$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa File: 598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa (raw, json) Hash identifier: 587JrEeEqO0F49A8LWYz60J+DTzG+JhWODUzx6KxPGA= Subject key identifier: ED:AE:DD:9C:8D:4B:6E:E9:8F:52:18:86:70:81:C6:32:CF:4A:19:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23A3EE99157A3A6F960766A731E888DD8EC274B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa Signing time: Mon 31 Mar 2025 15:41:25 +0000 ROA not before: Mon 31 Mar 2025 15:41:25 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a3:ee:99:15:7a:3a:6f:96:07:66:a7:31:e8:88:dd:8e:c2:74:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:41:25 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=cf94e5ca4d25684c40cdb3f30a6ff97e5aace0b20d55dda85ef7d69d09b1852a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5b:46:f2:6b:8a:bf:07:a5:dd:53:b5:4c:a3: 09:9a:70:fc:d0:c8:7e:d3:fc:e5:97:ee:e0:56:b5: 35:fd:ce:dd:14:e5:03:4c:fb:ac:fd:98:ae:d0:25: 03:2e:5f:99:c0:48:ef:a6:1a:28:6c:2d:c1:00:6e: 38:43:d3:56:b0:d1:53:e5:97:30:38:5c:a4:1d:73: 44:00:cb:4b:8c:8e:43:80:79:33:c5:71:9d:1c:9a: 07:a7:8f:28:13:2d:3d:85:03:54:b7:81:b6:85:87: da:19:80:3f:e0:c0:ff:dd:22:03:fb:a8:86:a7:67: bd:15:56:d4:97:5c:7d:3e:60:10:d8:27:79:46:fa: 60:fe:43:d8:d5:ab:53:09:69:e9:11:aa:a2:65:fa: a8:01:6b:61:df:ba:72:1b:38:7b:8a:2a:cb:c5:30: 0a:5d:2c:e9:12:ba:eb:f4:a5:f9:b5:c9:71:7d:74: 6d:a1:8b:19:0c:12:b3:20:7d:0d:e2:ec:f9:55:c6: f8:b9:eb:ec:4d:fc:e5:33:1f:86:85:df:17:c3:b4: 95:b4:c3:1d:15:dc:72:08:2f:ba:e7:fd:66:d2:59: 42:86:2c:d2:21:1e:ce:6d:34:be:62:39:26:fa:96: c4:f4:1b:19:d2:44:d9:20:27:af:1e:2c:6c:42:65: d6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AE:DD:9C:8D:4B:6E:E9:8F:52:18:86:70:81:C6:32:CF:4A:19:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.70.0/24 Signature Algorithm: sha256WithRSAEncryption bd:30:e2:fe:0a:72:a1:78:42:09:6b:2e:9c:44:b2:0b:6d:47: 1d:27:a6:a9:63:58:8b:e0:f3:99:b4:b4:5d:8b:c1:ac:17:d5: e2:d8:17:ee:a6:1e:f2:62:34:06:cb:b7:63:d2:ca:06:6d:ca: 62:88:02:07:7d:fb:df:79:6b:82:c4:f7:37:88:23:7f:22:b7: de:35:0b:84:31:e5:56:72:e6:f3:f4:11:07:d4:4c:75:58:1c: f6:61:60:25:48:a3:7c:06:c6:7f:e1:5a:8b:fb:b8:51:0b:eb: fd:3c:77:6e:e6:40:a3:38:81:22:92:6a:72:a8:3b:67:2e:0a: 59:bc:b6:21:e8:13:7c:9f:c0:ec:76:2f:aa:6b:35:f8:d7:a9: 4c:ca:95:32:1d:e2:b2:07:0a:12:5d:10:5c:0a:81:c8:b5:60: 33:90:8d:d7:24:6e:87:29:f1:b4:96:81:8f:1f:c6:9d:0d:b7: e0:ab:88:d1:08:47:72:a5:7d:99:48:15:f5:a0:30:4e:ea:5b: bb:7d:9f:c2:3c:93:18:0d:a4:f2:26:16:3b:62:ee:d9:39:78: 46:38:2a:93:c8:af:70:49:92:71:83:93:67:ac:ac:68:7f:52: eb:95:2d:9c:02:49:b6:f2:9d:1f:40:56:a7:b4:9d:01:31:35: e9:da:99:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI6PumRV6Om+WB2anMeiI3Y7CdLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU0MTI1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjk0ZTVjYTRkMjU2ODRjNDBjZGIzZjMwYTZmZjk3ZTVh YWNlMGIyMGQ1NWRkYTg1ZWY3ZDY5ZDA5YjE4NTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCW0bya4q/B6XdU7VMowmacPzQyH7T/OWX7uBWtTX9zt0U 5QNM+6z9mK7QJQMuX5nASO+mGihsLcEAbjhD01aw0VPllzA4XKQdc0QAy0uMjkOA eTPFcZ0cmgenjygTLT2FA1S3gbaFh9oZgD/gwP/dIgP7qIanZ70VVtSXXH0+YBDY J3lG+mD+Q9jVq1MJaekRqqJl+qgBa2HfunIbOHuKKsvFMApdLOkSuuv0pfm1yXF9 dG2hixkMErMgfQ3i7PlVxvi56+xN/OUzH4aF3xfDtJW0wx0V3HIIL7rn/WbSWUKG LNIhHs5tNL5iOSb6lsT0GxnSRNkgJ68eLGxCZdZvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7a7dnI1LbumPUhiGcIHGMs9KGTYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OGQ1ZWI3LWJhY2EtNGM5Yy1iNzBiLTA1OWQyNTZkZDRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUYwDQYJKoZIhvcNAQELBQADggEBAL0w4v4KcqF4QglrLpxEsgttRx0n pqljWIvg85m0tF2LwawX1eLYF+6mHvJiNAbLt2PSygZtymKIAgd9+995a4LE9zeI I38it941C4Qx5VZy5vP0EQfUTHVYHPZhYCVIo3wGxn/hWov7uFEL6/08d27mQKM4 gSKSanKoO2cuClm8tiHoE3yfwOx2L6prNfjXqUzKlTId4rIHChJdEFwKgci1YDOQ jdckbocp8bSWgY8fxp0Nt+CriNEIR3KlfZlIFfWgME7qW7t9n8I8kxgNpPImFjti 7tk5eEY4KpPIr3BJknGDk2esrGh/UuuVLZwCSbbynR9AVqe0nQExNenamVg= -----END CERTIFICATE-----Generated at Wed Apr 16 16:56:00 2025 by rpki-client