$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa File: 4460c29b-6af6-4d15-bee1-65deb7aba765.roa (raw, json) Hash identifier: o+8MUTX/yPQLa1ZZe9PrwGfZpAPslJtRCB13RpPa7+8= Subject key identifier: 48:2A:79:FD:F6:3D:94:2D:03:FF:6B:94:58:C2:4B:DC:DB:B4:FD:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 145B3E76890C64820A90D2646D767BF58D6F0FC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa Signing time: Mon 31 Mar 2025 16:00:13 +0000 ROA not before: Mon 31 Mar 2025 16:00:13 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.101.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:5b:3e:76:89:0c:64:82:0a:90:d2:64:6d:76:7b:f5:8d:6f:0f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 16:00:13 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=f3431c64ce77062669438e01764cc63fd8483d6d8e339192d8a75c87d0eb4555, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:64:cc:21:10:5e:79:d2:23:ef:8a:40:8c:1b: cf:ed:c6:fa:d4:17:af:92:54:ad:1c:c5:e1:f1:87: 7e:fc:1a:2a:3a:a5:87:d5:c6:0e:93:27:9f:4f:c7: db:b5:98:7d:99:28:d9:d5:ec:f9:3a:86:35:6e:a1: 46:6b:c0:21:ba:75:b3:42:57:2d:9d:62:43:b1:85: 8f:65:8c:87:7a:23:66:86:28:dd:5b:8a:f6:bc:eb: fb:15:da:f2:4f:04:ae:fb:9f:df:af:12:9d:ee:51: 2e:b9:81:28:7a:4f:27:6c:d5:20:72:cc:c4:52:2a: f3:38:3d:c4:62:31:b9:af:40:ac:d8:f6:d0:0b:0a: 44:cf:1b:4b:0a:df:4f:4c:5c:54:ca:6e:57:8f:a5: 43:9b:95:a1:75:26:09:43:85:d9:6c:90:0e:82:fe: b0:cd:67:32:0a:16:12:76:0e:dd:07:9f:f2:1d:73: 8c:c3:a9:e2:e7:72:47:60:56:6c:3e:22:e8:75:68: 13:cd:90:5e:52:d4:5f:27:ae:e6:82:71:79:73:ad: 03:f5:d2:e0:56:28:62:48:b2:0d:71:d5:f9:0f:32: ff:12:99:ec:28:8b:b9:ae:bd:ca:28:af:a8:da:7e: 55:a1:e3:ac:05:88:98:8b:28:71:32:35:05:e0:dd: 89:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2A:79:FD:F6:3D:94:2D:03:FF:6B:94:58:C2:4B:DC:DB:B4:FD:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4460c29b-6af6-4d15-bee1-65deb7aba765.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.168.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:91:1b:4f:45:d8:bd:e1:4f:ac:e5:66:69:69:94:68:59:2f: c9:a2:1f:cc:24:15:a3:70:88:64:a3:66:ab:15:50:32:77:a0: 26:aa:2c:9a:57:f2:b5:c4:75:dc:8a:5c:c9:d6:17:ba:36:31: aa:25:f9:f7:c4:ce:b4:3a:e7:8b:95:90:28:a2:b2:55:0f:7b: 5d:e4:85:d0:de:1d:7c:f5:fd:28:66:32:59:ef:57:96:f6:f1: 7c:ad:39:fc:28:7a:2d:31:a7:b3:5d:41:cd:20:6c:ea:39:3f: 4e:68:78:39:2d:be:1d:8f:5e:7e:42:de:20:13:c2:9c:7a:3d: f6:02:26:8a:65:69:d4:f6:ed:09:0b:fd:2e:bc:ee:8a:68:11: e3:ae:61:46:99:b4:db:f1:de:6f:79:41:6b:8f:5a:64:2f:f5: e4:9d:8c:5f:55:a2:23:1e:11:6a:3e:15:35:e6:9a:b5:58:9b: 5f:cc:ee:51:71:7e:b6:0c:8b:82:13:20:08:6f:82:b1:7e:3f: 2c:7b:a4:b2:0b:e4:74:eb:6b:de:24:cd:11:a9:19:0e:d4:eb: 9b:21:c5:7c:7b:33:a0:56:e1:c0:04:8b:8f:87:cc:30:2c:ba: fb:3e:30:2c:4c:b3:57:d6:87:8a:71:99:8d:3d:5d:3f:3a:4f: ed:17:c8:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFFs+dokMZIIKkNJkbXZ79Y1vD8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTYwMDEzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzQzMWM2NGNlNzcwNjI2Njk0MzhlMDE3NjRjYzYzZmQ4 NDgzZDZkOGUzMzkxOTJkOGE3NWM4N2QwZWI0NTU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqZMwhEF550iPvikCMG8/txvrUF6+SVK0cxeHxh378Gio6 pYfVxg6TJ59Px9u1mH2ZKNnV7Pk6hjVuoUZrwCG6dbNCVy2dYkOxhY9ljId6I2aG KN1biva86/sV2vJPBK77n9+vEp3uUS65gSh6Tyds1SByzMRSKvM4PcRiMbmvQKzY 9tALCkTPG0sK309MXFTKblePpUOblaF1JglDhdlskA6C/rDNZzIKFhJ2Dt0Hn/Id c4zDqeLnckdgVmw+Iuh1aBPNkF5S1F8nruaCcXlzrQP10uBWKGJIsg1x1fkPMv8S mewoi7muvcoor6jaflWh46wFiJiLKHEyNQXg3YnlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSCp5/fY9lC0D/2uUWMJL3Nu0/fMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NjBjMjliLTZhZjYtNGQxNS1iZWUxLTY1ZGViN2FiYTc2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANLZagwDQYJKoZIhvcNAQELBQADggEBAH+RG09F2L3hT6zlZmlplGhZL8mi H8wkFaNwiGSjZqsVUDJ3oCaqLJpX8rXEddyKXMnWF7o2Maol+ffEzrQ654uVkCii slUPe13khdDeHXz1/ShmMlnvV5b28XytOfwoei0xp7NdQc0gbOo5P05oeDktvh2P Xn5C3iATwpx6PfYCJopladT27QkL/S687opoEeOuYUaZtNvx3m95QWuPWmQv9eSd jF9VoiMeEWo+FTXmmrVYm1/M7lFxfrYMi4ITIAhvgrF+Pyx7pLIL5HTra94kzRGp GQ7U65shxXx7M6BW4cAEi4+HzDAsuvs+MCxMs1fWh4pxmY09XT86T+0XyKE= -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:31 2025 by rpki-client