$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa File: a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa (raw, json) Hash identifier: I/dMA68uDF1UZ25E6q45LHdSIiRGbhBV60X8RBnOeKU= Subject key identifier: D2:95:EB:8B:D3:F2:DB:41:CD:3B:7F:00:31:86:0F:02:A2:0B:C6:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 223904D8869399DC35CBDBA5EB8D89CA968CCE36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa Signing time: Sat 29 Mar 2025 00:52:08 +0000 ROA not before: Sat 29 Mar 2025 00:52:08 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:39:04:d8:86:93:99:dc:35:cb:db:a5:eb:8d:89:ca:96:8c:ce:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:52:08 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=341305ae89f42931418835f90c8320a47df715375e9af866c4941b26c1fb70b0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:16:fd:d0:d8:21:4e:23:e6:a7:67:2f:71:05: be:04:a5:28:90:c1:6f:d9:28:f4:56:e6:e5:cb:91: 7e:7c:34:0b:3c:b5:0d:ed:f8:4b:52:a8:d3:24:91: 63:e1:57:d0:72:e7:d9:df:c1:ba:7d:3d:e0:78:53: 7b:37:53:73:5b:62:fb:92:9e:d9:cc:19:c6:8b:ff: e5:7f:3e:97:19:b0:85:cc:f8:d7:b4:3a:4d:61:27: a0:b9:93:44:54:0f:93:bf:85:ed:32:84:15:27:80: f6:7b:1e:16:85:17:8d:d9:3d:93:bf:01:5d:ca:f7: fe:10:1d:e7:22:3c:48:95:ec:04:6c:ae:34:ff:fd: 15:2a:30:27:cc:65:fd:72:0c:63:db:41:f8:d3:8e: b2:d8:96:d3:35:fd:50:3c:1c:bc:8c:7b:de:15:51: 1d:61:dc:96:c0:71:bd:c4:82:5c:c7:b6:af:2a:17: 8f:86:b3:5d:bf:4e:3d:66:06:a3:5b:bd:57:b4:cc: 64:3e:b9:fb:d8:a7:22:73:04:99:69:94:35:f4:1f: 90:13:dc:30:d3:d6:1c:94:af:b2:5c:9e:26:01:b3: c0:34:19:5a:f3:ad:4b:57:10:fa:cd:fd:f0:70:ed: af:f5:a2:ea:99:ea:88:dc:88:52:ec:13:b1:f6:5d: ce:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:95:EB:8B:D3:F2:DB:41:CD:3B:7F:00:31:86:0F:02:A2:0B:C6:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.217.0/24 Signature Algorithm: sha256WithRSAEncryption 99:3b:cd:f7:94:5d:20:9a:42:d4:18:0a:e4:ee:34:8e:2e:6e: 49:88:44:e9:71:e7:60:7d:1a:06:8a:4d:5e:6d:03:40:6f:13: 80:3d:c2:ad:c3:a1:f5:5f:ea:31:ba:11:51:d5:7d:84:7e:97: 74:c1:1e:35:f1:65:22:c6:fb:cc:78:5c:c6:a8:ed:50:b2:3d: 64:79:f3:94:60:d9:5f:95:f1:4f:b0:4e:a0:a6:0b:71:c4:c9: 8a:2c:78:cd:e3:62:74:0a:8d:80:6d:8b:cf:5e:44:b9:44:69: d8:c4:66:44:ab:0b:3b:05:a5:3b:c5:45:cb:ec:de:cd:5c:d2: 38:bb:fc:bf:42:4b:05:a1:41:f4:ec:81:83:7b:d4:ef:70:a0: 78:28:34:41:1c:0f:6b:5c:d1:e5:e7:2e:0e:d5:d9:5b:5f:2f: 49:00:d3:53:86:1a:90:e9:01:06:ac:a9:d3:7a:46:72:31:cd: 13:b3:77:6e:b9:25:38:cb:3e:48:ad:22:27:77:87:dd:e4:6d: 1b:0b:84:81:2f:89:0f:45:97:13:5b:4f:ad:08:c3:d1:5b:25: ea:ed:fc:02:58:fe:80:34:eb:01:a5:3f:0d:6a:ed:fa:5d:83: 37:13:55:27:f9:6e:18:12:a7:58:a8:0c:91:cf:5f:f6:45:9e: 66:47:20:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIjkE2IaTmdw1y9ul642JypaMzjYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA1MjA4WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDEzMDVhZTg5ZjQyOTMxNDE4ODM1ZjkwYzgzMjBhNDdk ZjcxNTM3NWU5YWY4NjZjNDk0MWIyNmMxZmI3MGIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuFv3Q2CFOI+anZy9xBb4EpSiQwW/ZKPRW5uXLkX58NAs8 tQ3t+EtSqNMkkWPhV9By59nfwbp9PeB4U3s3U3NbYvuSntnMGcaL/+V/PpcZsIXM +Ne0Ok1hJ6C5k0RUD5O/he0yhBUngPZ7HhaFF43ZPZO/AV3K9/4QHeciPEiV7ARs rjT//RUqMCfMZf1yDGPbQfjTjrLYltM1/VA8HLyMe94VUR1h3JbAcb3EglzHtq8q F4+Gs12/Tj1mBqNbvVe0zGQ+ufvYpyJzBJlplDX0H5AT3DDT1hyUr7JcniYBs8A0 GVrzrUtXEPrN/fBw7a/1ouqZ6ojciFLsE7H2Xc5ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0pXri9Py20HNO38AMYYPAqILxnowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExYjMwZmQzLTJkNzktNDlmYy05OGQ0LTMwMTU1NzdlYWJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM7NkwDQYJKoZIhvcNAQELBQADggEBAJk7zfeUXSCaQtQYCuTuNI4ubkmI ROlx52B9GgaKTV5tA0BvE4A9wq3DofVf6jG6EVHVfYR+l3TBHjXxZSLG+8x4XMao 7VCyPWR585Rg2V+V8U+wTqCmC3HEyYoseM3jYnQKjYBti89eRLlEadjEZkSrCzsF pTvFRcvs3s1c0ji7/L9CSwWhQfTsgYN71O9woHgoNEEcD2tc0eXnLg7V2VtfL0kA 01OGGpDpAQasqdN6RnIxzROzd265JTjLPkitIid3h93kbRsLhIEviQ9FlxNbT60I w9FbJert/AJY/oA06wGlPw1q7fpdgzcTVSf5bhgSp1ioDJHPX/ZFnmZHIEk= -----END CERTIFICATE-----Generated at Wed Apr 16 16:58:23 2025 by rpki-client