQjtsLaGq2RzItv7FQR40Z/bG9ea4lIs6L9VRfm4669SPa6 SV+9EW1x4jXtWpH4J0OAjPIiCq4LpSD6CUj5KjsYN80whSuTXdYLdrqqNMA= -----END CERTIFICATE-----Generated at Wed Apr 16 16:58:19 2025 by rpki-client