$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa File: 7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa (raw, json) Hash identifier: xYzbhyAn3ZkjcaUAWNOA32g771j05eK49MO6iP9auUc= Subject key identifier: 57:21:DE:E1:7A:5E:82:6C:82:F3:7D:8D:68:C4:8F:1A:42:F8:73:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 134C17C8F2FF3E78BA2F0D7E38C241A086EE243E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa Signing time: Sat 29 Mar 2025 00:51:28 +0000 ROA not before: Sat 29 Mar 2025 00:51:28 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:4c:17:c8:f2:ff:3e:78:ba:2f:0d:7e:38:c2:41:a0:86:ee:24:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:51:28 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=69e1ba6b5542861109c269390ec58f35c1e0b51a450a056f6d7f7a438c3d870f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a8:9a:2c:28:e1:5f:1a:5a:d7:32:6d:a1:ae: b5:b2:72:97:b9:f6:7b:c1:a0:41:f3:f5:64:27:21: f7:32:91:f5:56:05:3d:79:4c:89:1a:d3:e5:79:b9: 88:55:b4:da:ad:64:fa:5a:05:3c:fb:27:a3:15:1d: 7c:43:1c:ae:17:86:3c:8d:3f:cb:4d:6f:dd:2e:d6: 1f:9d:fa:07:ff:40:0d:d1:8b:bb:c1:9b:dd:9e:3a: 61:57:95:cd:f7:ef:75:1e:c5:c8:e6:2e:3e:b4:1f: f4:33:cc:1c:6b:8a:7b:5c:7e:49:a0:dc:88:46:73: 58:3b:cc:dc:0c:3d:bd:7c:4d:61:11:40:d1:8b:7e: aa:95:67:18:36:e2:9a:2a:42:13:8e:57:6f:f9:b9: de:8e:3f:3e:13:cd:1c:df:3e:a6:ed:1b:a7:68:7b: 96:9f:50:cf:37:81:82:aa:77:43:5c:a5:4b:41:ea: d4:09:78:91:6e:66:bb:9f:14:a6:e6:2a:e0:b8:ea: 00:7f:de:7f:71:8f:85:76:32:54:e3:4c:18:de:7f: 1b:80:58:c3:e2:b3:2a:e8:f6:54:28:71:32:cf:07: 4d:3f:ff:f9:d6:4b:e3:cd:d7:9d:c8:82:a7:ff:b0: 89:7c:3f:4e:f5:96:f8:1e:da:a5:78:ae:da:c7:c0: 65:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:21:DE:E1:7A:5E:82:6C:82:F3:7D:8D:68:C4:8F:1A:42:F8:73:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c28c3c0-2bcf-46d9-880b-08672e3edc9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.32.0/21 Signature Algorithm: sha256WithRSAEncryption b4:11:81:7d:1e:e3:e1:3e:59:7e:ac:4e:8a:4d:57:43:61:4a: af:b0:61:a3:31:56:3d:34:40:e4:1b:da:73:a2:07:b5:54:f3: b5:e9:b0:f7:66:35:d5:71:72:11:25:22:53:ab:49:cd:17:e6: 49:9a:c0:be:d6:87:45:1f:0d:bd:07:28:36:11:e2:ee:5a:53: d7:6d:a0:b0:a9:5d:52:4e:19:17:72:d7:66:3d:f4:9b:10:5d: 81:d4:2f:73:31:6e:01:a6:66:f8:38:73:41:99:ed:3b:ed:4f: d4:4a:b0:07:b7:91:ed:e0:5b:50:3f:d2:84:8c:62:58:d2:ff: 5b:46:e4:51:99:3b:63:33:57:91:41:cf:ac:25:ca:4b:20:ad: 5e:c8:0e:73:8e:33:a3:44:f1:50:ec:2a:2b:18:e9:9c:a9:81: 57:43:66:99:b2:cc:19:c7:7b:c5:9a:b5:22:18:52:80:69:97: 4c:0a:ce:31:16:c6:0c:f0:b1:4e:b7:ee:c9:35:dd:23:93:8c: 32:3e:0e:e2:d3:01:1a:b0:c3:c3:47:15:34:c6:e2:6c:97:17: b2:c7:69:02:2e:cb:77:2a:4e:31:0f:8b:d1:99:b4:e7:b9:14: 72:e0:65:3b:5a:e2:83:90:da:80:82:85:f4:0d:83:92:28:ae: 40:1c:31:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE0wXyPL/Pni6Lw1+OMJBoIbuJD4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA1MTI4WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWUxYmE2YjU1NDI4NjExMDljMjY5MzkwZWM1OGYzNWMx ZTBiNTFhNDUwYTA1NmY2ZDdmN2E0MzhjM2Q4NzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2qJosKOFfGlrXMm2hrrWycpe59nvBoEHz9WQnIfcykfVW BT15TIka0+V5uYhVtNqtZPpaBTz7J6MVHXxDHK4XhjyNP8tNb90u1h+d+gf/QA3R i7vBm92eOmFXlc3373UexcjmLj60H/QzzBxrintcfkmg3IhGc1g7zNwMPb18TWER QNGLfqqVZxg24poqQhOOV2/5ud6OPz4TzRzfPqbtG6doe5afUM83gYKqd0NcpUtB 6tQJeJFuZrufFKbmKuC46gB/3n9xj4V2MlTjTBjefxuAWMPisyro9lQocTLPB00/ //nWS+PN153Igqf/sIl8P071lvge2qV4rtrHwGUdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVyHe4XpegmyC832NaMSPGkL4c1IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMjhjM2MwLTJiY2YtNDZkOS04ODBiLTA4NjcyZTNlZGM5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOugSAwDQYJKoZIhvcNAQELBQADggEBALQRgX0e4+E+WX6sTopNV0NhSq+w YaMxVj00QOQb2nOiB7VU87XpsPdmNdVxchElIlOrSc0X5kmawL7Wh0UfDb0HKDYR 4u5aU9dtoLCpXVJOGRdy12Y99JsQXYHUL3MxbgGmZvg4c0GZ7TvtT9RKsAe3ke3g W1A/0oSMYljS/1tG5FGZO2MzV5FBz6wlyksgrV7IDnOOM6NE8VDsKisY6ZypgVdD ZpmyzBnHe8WatSIYUoBpl0wKzjEWxgzwsU637sk13SOTjDI+DuLTARqww8NHFTTG 4myXF7LHaQIuy3cqTjEPi9GZtOe5FHLgZTta4oOQ2oCChfQNg5IorkAcMUU= -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:19 2025 by rpki-client