$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa File: 677448d3-c998-4825-9df7-dd9ac11a3c19.roa (raw, json) Hash identifier: QKhuJP+GvL5JhqJT7M0lcP9rBWGCLJGC6PvXMNbEPqM= Subject key identifier: 83:39:2E:C9:FC:B3:B2:F5:0F:1A:D3:17:C3:3B:8C:FA:38:46:93:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B30224D457668D066C8305433FAC7FDCC47F9C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa Signing time: Sat 29 Mar 2025 00:40:10 +0000 ROA not before: Sat 29 Mar 2025 00:40:10 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:30:22:4d:45:76:68:d0:66:c8:30:54:33:fa:c7:fd:cc:47:f9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:40:10 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=c9e0535f35f64bdd458874a49ea3bd319602c36cc5e57f75c3641e05b0300635, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3f:7b:6a:06:55:fe:fe:8b:7c:c9:15:3b:d8: 37:2f:51:33:f1:d4:92:6b:5a:ec:35:b4:92:16:54: 6e:2e:85:f0:06:04:8a:e8:7c:07:70:da:e5:ae:bc: 3c:85:ea:c2:05:37:dd:ef:3e:aa:e3:23:74:df:55: 25:14:05:f3:2f:ff:70:84:72:cd:1f:fc:04:4e:91: 5e:fa:be:b5:87:2f:45:92:86:08:44:8b:57:a8:bd: 17:16:3d:56:ec:53:a4:e2:63:7d:6e:69:cb:1c:be: 6d:c0:14:39:db:5b:d7:b0:87:6a:cd:ff:99:d8:a0: 40:6c:d0:c1:bb:1a:94:15:24:ce:4c:d6:53:12:c8: 82:ca:ea:77:50:06:a2:e6:19:81:e4:40:5b:a6:87: 0b:6d:a1:de:87:bb:c1:ec:d2:ea:5b:6b:a7:5d:b2: da:65:7c:37:38:2a:a0:71:0f:49:0f:c0:f0:21:e1: 8d:f9:38:21:75:7c:91:ad:a8:43:eb:49:15:32:d6: 34:eb:86:fc:7e:81:a8:23:80:a2:10:da:17:55:34: 30:95:24:5a:5f:8a:fe:60:dc:21:a8:7b:e1:90:2f: 70:f4:2e:5f:82:c6:b6:f3:0f:92:5c:e2:3d:de:50: 6f:6d:e1:96:8f:cc:b4:79:68:9c:7e:5c:c2:a4:d9: 98:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:39:2E:C9:FC:B3:B2:F5:0F:1A:D3:17:C3:3B:8C:FA:38:46:93:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.128.0/19 Signature Algorithm: sha256WithRSAEncryption 36:8c:ac:fe:fd:90:c7:15:ac:05:0a:e7:99:5a:d0:92:ef:54: af:80:5a:b9:a0:a9:c5:4a:ab:79:ac:fe:95:39:a1:ec:aa:be: 4b:57:cf:73:ab:8d:46:aa:69:78:fd:02:08:59:93:76:2f:9d: fa:23:76:fb:42:e8:33:c2:cc:e6:32:a8:1c:c6:15:fc:b5:6f: 6b:0c:d9:cb:c1:c2:41:66:8c:c5:35:da:c7:73:7b:d7:7b:30: 3e:17:5a:51:aa:64:63:5e:59:18:b9:d6:e9:eb:63:cf:fb:ae: c2:2c:83:2c:08:69:4c:2b:dd:cf:02:59:7a:69:52:7f:7d:30: b6:0e:57:25:b3:74:92:b1:87:36:c5:1a:91:7d:18:f8:23:f2: e1:c1:b4:0d:f1:5d:c1:3f:4a:cc:4a:21:24:98:52:28:5f:97: 03:d4:7e:e5:1e:4d:81:25:8d:b8:f5:7e:25:a3:16:8d:7f:03: 04:78:c1:2f:e4:6d:25:65:bf:61:e9:99:65:66:fa:5c:0e:11: 14:83:50:5a:02:f6:a6:96:f0:05:ab:e5:55:48:4c:cc:8a:1a: e1:55:26:cb:63:20:09:11:14:9e:9c:5d:7f:4d:e3:e4:3e:53: a0:d3:64:62:af:2c:72:b3:42:9d:b5:7e:f2:4f:3e:38:1a:bb: cc:e9:22:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUezAiTUV2aNBmyDBUM/rH/cxH+cIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA0MDEwWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWUwNTM1ZjM1ZjY0YmRkNDU4ODc0YTQ5ZWEzYmQzMTk2 MDJjMzZjYzVlNTdmNzVjMzY0MWUwNWIwMzAwNjM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcP3tqBlX+/ot8yRU72DcvUTPx1JJrWuw1tJIWVG4uhfAG BIrofAdw2uWuvDyF6sIFN93vPqrjI3TfVSUUBfMv/3CEcs0f/AROkV76vrWHL0WS hghEi1eovRcWPVbsU6TiY31uacscvm3AFDnbW9ewh2rN/5nYoEBs0MG7GpQVJM5M 1lMSyILK6ndQBqLmGYHkQFumhwttod6Hu8Hs0upba6ddstplfDc4KqBxD0kPwPAh 4Y35OCF1fJGtqEPrSRUy1jTrhvx+gagjgKIQ2hdVNDCVJFpfiv5g3CGoe+GQL3D0 Ll+CxrbzD5Jc4j3eUG9t4ZaPzLR5aJx+XMKk2ZhJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgzkuyfyzsvUPGtMXwzuM+jhGkwIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NzQ0OGQzLWM5OTgtNDgyNS05ZGY3LWRkOWFjMTFhM2MxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhsoAwDQYJKoZIhvcNAQELBQADggEBADaMrP79kMcVrAUK55la0JLvVK+A WrmgqcVKq3ms/pU5oeyqvktXz3OrjUaqaXj9AghZk3YvnfojdvtC6DPCzOYyqBzG Ffy1b2sM2cvBwkFmjMU12sdze9d7MD4XWlGqZGNeWRi51unrY8/7rsIsgywIaUwr 3c8CWXppUn99MLYOVyWzdJKxhzbFGpF9GPgj8uHBtA3xXcE/SsxKISSYUihflwPU fuUeTYEljbj1fiWjFo1/AwR4wS/kbSVlv2HpmWVm+lwOERSDUFoC9qaW8AWr5VVI TMyKGuFVJstjIAkRFJ6cXX9N4+Q+U6DTZGKvLHKzQp21fvJPPjgau8zpIs0= -----END CERTIFICATE-----Generated at Wed Apr 16 17:02:16 2025 by rpki-client