$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa File: af447631-2ee0-48e3-99c1-aabf4304ee15.roa (raw, json) Hash identifier: N+ro2e/sSeC2g2jbtTUTuiml5vN0CMno3Ssjzt6CTO8= Subject key identifier: 4E:93:34:3B:9B:E8:C4:33:7B:BF:EC:40:3E:27:11:B3:5C:09:73:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46855270AB14777C70E917F0A7FFA3BD832BB035 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa Signing time: Sat 29 Mar 2025 00:21:11 +0000 ROA not before: Sat 29 Mar 2025 00:21:11 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:85:52:70:ab:14:77:7c:70:e9:17:f0:a7:ff:a3:bd:83:2b:b0:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:21:11 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=6f4e08c81415b076601d24e7a8639b945b87e00be54ba5f0e29c6e6f13a44c2d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b7:54:a1:d0:22:e7:a5:41:1b:e7:73:d2:98: 77:21:82:14:be:c7:74:b8:e8:1c:8d:55:45:32:5e: f0:a7:c5:1a:00:64:54:f7:60:4c:a7:a6:3d:8f:26: c2:fa:ac:72:d2:e7:75:26:0f:8e:50:98:36:5a:88: 3a:2f:ac:3a:94:14:2e:08:80:d7:74:7a:97:70:5f: bc:26:b0:ed:34:d1:2f:6b:74:52:68:4f:4d:a1:b0: a8:0d:85:a9:fb:b3:be:87:a2:e5:80:7f:85:ce:3d: f0:d8:34:89:71:84:9b:9b:51:e4:8b:61:cd:d0:98: 12:fb:01:f2:81:05:f5:f6:f5:f2:d3:ed:2f:86:5c: aa:ad:19:84:31:9d:b5:35:07:66:c1:6f:ba:12:3d: e0:2b:f0:7d:49:7b:c7:ad:39:8c:41:d3:be:b2:fc: 09:5d:14:74:2e:44:3b:0c:d3:c8:2f:43:4d:ff:01: 59:c0:81:5c:11:d3:d3:37:68:84:d5:3a:43:19:80: b5:d5:60:24:6e:64:98:e2:78:5d:6c:dd:4a:e9:64: 20:c3:46:62:02:22:1e:0b:d2:fa:39:9b:57:83:30: 3f:16:69:fe:2c:80:a4:82:03:19:24:27:bc:d6:0a: 81:b0:e4:aa:16:f3:96:6e:02:e6:bc:aa:fd:b8:51: de:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:93:34:3B:9B:E8:C4:33:7B:BF:EC:40:3E:27:11:B3:5C:09:73:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.144.0/20 Signature Algorithm: sha256WithRSAEncryption 56:c8:e2:b3:49:07:4d:9f:10:f1:73:7f:28:27:67:2d:7b:84: 3f:0b:0e:41:cf:08:cd:09:89:31:4e:0f:7b:55:33:3a:53:3c: c6:ba:01:f1:cc:d6:74:c3:ea:3e:bf:92:ff:b5:a5:cd:da:fc: 8f:69:c3:4c:cd:71:9f:70:bd:9f:eb:2d:30:b2:75:40:ab:65: cb:79:9e:39:37:15:1f:37:2c:4f:09:ba:18:00:4d:c0:aa:c8: dc:80:41:58:c8:6c:8a:7d:05:4c:9e:0d:55:fd:82:22:64:36: 42:d8:0e:b1:9c:97:67:ea:6f:16:7d:4d:74:af:d8:c2:59:e4: 1d:48:f0:d8:48:b5:3e:24:2a:4b:32:5e:11:3c:fe:a8:5f:c4: 24:86:64:97:fa:17:f0:ff:84:c1:59:23:f1:43:d7:31:04:0e: 5c:22:69:14:ec:e0:3c:49:f3:c7:df:38:11:74:ef:6d:51:89: 3d:19:38:f8:5f:22:e8:9e:de:f8:4a:07:62:fe:73:ff:32:ff: 8c:24:8a:e5:c4:98:94:7b:ce:4b:a4:d7:35:25:26:f9:1b:b6: 86:cd:02:9e:70:43:26:b2:15:48:de:ce:45:84:81:ee:a3:6b: ac:5b:c9:0b:05:56:59:a4:9f:9a:ab:56:70:b9:b8:1b:77:c7: 98:32:be:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURoVScKsUd3xw6Rfwp/+jvYMrsDUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAyMTExWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjRlMDhjODE0MTViMDc2NjAxZDI0ZTdhODYzOWI5NDVi ODdlMDBiZTU0YmE1ZjBlMjljNmU2ZjEzYTQ0YzJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVt1Sh0CLnpUEb53PSmHchghS+x3S46ByNVUUyXvCnxRoA ZFT3YEynpj2PJsL6rHLS53UmD45QmDZaiDovrDqUFC4IgNd0epdwX7wmsO000S9r dFJoT02hsKgNhan7s76HouWAf4XOPfDYNIlxhJubUeSLYc3QmBL7AfKBBfX29fLT 7S+GXKqtGYQxnbU1B2bBb7oSPeAr8H1Je8etOYxB076y/AldFHQuRDsM08gvQ03/ AVnAgVwR09M3aITVOkMZgLXVYCRuZJjieF1s3UrpZCDDRmICIh4L0vo5m1eDMD8W af4sgKSCAxkkJ7zWCoGw5KoW85ZuAua8qv24Ud7/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTpM0O5voxDN7v+xAPicRs1wJc/0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDQ3NjMxLTJlZTAtNDhlMy05OWMxLWFhYmY0MzA0ZWUxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFJAwDQYJKoZIhvcNAQELBQADggEBAFbI4rNJB02fEPFzfygnZy17hD8L DkHPCM0JiTFOD3tVMzpTPMa6AfHM1nTD6j6/kv+1pc3a/I9pw0zNcZ9wvZ/rLTCy dUCrZct5njk3FR83LE8JuhgATcCqyNyAQVjIbIp9BUyeDVX9giJkNkLYDrGcl2fq bxZ9TXSv2MJZ5B1I8NhItT4kKksyXhE8/qhfxCSGZJf6F/D/hMFZI/FD1zEEDlwi aRTs4DxJ88ffOBF0721RiT0ZOPhfIuie3vhKB2L+c/8y/4wkiuXEmJR7zkuk1zUl JvkbtobNAp5wQyayFUjezkWEge6ja6xbyQsFVlmkn5qrVnC5uBt3x5gyvvw= -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:31 2025 by rpki-client