$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2b40b-f71f-4e89-96a6-7651dae12fbc.roa File: 4db2b40b-f71f-4e89-96a6-7651dae12fbc.roa (raw, json) Hash identifier: Jf7mChhi+joqP32mZND6VOBP0bfJ8aWEicXMKjLlZ38= Subject key identifier: 16:68:46:7B:B2:BD:20:40:35:9D:F3:10:08:3E:3E:E6:42:F2:1B:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EF8297C3709383F5155DF81ED16CDC52DF48B59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2b40b-f71f-4e89-96a6-7651dae12fbc.roa Signing time: Sat 29 Mar 2025 00:52:05 +0000 ROA not before: Sat 29 Mar 2025 00:52:05 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 198.14.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 18 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f8:29:7c:37:09:38:3f:51:55:df:81:ed:16:cd:c5:2d:f4:8b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:52:05 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=9fd60258c91963666056536e0aa9475dec4dfbf59f58b14b7be0f3485a1d9311, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7a:f0:23:3f:dd:71:ec:1a:d8:fb:94:6b:8e: 31:b7:dd:32:10:1c:0d:fd:76:43:b8:f4:59:14:83: 2d:37:c1:7d:14:5d:8f:7d:bc:77:bd:cf:71:9c:dc: 66:b3:0a:57:97:8e:e5:47:0b:8e:d9:9f:2c:7c:2a: e1:03:12:7b:10:ee:e3:ee:8f:88:b6:f2:89:4f:e0: ba:94:6b:65:01:9c:3e:09:df:e0:0a:5f:07:ea:f9: 1c:29:0c:bc:78:b3:5f:29:a7:e8:c8:3d:23:43:eb: 7f:ea:86:fd:5d:93:66:64:c9:27:d2:b8:1e:33:09: b8:01:22:43:e7:13:d5:5e:16:41:e8:8a:40:14:4e: 1a:e5:5f:b9:4a:e5:84:e9:11:ff:61:1d:85:24:76: e5:3c:f1:7c:41:fd:fd:af:19:bb:06:79:18:62:e2: d0:5d:f3:0a:a8:d5:f9:30:a1:52:ef:02:ae:52:c8: 1f:8f:07:f9:37:3c:70:49:1f:2e:2d:f0:b7:0d:2f: 97:5c:97:ad:51:d8:0b:6f:3d:bd:9f:fe:d8:95:c6: b6:ad:e0:6f:59:2b:2f:21:86:f1:2c:40:ff:aa:99: 59:de:fe:2e:bd:d1:f9:d0:0b:dc:e2:c5:c0:34:c0: cb:d3:ec:7a:d2:e5:cf:e0:b8:0a:79:06:88:17:af: 45:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:68:46:7B:B2:BD:20:40:35:9D:F3:10:08:3E:3E:E6:42:F2:1B:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2b40b-f71f-4e89-96a6-7651dae12fbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.14.2.0/24 Signature Algorithm: sha256WithRSAEncryption a8:c5:a6:10:87:9a:a2:e9:11:3e:9c:44:2d:2c:ad:70:22:9c: 6c:37:f0:32:a1:5e:66:c8:cb:ca:48:79:ac:e8:db:06:69:b5: a5:72:af:a4:bd:d1:e8:ab:1e:d2:3b:91:f1:1f:b8:b3:22:74: b3:d3:bf:bf:47:03:24:9f:d2:09:a8:78:8b:7d:bd:54:5d:3f: cf:9e:42:13:0f:93:5d:45:42:fc:36:56:99:56:fa:8c:a5:5b: 54:b6:ac:38:3b:7b:e2:ad:e0:35:79:26:52:93:51:ae:c4:7c: 94:9f:7a:bb:ca:77:a1:6b:de:78:15:26:7b:1e:0b:1f:c2:1b: ee:7e:f1:ce:b1:4a:6b:fa:7e:ce:a7:41:42:a9:17:97:44:39: df:5f:26:86:98:8d:2e:28:1f:b5:09:ee:5b:86:3d:26:f9:56: 80:21:a2:66:e9:d7:92:86:9e:60:91:82:36:66:e0:5f:d4:39: 18:70:fa:c0:6e:a4:7d:a2:ab:85:31:46:d3:5b:ba:d8:f2:5e: ca:7e:9d:f4:42:92:67:a7:e5:8f:d0:eb:a0:c6:bb:93:6c:30: 77:69:94:57:96:5b:7b:e1:9b:0a:1a:63:fa:97:ef:7c:f6:2c: 6b:52:eb:cf:cd:4d:dc:98:3b:08:25:de:78:69:23:bb:6b:6f: 99:0b:b2:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTvgpfDcJOD9RVd+B7RbNxS30i1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA1MjA1WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmQ2MDI1OGM5MTk2MzY2NjA1NjUzNmUwYWE5NDc1ZGVj NGRmYmY1OWY1OGIxNGI3YmUwZjM0ODVhMWQ5MzExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/evAjP91x7BrY+5RrjjG33TIQHA39dkO49FkUgy03wX0U XY99vHe9z3Gc3GazCleXjuVHC47Znyx8KuEDEnsQ7uPuj4i28olP4LqUa2UBnD4J 3+AKXwfq+RwpDLx4s18pp+jIPSND63/qhv1dk2ZkySfSuB4zCbgBIkPnE9VeFkHo ikAUThrlX7lK5YTpEf9hHYUkduU88XxB/f2vGbsGeRhi4tBd8wqo1fkwoVLvAq5S yB+PB/k3PHBJHy4t8LcNL5dcl61R2AtvPb2f/tiVxrat4G9ZKy8hhvEsQP+qmVne /i690fnQC9zixcA0wMvT7HrS5c/guAp5BogXr0UlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFmhGe7K9IEA1nfMQCD4+5kLyG7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkYjJiNDBiLWY3MWYtNGU4OS05NmE2LTc2NTFkYWUxMmZiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGDgIwDQYJKoZIhvcNAQELBQADggEBAKjFphCHmqLpET6cRC0srXAinGw3 8DKhXmbIy8pIeazo2wZptaVyr6S90eirHtI7kfEfuLMidLPTv79HAySf0gmoeIt9 vVRdP8+eQhMPk11FQvw2VplW+oylW1S2rDg7e+Kt4DV5JlKTUa7EfJSfervKd6Fr 3ngVJnseCx/CG+5+8c6xSmv6fs6nQUKpF5dEOd9fJoaYjS4oH7UJ7luGPSb5VoAh ombp15KGnmCRgjZm4F/UORhw+sBupH2iq4UxRtNbutjyXsp+nfRCkmen5Y/Q66DG u5NsMHdplFeWW3vhmwoaY/qX73z2LGtS68/NTdyYOwgl3nhpI7trb5kLsms= -----END CERTIFICATE-----Generated at Thu Apr 17 09:11:22 2025 by rpki-client