$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa File: 8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa (raw, json) Hash identifier: tLkoN291MwCgYq6NQNg0TyG+RcPA3fwuzWR5cU2Xgoc= Subject key identifier: 01:46:7B:24:7D:74:68:5E:06:76:CA:FE:76:98:FE:9D:D7:07:CA:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54F96F338B7AE5C837EAB66799E63B9DE51349 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa Signing time: Sat 29 Mar 2025 00:51:25 +0000 ROA not before: Sat 29 Mar 2025 00:51:25 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f9:6f:33:8b:7a:e5:c8:37:ea:b6:67:99:e6:3b:9d:e5:13:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:51:25 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=5a943e17010d07fa7fd8b18248964e0a5e1b36a0e65a0082412c0453f7e2bc32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5c:82:08:08:cb:0f:60:e7:8a:d7:47:c2:bd: 68:7c:7c:63:98:5f:d6:01:50:8a:2e:e3:c5:58:b0: 0e:f0:39:cc:d0:d3:8a:0b:fe:72:c8:33:2f:35:bb: f3:f8:aa:05:d2:1f:0f:fa:fc:9b:1d:ad:d4:42:fb: b2:79:57:06:bd:d2:33:24:16:2a:c7:82:8b:2d:6c: 86:2b:e9:65:82:a7:de:40:a6:53:f3:49:15:20:1c: c3:fc:7c:82:31:8d:67:47:fe:f3:47:a3:f8:95:28: 8c:b6:65:84:f0:93:d3:9b:91:b4:16:9c:0c:28:04: 9f:19:b3:1d:e7:21:d3:e9:75:04:c7:46:ec:11:42: 73:5d:f5:e0:d2:4d:18:09:2f:86:6e:c2:0b:83:5d: bf:24:3b:99:15:04:43:bf:99:e6:47:49:a2:86:4c: 4d:04:bc:3a:82:08:2a:a4:c0:02:0f:06:58:65:41: 29:f1:66:e3:e4:c1:8e:c1:16:96:da:8a:f0:9b:04: 03:41:28:b9:2f:31:b9:98:ee:bc:33:e6:43:9c:ca: d0:c5:e3:16:9c:33:90:b8:d0:ad:5c:58:f1:f3:99: 11:5e:b5:3d:fb:f1:43:ab:49:88:9b:d6:bc:1e:6e: 61:88:0d:99:1f:75:cc:d6:52:06:c1:79:63:4c:16: 79:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:46:7B:24:7D:74:68:5E:06:76:CA:FE:76:98:FE:9D:D7:07:CA:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.44.0/22 Signature Algorithm: sha256WithRSAEncryption 87:32:44:45:4f:a2:5c:01:29:0a:ef:6d:6c:e3:c2:48:bd:30: 52:21:13:47:d5:01:fb:8e:24:bd:de:0c:69:79:fa:ca:a8:d4: 13:4e:81:95:5f:fc:64:f8:69:f2:3a:0e:a9:85:4e:ef:07:18: 93:7d:30:1e:0c:1a:db:7b:e8:52:94:30:90:ee:64:7d:f5:14: 2a:49:ff:dd:c3:f4:37:46:76:ed:05:d1:81:47:cb:53:d5:89: b1:13:81:85:34:b9:90:38:22:61:a6:b3:74:1d:41:f8:32:a1: 8e:21:bb:72:d8:e0:6e:b2:0b:47:73:ca:a1:60:1c:9c:d4:96: 80:17:a1:3f:23:27:5b:4a:57:d8:09:96:c6:d1:54:44:29:3c: fb:9d:da:c6:a1:12:f6:bc:6e:82:6b:1d:2c:65:e0:c0:ca:05: b0:c4:69:ba:ea:33:25:ba:33:e9:fc:fb:31:89:31:e4:53:79: 2b:72:fe:5f:0b:53:2d:32:0d:6f:9c:15:77:e5:13:97:0b:10: 1b:85:f1:43:82:eb:ca:25:01:99:a4:75:0e:a9:d1:4e:ff:09: a2:81:54:c9:18:ef:87:27:4a:56:dd:83:9e:1f:16:79:2b:a9: f8:a1:85:2b:97:f0:16:0b:12:fb:3a:69:84:91:16:45:5f:b6: 03:dc:c4:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITVPlvM4t65cg36rZnmeY7neUTSTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTAzMjkwMDUxMjVaFw0yNTA1MDMyMzU5NTla MHoxSTBHBgNVBAUTQDVhOTQzZTE3MDEwZDA3ZmE3ZmQ4YjE4MjQ4OTY0ZTBhNWUx YjM2YTBlNjVhMDA4MjQxMmMwNDUzZjdlMmJjMzIxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJpcgggIyw9g54rXR8K9aHx8Y5hf1gFQii7jxViwDvA5zNDT igv+csgzLzW78/iqBdIfD/r8mx2t1EL7snlXBr3SMyQWKseCiy1shivpZYKn3kCm U/NJFSAcw/x8gjGNZ0f+80ej+JUojLZlhPCT05uRtBacDCgEnxmzHech0+l1BMdG 7BFCc1314NJNGAkvhm7CC4NdvyQ7mRUEQ7+Z5kdJooZMTQS8OoIIKqTAAg8GWGVB KfFm4+TBjsEWltqK8JsEA0EouS8xuZjuvDPmQ5zK0MXjFpwzkLjQrVxY8fOZEV61 PfvxQ6tJiJvWvB5uYYgNmR91zNZSBsF5Y0wWeVMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQBRnskfXRoXgZ2yv52mP6d1wfK7TAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvOGQ5ZDViZDctMjgwOC00ZGNmLTk2YTgtMjlmYzNhNjAzMzA3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAq6BLDANBgkqhkiG9w0BAQsFAAOCAQEAhzJERU+iXAEpCu9tbOPCSL0wUiET R9UB+44kvd4MaXn6yqjUE06BlV/8ZPhp8joOqYVO7wcYk30wHgwa23voUpQwkO5k ffUUKkn/3cP0N0Z27QXRgUfLU9WJsROBhTS5kDgiYaazdB1B+DKhjiG7ctjgbrIL R3PKoWAcnNSWgBehPyMnW0pX2AmWxtFURCk8+53axqES9rxugmsdLGXgwMoFsMRp uuozJboz6fz7MYkx5FN5K3L+XwtTLTINb5wVd+UTlwsQG4XxQ4LryiUBmaR1DqnR Tv8JooFUyRjvhydKVt2Dnh8WeSup+KGFK5fwFgsS+zpphJEWRV+2A9zEDQ== -----END CERTIFICATE-----Generated at Wed Apr 16 17:09:05 2025 by rpki-client