$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa File: 58c78734-91d9-4994-9461-7b6172f0caa6.roa (raw, json) Hash identifier: WdXpqPasVtp+C3vUGf09J7WyN1z+oPieoC56APCkP+s= Subject key identifier: F2:3E:64:E6:24:FB:4D:0B:4A:83:2D:F9:EB:43:2F:66:98:4A:24:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E4AF524614128A31038478AE67101BA86D7D308 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa Signing time: Mon 31 Mar 2025 15:51:46 +0000 ROA not before: Mon 31 Mar 2025 15:51:46 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.202.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:4a:f5:24:61:41:28:a3:10:38:47:8a:e6:71:01:ba:86:d7:d3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:51:46 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=c9d86ff733067afb1914d91d1e4d9c0a6dcf4c1d5192e6bf07a2641d24d6add3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:eb:a5:76:71:7d:64:0c:ac:51:8a:3e:fd:02: c5:bd:b3:f6:be:b0:cc:8d:6b:18:19:71:4d:3c:46: 24:84:cf:94:92:40:6f:bf:22:23:c5:59:8b:34:6c: 62:8a:ab:a8:68:78:6d:79:d4:6b:0e:b4:6b:d4:4f: de:c0:54:0a:ee:83:92:27:58:ea:be:cb:1b:fc:60: 85:fb:3b:b2:d1:62:f6:19:5f:67:92:37:cc:8d:2c: 8e:d9:fc:f0:de:96:7a:52:77:4a:c6:3f:cb:f0:92: 88:73:48:ae:1e:7f:95:14:3a:2d:f1:54:73:55:bb: ea:fa:70:fc:bd:dc:88:3e:4f:e8:a0:6b:d9:23:57: 65:9a:f1:f6:d9:d7:3c:ad:fa:ef:66:f2:2e:c3:72: 2f:8d:e7:94:f6:b3:50:8c:7a:6e:2c:f1:78:fb:74: 86:e1:4c:de:09:c2:79:70:e4:ee:1d:ea:ea:4a:5a: d6:66:3a:e9:67:20:da:50:a6:13:89:58:be:9f:09: 6a:d1:b8:03:e8:79:55:fb:89:64:43:11:ec:f0:2e: 12:43:d3:23:bf:9f:47:d8:a7:34:ff:83:46:05:90: 26:23:1f:ff:97:6d:2e:eb:61:38:5d:3d:b6:f0:e9: 79:4a:3e:77:9c:8e:b0:6d:19:12:ea:5f:fe:7e:da: c6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3E:64:E6:24:FB:4D:0B:4A:83:2D:F9:EB:43:2F:66:98:4A:24:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption 56:ca:58:4e:30:d6:02:20:40:6c:75:d3:90:b8:7e:43:c7:8d: 68:54:50:c5:cc:aa:09:75:a6:7d:f2:d1:7b:97:d7:59:73:b8: da:26:bc:7c:94:34:ab:60:02:65:8a:2b:9c:c8:ca:70:d2:b4: a0:ba:5e:96:aa:49:88:9d:6d:ad:13:a6:10:36:eb:a2:ef:bf: f3:4e:4d:f5:56:b5:37:a9:b6:a7:6e:d6:3e:67:1f:e9:f1:87: 06:82:ac:23:1d:c7:07:31:7a:9c:bc:e3:d5:61:8b:ed:92:d1: 71:0d:d6:fe:32:fe:b7:34:da:e4:0c:a1:9a:0f:de:d1:3e:39: c4:17:38:40:1b:1a:ab:ed:ac:4c:3c:67:30:06:bf:b4:09:0f: 6d:be:96:ca:61:39:ba:f2:0d:c1:b1:78:8e:94:5a:4b:79:7d: 0b:d5:b6:fa:15:a0:f7:b1:ae:3c:38:dd:4f:2e:d6:ce:e9:c9: 16:7a:23:61:1a:f9:2e:80:7b:f9:3b:4e:9c:a4:0d:ea:9c:05: 1a:23:5d:41:d7:8d:ca:ca:06:5d:ca:f7:ab:db:30:13:be:cc: 5c:f4:ec:fc:57:fe:ff:eb:0d:8e:96:78:45:2d:8f:2b:70:fd: 50:67:88:5f:2e:0b:fd:7e:70:6b:04:d4:41:70:83:d6:ab:10: 28:03:87:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfkr1JGFBKKMQOEeK5nEBuobX0wgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU1MTQ2WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWQ4NmZmNzMzMDY3YWZiMTkxNGQ5MWQxZTRkOWMwYTZk Y2Y0YzFkNTE5MmU2YmYwN2EyNjQxZDI0ZDZhZGQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV66V2cX1kDKxRij79AsW9s/a+sMyNaxgZcU08RiSEz5SS QG+/IiPFWYs0bGKKq6hoeG151GsOtGvUT97AVArug5InWOq+yxv8YIX7O7LRYvYZ X2eSN8yNLI7Z/PDelnpSd0rGP8vwkohzSK4ef5UUOi3xVHNVu+r6cPy93Ig+T+ig a9kjV2Wa8fbZ1zyt+u9m8i7Dci+N55T2s1CMem4s8Xj7dIbhTN4Jwnlw5O4d6upK WtZmOulnINpQphOJWL6fCWrRuAPoeVX7iWRDEezwLhJD0yO/n0fYpzT/g0YFkCYj H/+XbS7rYThdPbbw6XlKPnecjrBtGRLqX/5+2sbLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8j5k5iT7TQtKgy3560MvZphKJLMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4Yzc4NzM0LTkxZDktNDk5NC05NDYxLTdiNjE3MmYwY2FhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAFbKWE4w1gIgQGx105C4fkPHjWhU UMXMqgl1pn3y0XuX11lzuNomvHyUNKtgAmWKK5zIynDStKC6XpaqSYidba0TphA2 66Lvv/NOTfVWtTeptqdu1j5nH+nxhwaCrCMdxwcxepy849Vhi+2S0XEN1v4y/rc0 2uQMoZoP3tE+OcQXOEAbGqvtrEw8ZzAGv7QJD22+lsphObryDcGxeI6UWkt5fQvV tvoVoPexrjw43U8u1s7pyRZ6I2Ea+S6Ae/k7TpykDeqcBRojXUHXjcrKBl3K96vb MBO+zFz07PxX/v/rDY6WeEUtjytw/VBniF8uC/1+cGsE1EFwg9arECgDhwM= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:59 2025 by rpki-client