$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa File: 6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa (raw, json) Hash identifier: MFlStCgzMkeWJ4nay8LEEsBe4NMAc1M3O7S82wtwqrE= Subject key identifier: DC:D7:39:E4:14:27:AB:1F:5C:7C:3A:25:80:91:A2:64:B5:D7:32:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D9F8C59BC4F2302A6D3BE9503EA098907B1D970 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa Signing time: Tue 01 Apr 2025 00:00:25 +0000 ROA not before: Tue 01 Apr 2025 00:00:25 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.8.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9f:8c:59:bc:4f:23:02:a6:d3:be:95:03:ea:09:89:07:b1:d9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 1 00:00:25 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=6855f816c001b32e5cadf8c1d3c128b3d3eb7b3bff3b71da363c45cfcafc9f74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:a8:96:17:7e:d6:ec:28:c5:35:8d:2b:26: c5:8c:83:aa:4d:9c:dc:80:1f:3d:66:f8:6d:67:23: 43:d2:54:fb:19:37:06:5b:f4:22:04:9d:d5:08:cc: 96:4f:b4:b5:06:83:27:02:13:a7:b9:fa:d3:8b:0e: 65:86:64:e4:e1:e5:c1:92:31:5d:f8:f4:f2:86:e1: c9:94:94:53:db:b1:32:ae:df:87:0b:75:36:65:c6: 36:b9:3f:a6:1f:a4:b2:80:f3:04:35:5e:86:c9:2a: a6:76:45:ef:82:37:67:f2:60:cd:4a:ed:94:80:c7: da:91:b8:39:fb:f2:72:2d:48:11:cb:9e:46:aa:a0: cf:88:df:7b:77:98:92:5a:d9:05:16:68:cf:09:a5: 3b:5f:53:c3:a0:54:5e:43:7b:39:e1:65:ff:7e:82: 9f:23:11:d8:31:66:48:07:62:2f:c9:be:be:43:7c: b7:18:b6:9d:0d:35:3e:e3:1d:22:14:e9:0e:e4:ed: 39:92:3e:34:8d:09:50:46:89:e6:a6:12:ff:b9:c4: ae:8d:68:7e:4b:04:29:35:d0:d8:e8:8c:03:30:75: f0:b6:99:5c:e2:4d:66:25:bc:f0:e1:97:41:e2:97: 56:3a:31:55:1b:c4:7d:5d:ac:75:6c:21:a5:84:17: f0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D7:39:E4:14:27:AB:1F:5C:7C:3A:25:80:91:A2:64:B5:D7:32:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.8.0.0/15 Signature Algorithm: sha256WithRSAEncryption d6:e2:d4:7e:aa:6e:a0:04:a1:74:d3:d0:ba:77:c5:2b:39:bc: 92:17:08:b1:b4:d9:ed:4d:a3:a3:a0:fa:21:0d:4d:ee:ff:4c: c7:75:7d:42:45:2b:b5:d0:e7:41:e4:fc:81:ce:18:dc:d9:1a: 0d:6e:56:37:03:5c:23:f1:68:53:f6:f5:74:35:02:4c:6a:3f: 7f:2a:8d:06:f3:f2:c2:81:6e:f3:6f:15:f2:c2:6c:82:49:dd: 38:0c:c5:f8:b9:09:60:3d:b4:4a:4e:42:94:17:7f:45:a4:af: 97:8f:64:a6:56:28:54:79:9e:ae:d9:7b:e4:b7:55:13:a1:6c: 22:d5:e1:8a:35:c0:5e:05:12:2f:c2:bb:4e:f7:8a:6c:56:57: 03:f4:26:1d:48:4c:a1:89:36:d7:d4:d2:ec:69:8d:91:d0:89: a9:a2:f7:55:e6:2d:8d:e3:8c:84:df:ef:ab:a5:dc:4d:3f:da: 8f:19:70:a0:a2:1c:e9:ba:12:bc:22:f9:70:c0:cc:7e:dd:43: 02:ba:15:ee:8f:08:99:b3:5f:88:40:58:b5:22:0d:1c:b2:40: 52:2f:ac:4d:ae:73:2c:7f:80:83:f5:6a:93:b1:ed:ad:e1:3f: 29:a0:3e:a1:82:d5:81:e8:ef:5b:17:21:bd:ad:8b:5f:4b:50: 0d:38:c7:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDZ+MWbxPIwKm076VA+oJiQex2XAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAxMDAwMDI1WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODU1ZjgxNmMwMDFiMzJlNWNhZGY4YzFkM2MxMjhiM2Qz ZWI3YjNiZmYzYjcxZGEzNjNjNDVjZmNhZmM5Zjc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpHqiWF37W7CjFNY0rJsWMg6pNnNyAHz1m+G1nI0PSVPsZ NwZb9CIEndUIzJZPtLUGgycCE6e5+tOLDmWGZOTh5cGSMV349PKG4cmUlFPbsTKu 34cLdTZlxja5P6YfpLKA8wQ1XobJKqZ2Re+CN2fyYM1K7ZSAx9qRuDn78nItSBHL nkaqoM+I33t3mJJa2QUWaM8JpTtfU8OgVF5DeznhZf9+gp8jEdgxZkgHYi/Jvr5D fLcYtp0NNT7jHSIU6Q7k7TmSPjSNCVBGieamEv+5xK6NaH5LBCk10NjojAMwdfC2 mVziTWYlvPDhl0Hil1Y6MVUbxH1drHVsIaWEF/AZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3Nc55BQnqx9cfDolgJGiZLXXMiMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmOWU0Yzk5LTE3NDUtNDFhNS1hMzZiLWNkZDdmNDY2ZDYwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGICDANBgkqhkiG9w0BAQsFAAOCAQEA1uLUfqpuoAShdNPQunfFKzm8khcI sbTZ7U2jo6D6IQ1N7v9Mx3V9QkUrtdDnQeT8gc4Y3NkaDW5WNwNcI/FoU/b1dDUC TGo/fyqNBvPywoFu828V8sJsgkndOAzF+LkJYD20Sk5ClBd/RaSvl49kplYoVHme rtl75LdVE6FsItXhijXAXgUSL8K7TveKbFZXA/QmHUhMoYk219TS7GmNkdCJqaL3 VeYtjeOMhN/vq6XcTT/ajxlwoKIc6boSvCL5cMDMft1DAroV7o8ImbNfiEBYtSIN HLJAUi+sTa5zLH+Ag/Vqk7HtreE/KaA+oYLVgejvWxchva2LX0tQDTjHDQ== -----END CERTIFICATE-----Generated at Wed Apr 16 16:40:54 2025 by rpki-client