$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa File: 9940d9a4-1e50-403f-b014-557b401a56ee.roa (raw, json) Hash identifier: Nm+TijTkEPX34zv9WhgJcu2mjrQbZ3dd5ff2NCYZ0HM= Subject key identifier: AA:CD:F8:17:5A:7D:21:AA:27:1C:12:8D:81:DB:F8:B2:64:9D:F9:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35F39EEF28E177166ADD28052822C07922FC0691 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa Signing time: Wed 26 Mar 2025 00:11:11 +0000 ROA not before: Wed 26 Mar 2025 00:11:11 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.120.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f3:9e:ef:28:e1:77:16:6a:dd:28:05:28:22:c0:79:22:fc:06:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 26 00:11:11 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: serialNumber=61f7bc5d67cd0320ddb24216c70df63309ba7f43e78bbe5764b447f985fedb5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0f:02:f1:28:e2:0f:86:ce:36:d2:40:5a:ff: c0:62:ff:87:b5:4f:0f:da:52:ef:ea:7a:a4:c7:bd: d7:17:40:d6:ca:d3:1c:a1:85:44:5e:28:aa:cd:94: 02:e0:c0:24:d7:f7:b5:b0:5b:96:a7:12:f8:88:53: ad:99:6b:2b:11:88:0c:4d:bf:bb:ab:dd:2c:58:42: c2:bd:5f:4d:16:be:e5:46:03:9a:41:ef:d9:18:e0: 43:78:5e:f5:ef:17:fa:9c:e6:87:9a:4e:1d:d2:46: b3:27:62:75:35:78:cd:fe:6d:a8:c8:32:aa:cf:ff: 44:84:fc:12:a2:99:9d:bb:ae:41:ba:e6:c0:04:15: 76:ff:70:d8:db:52:68:b8:04:12:d5:1b:a0:44:99: fa:f9:a2:66:0f:bc:e3:42:74:0c:81:e2:08:df:31: 30:9d:e6:f0:9a:47:1b:c2:06:70:54:b8:75:3f:66: 29:3a:bd:a0:a5:c4:b7:3e:6f:34:4a:65:6c:5b:2a: f4:52:d7:f4:05:18:e3:41:59:d7:35:6a:5a:8e:80: 3c:1b:c8:f5:c8:84:9f:06:4e:38:1c:2f:1b:2f:ef: a8:9c:a0:be:14:9e:a0:9e:1a:d4:10:a1:a6:6e:33: 7f:3a:26:41:10:8b:7b:b1:57:3e:be:42:02:d8:40: be:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CD:F8:17:5A:7D:21:AA:27:1C:12:8D:81:DB:F8:B2:64:9D:F9:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.120.76.0/23 Signature Algorithm: sha256WithRSAEncryption a8:a2:18:73:7f:86:12:fd:54:27:b5:37:9b:9a:4c:fd:f9:42: d4:53:ed:c8:7e:99:3f:06:64:90:65:55:d9:be:b3:7d:a9:b0: 14:ea:80:73:37:55:da:ff:62:90:64:e4:c7:ce:35:97:3d:f9: 43:31:cb:81:84:35:79:3e:cf:81:d7:b6:d5:a4:58:f0:82:9d: 2d:97:75:70:d9:d9:22:0f:b6:ca:aa:3d:e4:ef:bb:f2:79:19: 82:1e:67:8d:ed:6a:60:e1:76:45:9f:39:a0:f2:b1:d9:00:d8: a8:b1:4b:7d:20:60:2a:13:7a:bc:de:40:91:9b:51:77:5d:9d: 25:3b:92:74:fb:40:e8:e1:25:d2:c9:98:52:61:69:9e:fd:f4: 42:e9:9d:93:92:d8:35:41:8e:5d:72:43:93:54:04:ef:d6:2c: 8e:ce:c4:a0:db:5a:70:1b:c6:a9:3b:2f:58:4d:21:21:c8:c8: 06:84:b0:17:5e:da:72:98:ef:5b:44:24:68:f3:a3:d0:93:2d: c7:70:e9:97:61:c8:80:39:e9:93:c2:a7:cc:80:98:47:aa:27: 63:bb:fd:28:f7:62:f5:fe:e4:5e:fc:0e:e4:93:50:16:5e:4a: 95:5b:f6:cd:bb:29:d2:18:f0:aa:3c:9b:3e:94:5d:bf:e3:ac: 54:54:13:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNfOe7yjhdxZq3SgFKCLAeSL8BpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI2MDAxMTExWhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWY3YmM1ZDY3Y2QwMzIwZGRiMjQyMTZjNzBkZjYzMzA5 YmE3ZjQzZTc4YmJlNTc2NGI0NDdmOTg1ZmVkYjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbDwLxKOIPhs420kBa/8Bi/4e1Tw/aUu/qeqTHvdcXQNbK 0xyhhUReKKrNlALgwCTX97WwW5anEviIU62ZaysRiAxNv7ur3SxYQsK9X00WvuVG A5pB79kY4EN4XvXvF/qc5oeaTh3SRrMnYnU1eM3+bajIMqrP/0SE/BKimZ27rkG6 5sAEFXb/cNjbUmi4BBLVG6BEmfr5omYPvONCdAyB4gjfMTCd5vCaRxvCBnBUuHU/ Zik6vaClxLc+bzRKZWxbKvRS1/QFGONBWdc1alqOgDwbyPXIhJ8GTjgcLxsv76ic oL4UnqCeGtQQoaZuM386JkEQi3uxVz6+QgLYQL5ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqs34F1p9IaonHBKNgdv4smSd+RcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5NDBkOWE0LTFlNTAtNDAzZi1iMDE0LTU1N2I0MDFhNTZlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGieEwwDQYJKoZIhvcNAQELBQADggEBAKiiGHN/hhL9VCe1N5uaTP35QtRT 7ch+mT8GZJBlVdm+s32psBTqgHM3Vdr/YpBk5MfONZc9+UMxy4GENXk+z4HXttWk WPCCnS2XdXDZ2SIPtsqqPeTvu/J5GYIeZ43tamDhdkWfOaDysdkA2KixS30gYCoT erzeQJGbUXddnSU7knT7QOjhJdLJmFJhaZ799ELpnZOS2DVBjl1yQ5NUBO/WLI7O xKDbWnAbxqk7L1hNISHIyAaEsBde2nKY71tEJGjzo9CTLcdw6ZdhyIA56ZPCp8yA mEeqJ2O7/Sj3YvX+5F78DuSTUBZeSpVb9s27KdIY8Ko8mz6UXb/jrFRUE/s= -----END CERTIFICATE-----Generated at Wed Apr 16 17:08:58 2025 by rpki-client