$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa File: ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa (raw, json) Hash identifier: svXpe9n1gZPiBlxVVN+4tZw1FbmFxj22mFava11Sj6g= Subject key identifier: EB:EE:51:89:F6:F0:BF:C2:4E:67:16:16:61:D2:46:BC:94:E5:1E:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B0751660A9F753359CF2E3ACF5B7AA5D8D9A6B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa Signing time: Mon 07 Apr 2025 15:01:50 +0000 ROA not before: Mon 07 Apr 2025 15:01:50 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 153.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:07:51:66:0a:9f:75:33:59:cf:2e:3a:cf:5b:7a:a5:d8:d9:a6:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:01:50 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=acb78ef222d00223ead3c6609293dc70343fc6f28a6edde4bfca2b5ecca69e70, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bd:62:c3:50:a8:0d:66:9d:1d:04:f8:98:98: 79:2a:35:d7:5d:6d:e9:5c:24:56:d7:db:60:28:97: a1:c6:f6:e7:40:82:9a:4c:32:64:3d:1b:48:63:8a: 38:a5:ae:b3:73:6b:79:7f:c1:48:65:e0:44:f0:f2: 91:d1:38:67:88:4a:36:89:ae:f0:80:49:f3:d2:9b: 94:9d:15:77:c6:35:74:d1:2f:c6:be:c5:8a:82:71: 41:90:8d:d0:88:76:cf:32:0b:39:90:cf:55:8f:7d: 85:a4:96:d4:36:ea:fd:f8:b4:be:a1:b6:32:88:e7: d9:20:d9:98:63:85:84:0a:87:dd:c5:da:e5:90:ae: 47:ef:f7:70:6f:00:51:79:f1:23:93:d8:79:95:b6: 51:14:d6:a6:f2:04:ba:18:fe:24:c6:48:0d:00:6b: d8:2f:8f:e7:fe:0d:50:88:41:f4:ba:fc:3c:56:25: 55:01:a4:c1:11:63:ac:96:a4:df:46:65:47:94:1f: 4d:12:f1:15:41:50:21:1f:b4:3a:b1:e0:71:7a:e4: a0:e5:a6:08:22:c6:48:b0:c1:fb:8d:c7:5c:8c:db: d6:c3:97:6e:fa:d7:1b:70:1c:dc:40:20:4f:ae:a9: db:25:f8:f8:69:58:78:47:b4:a5:26:97:00:08:07: e3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EE:51:89:F6:F0:BF:C2:4E:67:16:16:61:D2:46:BC:94:E5:1E:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:52:0f:2f:29:f1:4b:e6:b4:fa:47:9c:d8:5d:44:16:ef:76: f9:0a:f4:28:fe:7c:ee:48:30:42:90:d0:20:b1:40:78:0e:c1: 0e:7a:07:d1:43:a2:90:18:eb:86:f6:f5:c7:4e:81:d5:55:e8: b8:13:db:44:b8:dc:52:66:8e:b2:ef:db:00:c5:f5:27:cd:06: 94:6c:2a:c8:af:04:d6:74:3a:2a:d1:69:5c:4a:a7:59:02:75: cb:05:95:aa:52:d2:ae:31:ce:25:b9:e0:50:74:32:42:f7:53: fc:31:ab:d4:bc:00:ad:e2:1d:7d:ab:a6:57:58:07:8b:f3:bc: 7a:38:6c:43:f6:6e:f2:10:e7:a7:f9:ab:10:35:91:2c:59:e9: 0a:40:58:93:ae:c1:e5:47:5b:12:b6:6a:7b:64:20:38:27:be: 58:3d:e4:27:f9:9c:99:5b:11:15:52:31:69:65:ee:5d:98:13: c8:d3:9a:ac:78:0f:fe:7f:c4:17:5f:40:a2:c6:08:8c:06:08: 94:fc:2c:26:18:6d:14:e4:8b:32:89:75:83:15:b2:cf:ea:ee: 28:4c:c0:29:ed:99:8f:04:7b:00:48:e7:ce:8f:bc:cc:05:e6: 2a:e1:a6:dd:f3:02:e5:d0:bb:5b:07:a2:e5:e2:13:ac:97:5b: 0c:39:6f:cf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGwdRZgqfdTNZzy46z1t6pdjZprIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMTUwWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2I3OGVmMjIyZDAwMjIzZWFkM2M2NjA5MjkzZGM3MDM0 M2ZjNmYyOGE2ZWRkZTRiZmNhMmI1ZWNjYTY5ZTcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtvWLDUKgNZp0dBPiYmHkqNdddbelcJFbX22Aol6HG9udA gppMMmQ9G0hjijilrrNza3l/wUhl4ETw8pHROGeISjaJrvCASfPSm5SdFXfGNXTR L8a+xYqCcUGQjdCIds8yCzmQz1WPfYWkltQ26v34tL6htjKI59kg2ZhjhYQKh93F 2uWQrkfv93BvAFF58SOT2HmVtlEU1qbyBLoY/iTGSA0Aa9gvj+f+DVCIQfS6/DxW JVUBpMERY6yWpN9GZUeUH00S8RVBUCEftDqx4HF65KDlpggixkiwwfuNx1yM29bD l2761xtwHNxAIE+uqdsl+PhpWHhHtKUmlwAIB+MTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6+5Rifbwv8JOZxYWYdJGvJTlHkkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjMGM5YmJiLTYwYzUtNDc1OC1hYmMzLTU0MDMyYTA2MGQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZDDANBgkqhkiG9w0BAQsFAAOCAQEAllIPLynxS+a0+kec2F1EFu92+Qr0 KP587kgwQpDQILFAeA7BDnoH0UOikBjrhvb1x06B1VXouBPbRLjcUmaOsu/bAMX1 J80GlGwqyK8E1nQ6KtFpXEqnWQJ1ywWVqlLSrjHOJbngUHQyQvdT/DGr1LwAreId faumV1gHi/O8ejhsQ/Zu8hDnp/mrEDWRLFnpCkBYk67B5UdbErZqe2QgOCe+WD3k J/mcmVsRFVIxaWXuXZgTyNOarHgP/n/EF19AosYIjAYIlPwsJhhtFOSLMol1gxWy z+ruKEzAKe2ZjwR7AEjnzo+8zAXmKuGm3fMC5dC7Wwei5eITrJdbDDlvzw== -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:20 2025 by rpki-client