$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa File: 7840150d-90b6-4a97-8609-5a40556c4e1b.roa (raw, json) Hash identifier: P6hKhX2qyc4DP4e72E7n4LtFeHi/mk0nRPSZx2MrzcA= Subject key identifier: B1:36:88:32:BD:D4:50:73:8D:B9:FB:CF:53:34:6D:A0:EA:B7:66:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 724703BF40A0F95FEE3FD9495568653C3DF3CC2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa Signing time: Wed 09 Apr 2025 00:01:50 +0000 ROA not before: Wed 09 Apr 2025 00:01:50 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.149.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:47:03:bf:40:a0:f9:5f:ee:3f:d9:49:55:68:65:3c:3d:f3:cc:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:01:50 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=186aa40e3477e83115e8b0983a8a76af02d22156dc37836415152c6af991ed25, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ba:27:35:4e:cf:a8:e4:80:cb:e9:33:d7:c4: ca:71:c0:e6:f6:31:b7:78:33:9c:13:dc:65:0e:d5: 2c:51:7c:88:0a:00:7a:44:49:5e:76:a1:8f:21:5b: a3:15:d5:bd:82:50:ab:b8:3b:5c:9e:7a:9f:07:e6: dd:12:2d:86:c9:ec:85:98:8e:73:d5:11:22:b3:3d: 2e:e3:20:2c:d4:44:43:6f:1a:67:a7:1a:8c:26:34: 49:45:e8:ef:f8:24:53:6c:9a:89:5a:04:e1:e2:bb: 23:e8:ca:0a:b9:a1:34:3c:ec:3b:79:22:7a:a3:d9: fd:6a:4e:2e:55:b6:96:e3:71:c2:9b:7a:35:76:3d: 14:a7:f2:12:58:cc:56:9c:17:3f:0b:9d:65:3a:15: 52:44:ad:ab:52:76:34:3f:e4:63:2c:65:23:7a:6b: cd:76:d9:a2:b1:57:61:cf:cd:3a:86:3f:13:4a:d8: 27:25:04:57:dd:df:65:da:89:36:95:fc:8e:9a:05: 3b:b7:af:c9:bd:ff:06:38:16:82:68:39:64:00:cb: 38:ac:99:af:34:09:e9:56:a4:9a:f1:ee:2f:c3:04: 3d:42:65:3e:7e:d7:eb:41:39:10:01:7d:eb:10:3c: 74:3b:e1:49:bf:6d:18:e8:a4:d6:b6:5f:d0:02:0f: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:36:88:32:BD:D4:50:73:8D:B9:FB:CF:53:34:6D:A0:EA:B7:66:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.149.32.0/19 Signature Algorithm: sha256WithRSAEncryption 32:c6:06:36:e0:32:4c:1d:39:f6:5b:5e:16:38:4d:f6:8b:51: 4f:44:58:1e:3e:05:90:95:af:b7:65:8a:5c:5a:d2:c2:13:08: 4e:4e:fc:54:37:c7:72:d5:ef:d5:45:7c:19:9b:e2:43:c0:2d: 0e:1b:2b:96:b7:e9:7e:42:c0:36:5b:9f:f4:b2:10:3b:8a:cc: d7:49:c9:7e:cf:e5:7f:16:c6:25:d6:3f:4d:c2:4d:af:87:2a: 95:bf:49:78:bb:ee:ef:f4:68:be:f8:8c:00:39:03:97:ae:01: 6d:57:f8:3d:db:c5:21:68:2c:cc:79:37:ea:08:e3:94:c9:f9: 94:56:20:92:df:df:27:da:4b:c9:8e:ee:6d:cf:1b:0a:56:96: 3f:52:a5:78:9d:07:a1:65:b3:88:27:3a:32:ea:5d:bb:37:e2: 78:e3:48:aa:8c:45:e2:8e:5a:95:ad:cd:e4:d9:3f:4d:04:25: db:8a:0b:8f:84:1f:b7:5d:e8:ff:00:d2:27:c7:7c:e0:10:2e: 37:ac:e0:9a:f8:bf:ce:56:83:d5:b2:68:12:58:65:9f:17:d1: 01:d7:70:ce:7a:1a:b3:e2:2f:36:21:80:e7:71:e4:3b:8d:28: 7f:45:5f:96:d0:af:87:e8:cc:1f:aa:8c:ae:8e:60:19:b3:a6: e5:e6:15:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUckcDv0Cg+V/uP9lJVWhlPD3zzCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDAwMTUwWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODZhYTQwZTM0NzdlODMxMTVlOGIwOTgzYThhNzZhZjAy ZDIyMTU2ZGMzNzgzNjQxNTE1MmM2YWY5OTFlZDI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTuic1Ts+o5IDL6TPXxMpxwOb2Mbd4M5wT3GUO1SxRfIgK AHpESV52oY8hW6MV1b2CUKu4O1yeep8H5t0SLYbJ7IWYjnPVESKzPS7jICzURENv GmenGowmNElF6O/4JFNsmolaBOHiuyPoygq5oTQ87Dt5Inqj2f1qTi5VtpbjccKb ejV2PRSn8hJYzFacFz8LnWU6FVJEratSdjQ/5GMsZSN6a8122aKxV2HPzTqGPxNK 2CclBFfd32XaiTaV/I6aBTu3r8m9/wY4FoJoOWQAyzisma80CelWpJrx7i/DBD1C ZT5+1+tBORABfesQPHQ74Um/bRjopNa2X9ACDye/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsTaIMr3UUHONufvPUzRtoOq3ZtUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4NDAxNTBkLTkwYjYtNGE5Ny04NjA5LTVhNDA1NTZjNGUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXNlSAwDQYJKoZIhvcNAQELBQADggEBADLGBjbgMkwdOfZbXhY4TfaLUU9E WB4+BZCVr7dlilxa0sITCE5O/FQ3x3LV79VFfBmb4kPALQ4bK5a36X5CwDZbn/Sy EDuKzNdJyX7P5X8WxiXWP03CTa+HKpW/SXi77u/0aL74jAA5A5euAW1X+D3bxSFo LMx5N+oI45TJ+ZRWIJLf3yfaS8mO7m3PGwpWlj9SpXidB6Fls4gnOjLqXbs34njj SKqMReKOWpWtzeTZP00EJduKC4+EH7dd6P8A0ifHfOAQLjes4Jr4v85Wg9WyaBJY ZZ8X0QHXcM56GrPiLzYhgOdx5DuNKH9FX5bQr4fozB+qjK6OYBmzpuXmFbI= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:46 2025 by rpki-client