$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: 3c9mJJVspHe9Px4n4Klv/SqaoeTO2RXf5vAZzTxc4d4= Subject key identifier: 47:8E:46:2C:27:79:FC:CD:51:A5:2B:C3:CB:5A:BB:C6:1B:98:DC:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 207F5F7B3DDA22F685AB98C5F6FCC5010E0CE199 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Sat 12 Apr 2025 00:01:26 +0000 ROA not before: Sat 12 Apr 2025 00:01:26 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7f:5f:7b:3d:da:22:f6:85:ab:98:c5:f6:fc:c5:01:0e:0c:e1:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:01:26 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=3799c8b4dc6594cbde51e529f2f1acc9ed14c05bdc64c6d5e510d604a770ea4d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d3:2d:db:ca:1d:be:c3:1a:56:90:09:9a:1f: 7b:32:62:5d:28:e1:2b:34:7e:82:f3:98:83:f5:10: 31:2b:15:be:e8:37:c1:20:ee:ab:39:ef:40:34:7d: f1:d0:19:6c:ec:84:2b:51:c7:ab:90:fd:7a:77:f5: 9c:89:92:a6:40:e9:e1:fc:56:86:c6:76:14:62:e8: 4f:f7:e5:09:5a:a4:ad:8a:0b:ec:b4:2c:42:98:02: 00:69:36:6e:26:81:fe:d7:10:e0:f8:d1:80:80:bc: 91:83:27:3a:c6:d0:3f:47:68:92:ce:fa:0e:bb:f9: 0d:a7:7c:4d:3e:cc:8f:d9:7f:80:e8:fc:58:1d:4f: 4a:45:f0:1a:30:b1:41:99:e0:9d:4b:f0:e0:f3:a2: 74:01:7c:09:f1:e1:a3:60:15:9b:4f:7d:a9:ec:81: 95:f8:5f:2f:e3:c7:b0:e1:d2:83:6c:f6:1b:3f:40: 45:6f:f4:90:f9:fa:2d:e2:28:eb:8b:a7:61:1b:9e: 09:cf:90:72:17:fc:06:e0:7c:4c:0b:11:47:d0:86: 00:e1:3d:76:0f:d9:46:7f:3b:38:13:6c:fe:cf:cf: 34:8b:fb:9c:7f:89:77:7e:2f:19:8d:5d:8e:a9:ca: b4:5e:2f:1a:ea:90:b6:6e:25:67:c1:12:a3:7a:4d: 92:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8E:46:2C:27:79:FC:CD:51:A5:2B:C3:CB:5A:BB:C6:1B:98:DC:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption 74:42:e3:73:14:46:bb:66:eb:e5:86:08:07:85:31:68:0c:04: 26:6d:00:65:f5:5f:f1:f3:71:8a:68:4b:8d:27:ba:4c:c4:4a: b7:90:f0:23:0a:2d:32:67:de:d6:0e:2d:b5:dd:35:a6:bb:63: ee:71:d9:62:e1:c5:de:35:16:5f:3b:6a:3e:b9:46:f6:d5:e9: 41:27:1b:09:de:45:13:6d:dc:16:b0:d0:f7:8d:c3:63:fe:9f: 70:7a:4c:c0:15:65:57:82:a5:2e:c8:45:70:28:3d:1f:fc:74: 37:56:4d:29:c3:1e:a9:75:45:48:00:80:bb:31:dc:84:c7:08: ba:0c:11:40:05:16:83:7e:72:7e:fd:d7:e6:73:11:0e:c5:94: 54:36:f7:b7:36:11:b6:63:54:a3:e1:67:7f:a6:a1:0f:84:e3: 53:e4:ed:97:78:85:fb:72:98:d1:9b:27:64:9a:77:2a:54:bb: aa:3d:b2:f6:b7:19:43:dc:69:44:1f:48:2d:d1:5f:f0:a6:b3: 62:b4:ad:3e:4a:67:5e:c9:f1:5c:be:b4:45:07:43:49:5c:db: e1:2f:d6:64:96:dd:cf:9d:2d:a6:11:ec:9a:a4:22:1f:e7:5b: 75:62:04:bd:89:f9:6d:9a:dc:3c:69:5b:5e:a6:78:e5:ad:15: cd:d3:c6:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIH9fez3aIvaFq5jF9vzFAQ4M4ZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAwMTI2WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzk5YzhiNGRjNjU5NGNiZGU1MWU1MjlmMmYxYWNjOWVk MTRjMDViZGM2NGM2ZDVlNTEwZDYwNGE3NzBlYTRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl0y3byh2+wxpWkAmaH3syYl0o4Ss0foLzmIP1EDErFb7o N8Eg7qs570A0ffHQGWzshCtRx6uQ/Xp39ZyJkqZA6eH8VobGdhRi6E/35QlapK2K C+y0LEKYAgBpNm4mgf7XEOD40YCAvJGDJzrG0D9HaJLO+g67+Q2nfE0+zI/Zf4Do /FgdT0pF8BowsUGZ4J1L8ODzonQBfAnx4aNgFZtPfansgZX4Xy/jx7Dh0oNs9hs/ QEVv9JD5+i3iKOuLp2EbngnPkHIX/AbgfEwLEUfQhgDhPXYP2UZ/OzgTbP7PzzSL +5x/iXd+LxmNXY6pyrReLxrqkLZuJWfBEqN6TZL7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR45GLCd5/M1RpSvDy1q7xhuY3PQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAHRC43MURrtm6+WGCAeFMWgMBCZt AGX1X/HzcYpoS40nukzESreQ8CMKLTJn3tYOLbXdNaa7Y+5x2WLhxd41Fl87aj65 RvbV6UEnGwneRRNt3Baw0PeNw2P+n3B6TMAVZVeCpS7IRXAoPR/8dDdWTSnDHql1 RUgAgLsx3ITHCLoMEUAFFoN+cn791+ZzEQ7FlFQ297c2EbZjVKPhZ3+moQ+E41Pk 7Zd4hftymNGbJ2SadypUu6o9sva3GUPcaUQfSC3RX/Cms2K0rT5KZ17J8Vy+tEUH Q0lc2+Ev1mSW3c+dLaYR7JqkIh/nW3ViBL2J+W2a3DxpW16meOWtFc3TxlY= -----END CERTIFICATE-----Generated at Wed Apr 16 17:12:40 2025 by rpki-client