$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa File: 71e4dd76-d0a5-4298-b47e-b983c7943d01.roa (raw, json) Hash identifier: l5il7EfBOv/CF3We8H1EyMT1/xJefLY/gKNtKb2Em6k= Subject key identifier: E4:2A:8F:0D:BD:35:02:40:F0:37:DC:EB:DE:FB:0A:CF:B3:30:64:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4965EF70830A34B798B316EC250529C422A5D30D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa Signing time: Sat 29 Mar 2025 00:11:17 +0000 ROA not before: Sat 29 Mar 2025 00:11:17 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:65:ef:70:83:0a:34:b7:98:b3:16:ec:25:05:29:c4:22:a5:d3:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:11:17 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=a6a2cdda4d47b21261c183055f8b94a96d6d703228d50dba7ee344295f1e4bbd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b7:15:2f:39:fe:3d:62:69:25:4f:c1:9b:de: 8e:39:cc:10:1f:1b:a9:ec:88:63:08:f9:7d:31:a2: 93:fd:6b:fd:1d:a2:89:59:e0:1d:0b:9d:a8:78:d6: 68:3f:74:91:23:e5:ba:07:2f:67:10:0d:66:8b:91: b0:21:19:ff:38:bc:c3:85:56:0e:7b:f4:a0:c0:88: e4:c4:24:a2:7b:48:2a:47:19:bd:1d:cd:1a:87:74: 96:5a:30:88:d7:45:2a:01:b1:06:ef:8c:d4:a5:ed: ec:79:de:ba:d2:26:54:57:7b:d3:b0:25:91:98:09: 42:2e:8e:1b:67:fe:af:79:f4:34:99:46:8f:72:34: b6:05:2d:81:04:9f:a8:fb:2f:1a:db:22:89:44:b7: b3:f3:46:c9:c3:80:b0:95:22:53:17:80:78:06:6b: 4d:d9:3a:09:9a:b6:3a:0c:2b:23:1c:02:dd:4d:d8: e4:bf:8b:3b:da:38:b5:ed:7f:38:80:0e:34:3d:cf: 79:8c:96:d7:78:4f:3c:4c:c6:18:23:dd:90:c4:3d: e1:f9:36:56:68:bc:bf:39:0b:eb:94:c0:b7:01:a3: bd:7d:b5:73:2a:57:0d:98:40:e8:da:d0:3c:bf:5c: 62:6a:91:5d:03:b3:29:53:ef:04:c5:21:9f:c7:a7: 6a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2A:8F:0D:BD:35:02:40:F0:37:DC:EB:DE:FB:0A:CF:B3:30:64:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption cd:35:2a:fd:a5:e2:ee:7c:75:bf:ae:70:3e:bc:b3:e2:3b:88: 2c:87:c1:c3:dc:7a:01:fc:b2:5b:85:b9:01:66:a4:e8:00:fc: 85:4e:86:c3:a6:6b:66:79:5f:a0:59:ea:bb:af:10:8c:ca:29: 9c:cf:6a:9e:77:66:63:22:73:91:9f:3c:2e:d0:66:ae:53:76: 91:ed:0c:39:25:d6:42:a9:ef:6f:6a:99:7e:05:a2:96:a6:76: 9e:be:66:8a:df:f9:69:c3:b9:d7:8e:29:2d:33:22:78:2d:80: 25:85:b1:f9:54:de:15:ab:a6:65:8c:96:58:a2:2d:4e:e6:bb: c2:e1:9f:1c:b0:57:9f:d7:1a:41:d9:1b:09:f3:4d:61:1c:71: ae:e9:e2:e4:41:e8:f1:63:eb:50:66:3b:dd:1a:74:a4:d6:7a: 0a:42:83:5c:04:3e:41:cd:7d:be:07:cd:e3:e2:9d:3f:1a:03: 87:f7:32:aa:29:b3:0b:5a:d4:e7:60:a0:9f:21:58:16:e6:f3: 5a:d3:47:f8:d0:e9:a9:d4:f3:19:9a:fa:d2:8d:6a:c7:5e:e9: ae:a9:cc:30:8b:5e:ad:0b:5e:a1:8a:b7:10:28:97:6d:3c:9c: b0:f1:5a:e7:94:b5:c9:16:44:c0:49:80:61:c0:86:cf:1d:54: 25:f0:3e:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSWXvcIMKNLeYsxbsJQUpxCKl0w0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAxMTE3WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmEyY2RkYTRkNDdiMjEyNjFjMTgzMDU1ZjhiOTRhOTZk NmQ3MDMyMjhkNTBkYmE3ZWUzNDQyOTVmMWU0YmJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6txUvOf49YmklT8Gb3o45zBAfG6nsiGMI+X0xopP9a/0d oolZ4B0Lnah41mg/dJEj5boHL2cQDWaLkbAhGf84vMOFVg579KDAiOTEJKJ7SCpH Gb0dzRqHdJZaMIjXRSoBsQbvjNSl7ex53rrSJlRXe9OwJZGYCUIujhtn/q959DSZ Ro9yNLYFLYEEn6j7LxrbIolEt7PzRsnDgLCVIlMXgHgGa03ZOgmatjoMKyMcAt1N 2OS/izvaOLXtfziADjQ9z3mMltd4TzxMxhgj3ZDEPeH5NlZovL85C+uUwLcBo719 tXMqVw2YQOja0Dy/XGJqkV0DsylT7wTFIZ/Hp2pPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5CqPDb01AkDwN9zr3vsKz7MwZAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxZTRkZDc2LWQwYTUtNDI5OC1iNDdlLWI5ODNjNzk0M2QwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBAM01Kv2l4u58db+ucD68s+I7iCyH wcPcegH8sluFuQFmpOgA/IVOhsOma2Z5X6BZ6ruvEIzKKZzPap53ZmMic5GfPC7Q Zq5TdpHtDDkl1kKp729qmX4Fopamdp6+Zorf+WnDudeOKS0zIngtgCWFsflU3hWr pmWMlliiLU7mu8LhnxywV5/XGkHZGwnzTWEcca7p4uRB6PFj61BmO90adKTWegpC g1wEPkHNfb4HzePinT8aA4f3Mqopswta1OdgoJ8hWBbm81rTR/jQ6anU8xma+tKN asde6a6pzDCLXq0LXqGKtxAol208nLDxWueUtckWRMBJgGHAhs8dVCXwPrk= -----END CERTIFICATE-----Generated at Wed Apr 16 16:42:39 2025 by rpki-client