$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa File: 87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa (raw, json) Hash identifier: oJsM4zUQiCN6GCUvW9o1SMabvXAFoUhlNNtjO1C5/qQ= Subject key identifier: AF:8E:0B:37:EE:4B:F1:E2:23:3A:42:16:10:6A:77:C9:CB:18:C4:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F982A68241C478E8202A9526DBD1ED917A6936E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa Signing time: Tue 01 Apr 2025 00:00:33 +0000 ROA not before: Tue 01 Apr 2025 00:00:33 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:98:2a:68:24:1c:47:8e:82:02:a9:52:6d:bd:1e:d9:17:a6:93:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 1 00:00:33 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=1a196f94d60f1f5b111468d05cbe7834a0aad00edbf04b3cf11320008735b0a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b1:e1:71:c6:72:b2:60:df:0b:86:0c:12:2a: ac:30:86:0b:b4:6c:85:9f:76:f1:48:33:51:9c:cd: 03:ab:c7:2b:7c:69:ef:f2:09:d5:25:b8:25:38:51: 7c:2e:f9:c3:0a:40:c0:b0:cb:f6:78:29:cb:66:d5: 1d:bf:72:44:37:18:65:3c:a1:fb:f0:7c:9b:6f:48: 85:0d:45:ca:f1:3c:25:a9:85:99:4e:33:38:67:5a: 8a:0e:b8:c8:63:ce:51:96:b9:9f:9f:e7:6d:a6:8b: cc:f5:01:e9:c1:97:2e:7b:47:b6:17:70:8c:3d:94: 6e:df:e9:8c:16:d8:e7:b0:68:06:3f:6b:58:e4:29: 52:c3:f8:0e:7b:e5:8b:70:a0:d5:f9:25:56:80:45: 6a:c0:28:f3:59:93:d2:21:64:b9:97:65:e4:06:3a: d2:0d:f5:71:60:da:2d:86:f4:0f:cc:3c:bb:80:4b: 92:00:a6:1e:0a:21:de:f3:5f:a0:d4:d7:49:f3:95: ab:13:21:94:0e:51:72:6e:cd:d1:1d:73:7a:21:50: 88:b2:b6:1f:76:04:30:94:67:81:5b:d1:a0:f4:fa: cd:f1:b0:e1:38:ef:23:df:1e:b8:3d:3c:81:a2:b1: 66:f2:d9:7d:92:b6:72:eb:df:4e:36:5e:65:20:b4: 1a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8E:0B:37:EE:4B:F1:E2:23:3A:42:16:10:6A:77:C9:CB:18:C4:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:40:5c:a5:d4:ee:bf:86:13:2e:ce:f6:d3:fa:f6:0e:22:60: 8b:c4:ec:05:5c:e4:ba:4a:5e:36:2b:ea:61:2b:6d:b8:00:f9: f3:20:c8:97:e8:c5:a8:66:47:ae:9d:84:b0:2b:e6:4b:da:2e: b4:86:eb:4e:f3:c9:0c:f4:28:02:a2:47:85:ee:c6:83:8e:4f: 5b:a9:27:ac:8a:df:f0:de:cd:af:b2:78:c3:b7:00:6e:ee:8e: 86:69:cf:5b:94:9c:69:3a:0b:64:97:b7:0a:29:b6:ac:08:00: 98:11:de:34:e1:b8:e5:b8:fb:4c:b3:94:bb:cc:db:22:85:98: 11:e0:f4:f7:23:99:8c:6c:f7:59:70:aa:12:79:a3:ba:5e:0c: 6f:3d:79:51:b4:5a:8d:76:c9:66:3a:b0:94:91:e9:1e:cb:43: 69:8f:41:b6:03:94:65:f9:88:c0:1b:c7:f8:7c:29:a4:01:7a: 34:cf:19:de:29:ae:c1:59:fb:1d:47:f5:fd:4f:df:ef:6a:a4: 11:64:c6:c5:bc:6b:d1:5e:68:84:c4:ea:e2:73:3e:f0:1e:0f: 29:16:04:4a:4c:68:c1:b6:0b:5b:fa:20:14:27:e9:14:79:a6: b6:d0:f9:c6:b0:15:97:df:3c:30:df:8a:2c:28:59:de:c8:72: e4:b5:5c:70 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH5gqaCQcR46CAqlSbb0e2Remk24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAxMDAwMDMzWhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTE5NmY5NGQ2MGYxZjViMTExNDY4ZDA1Y2JlNzgzNGEw YWFkMDBlZGJmMDRiM2NmMTEzMjAwMDg3MzViMGE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGseFxxnKyYN8LhgwSKqwwhgu0bIWfdvFIM1GczQOrxyt8 ae/yCdUluCU4UXwu+cMKQMCwy/Z4Kctm1R2/ckQ3GGU8ofvwfJtvSIUNRcrxPCWp hZlOMzhnWooOuMhjzlGWuZ+f522mi8z1AenBly57R7YXcIw9lG7f6YwW2OewaAY/ a1jkKVLD+A575YtwoNX5JVaARWrAKPNZk9IhZLmXZeQGOtIN9XFg2i2G9A/MPLuA S5IAph4KId7zX6DU10nzlasTIZQOUXJuzdEdc3ohUIiyth92BDCUZ4Fb0aD0+s3x sOE47yPfHrg9PIGisWby2X2StnLr3042XmUgtBoHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr44LN+5L8eIjOkIWEGp3ycsYxPMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3ZjJkMTdiLWJjMDAtNGY3YS1iN2U4LTc4ODU1OGRkMjVhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVLDANBgkqhkiG9w0BAQsFAAOCAQEAGkBcpdTuv4YTLs720/r2DiJgi8Ts BVzkukpeNivqYSttuAD58yDIl+jFqGZHrp2EsCvmS9outIbrTvPJDPQoAqJHhe7G g45PW6knrIrf8N7Nr7J4w7cAbu6OhmnPW5ScaToLZJe3Cim2rAgAmBHeNOG45bj7 TLOUu8zbIoWYEeD09yOZjGz3WXCqEnmjul4Mbz15UbRajXbJZjqwlJHpHstDaY9B tgOUZfmIwBvH+HwppAF6NM8Z3imuwVn7HUf1/U/f72qkEWTGxbxr0V5ohMTq4nM+ 8B4PKRYESkxowbYLW/ogFCfpFHmmttD5xrAVl988MN+KLChZ3shy5LVccA== -----END CERTIFICATE-----Generated at Wed Apr 16 17:02:12 2025 by rpki-client