$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa File: 59b45e95-5c92-40c2-8378-600986966c75.roa (raw, json) Hash identifier: t04SxSHCek3IKr1GrPXaqKeE6uyahLMmsIbbdX22tnU= Subject key identifier: 45:F6:EB:2D:6F:69:2F:A5:E1:06:3F:31:2A:61:CA:5E:53:6E:D2:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A68C5827D183F61A9255551F617183F3089C494 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa Signing time: Tue 08 Apr 2025 00:52:04 +0000 ROA not before: Tue 08 Apr 2025 00:52:04 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:68:c5:82:7d:18:3f:61:a9:25:55:51:f6:17:18:3f:30:89:c4:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:52:04 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=c3027f10ed0123eb3db1139976e88747a96cd19f180e5c44c24c670dcf45f7d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f5:4f:75:a3:f6:15:06:8a:02:12:b4:64:0c: e6:de:70:68:92:d1:a6:99:64:a2:4d:40:75:0f:11: 97:e9:f8:79:84:f0:8b:c8:77:e9:ab:7f:c8:13:d0: ed:10:f4:04:39:69:02:4d:39:7b:4e:d0:03:84:51: 0f:95:c8:0b:7c:bf:da:23:65:5c:79:71:e4:25:98: 8f:27:3d:e0:26:0b:f9:0e:dd:1d:d5:e9:40:3a:cc: 8c:6b:0e:76:7c:d2:89:a6:f9:94:ae:8e:a3:9e:22: 0f:26:37:44:75:76:ad:25:78:b1:a9:f4:2f:b6:6b: b2:38:b5:58:14:82:80:b3:c9:77:62:21:66:ad:8d: 06:15:60:02:0f:bf:c3:78:2a:93:86:70:b8:90:62: 0a:b2:2f:60:4f:35:42:b8:83:53:bd:e6:74:6f:d5: e5:ae:23:78:e1:9a:f9:a2:42:c7:46:e6:f3:dc:de: 6e:2e:75:58:bf:dc:b0:09:5c:e5:ef:86:17:ba:ac: 6e:12:e8:00:1b:f4:9f:5d:10:bd:48:ba:a6:20:ab: a2:bc:c0:b8:24:06:4a:15:04:96:76:d9:35:1e:b8: 58:bf:c9:2f:eb:46:12:2f:48:66:f0:d6:61:c7:d2: 9d:2a:a7:31:7c:d0:63:34:b1:ed:fb:8e:23:ff:65: be:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F6:EB:2D:6F:69:2F:A5:E1:06:3F:31:2A:61:CA:5E:53:6E:D2:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.102.0/23 Signature Algorithm: sha256WithRSAEncryption c0:f4:d7:f3:10:5f:0d:10:18:ad:c4:51:c9:07:67:57:c3:8a: cb:72:68:a7:95:fd:b3:21:10:d8:56:05:a8:7d:6e:61:56:57: 3f:15:94:b6:40:70:68:bf:bc:ed:9b:06:bf:44:73:83:60:34: 99:b0:3f:7d:30:b3:33:83:4d:ee:07:ee:b6:01:26:fc:5a:f1: e2:3a:90:4d:e6:0f:7b:43:26:e2:a2:5a:59:ad:c9:02:11:eb: b9:6b:88:c4:6b:8a:fe:39:ca:03:8f:ba:3c:e3:8a:ce:d6:13: ed:37:e0:9a:92:b9:b2:78:22:e8:ce:0f:7f:b9:2b:e2:47:e7: 77:21:97:2b:87:91:32:ca:c4:a3:be:e8:3c:e9:e6:bb:57:cf: 37:24:88:5c:96:4c:c3:fc:8b:a9:55:66:0a:3a:77:77:44:d8: e1:85:25:55:27:66:5a:ec:3f:cc:17:6a:cc:f1:d3:cc:ae:51: 89:b1:cd:6d:28:ab:d6:44:78:27:a3:7c:91:50:78:8f:6a:c4: 7c:2d:6a:98:07:f5:7a:63:a8:e6:23:ad:f1:a4:e0:fd:f7:68: 85:9b:56:ba:4d:08:02:fb:d2:49:c6:96:f4:43:1e:d8:e3:73: d6:69:4b:0a:60:4e:f0:34:81:81:29:b6:2f:53:84:05:aa:8b: cb:e2:ee:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKmjFgn0YP2GpJVVR9hcYPzCJxJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA1MjA0WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzAyN2YxMGVkMDEyM2ViM2RiMTEzOTk3NmU4ODc0N2E5 NmNkMTlmMTgwZTVjNDRjMjRjNjcwZGNmNDVmN2Q5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX9U91o/YVBooCErRkDObecGiS0aaZZKJNQHUPEZfp+HmE 8IvId+mrf8gT0O0Q9AQ5aQJNOXtO0AOEUQ+VyAt8v9ojZVx5ceQlmI8nPeAmC/kO 3R3V6UA6zIxrDnZ80omm+ZSujqOeIg8mN0R1dq0leLGp9C+2a7I4tVgUgoCzyXdi IWatjQYVYAIPv8N4KpOGcLiQYgqyL2BPNUK4g1O95nRv1eWuI3jhmvmiQsdG5vPc 3m4udVi/3LAJXOXvhhe6rG4S6AAb9J9dEL1IuqYgq6K8wLgkBkoVBJZ22TUeuFi/ yS/rRhIvSGbw1mHH0p0qpzF80GM0se37jiP/Zb4VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURfbrLW9pL6XhBj8xKmHKXlNu0nwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5YjQ1ZTk1LTVjOTItNDBjMi04Mzc4LTYwMDk4Njk2NmM3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgAGYwDQYJKoZIhvcNAQELBQADggEBAMD01/MQXw0QGK3EUckHZ1fDisty aKeV/bMhENhWBah9bmFWVz8VlLZAcGi/vO2bBr9Ec4NgNJmwP30wszODTe4H7rYB Jvxa8eI6kE3mD3tDJuKiWlmtyQIR67lriMRriv45ygOPujzjis7WE+034JqSubJ4 IujOD3+5K+JH53chlyuHkTLKxKO+6Dzp5rtXzzckiFyWTMP8i6lVZgo6d3dE2OGF JVUnZlrsP8wXaszx08yuUYmxzW0oq9ZEeCejfJFQeI9qxHwtapgH9XpjqOYjrfGk 4P33aIWbVrpNCAL70knGlvRDHtjjc9ZpSwpgTvA0gYEpti9ThAWqi8vi7mw= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:53 2025 by rpki-client