$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa File: bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa (raw, json) Hash identifier: SSwlyeiRlAZ28ohdS7HQ/NDtK08giawnEB/Rw0i/sG8= Subject key identifier: CE:32:26:3F:19:FC:0D:C7:70:74:EE:16:0A:91:E8:D1:1D:3C:CA:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 393E2DA4BADF3CEBA6FCBD36E22F5BB80E42DBC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa Signing time: Sat 29 Mar 2025 00:11:12 +0000 ROA not before: Sat 29 Mar 2025 00:11:12 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3e:2d:a4:ba:df:3c:eb:a6:fc:bd:36:e2:2f:5b:b8:0e:42:db:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:11:12 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=591cac5073eb095c428c2056789dc73120d04fb0ce790b17da7eec790061bbef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:21:3c:76:e4:f6:2d:3b:89:42:4a:d4:6c: 2e:19:86:e8:9e:4e:ef:9a:d6:a4:41:9b:81:bb:bc: d5:38:72:85:00:d2:89:d0:ef:3d:b3:36:83:59:d2: fb:f4:ba:16:f3:71:f8:39:67:ad:dc:e1:b0:6b:42: 0f:0b:bf:e6:cc:a8:b2:15:ad:67:b1:ec:68:97:4b: dc:ca:96:6f:b2:dd:d1:b8:26:82:c6:28:5a:a2:06: a8:ee:05:c2:1f:7d:8b:d8:ab:85:09:b4:b2:a2:b6: ef:a7:65:f6:49:bf:cc:40:75:42:9f:04:28:f8:12: cc:55:11:11:e8:b9:e4:b6:9d:fe:14:c9:17:70:78: 52:17:f6:da:c6:63:38:7c:05:b4:b0:3a:85:90:9b: a3:df:0a:55:ee:97:fe:3a:b9:55:f0:56:77:13:6c: 98:22:4b:50:93:d6:e8:ed:e6:e3:5c:e2:12:5b:29: 5e:dd:6a:24:be:0f:dd:a9:0d:e1:04:4c:62:44:75: 64:6d:51:69:cc:2b:36:31:8b:61:50:1e:b8:68:37: d9:f7:45:a3:4e:cc:e1:01:77:90:dd:41:25:0b:c9: a5:32:b1:9e:48:4a:ed:1b:96:e2:e1:c9:42:f5:2c: e1:6a:7a:57:a4:f2:08:36:b4:e4:e1:68:05:8b:a6: 03:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:32:26:3F:19:FC:0D:C7:70:74:EE:16:0A:91:E8:D1:1D:3C:CA:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:b0:88:b4:09:b4:d1:80:43:af:5e:fa:fa:a9:65:85:7f:84: dd:5a:5b:bd:47:d4:d8:98:e1:88:f0:b1:d1:41:6a:ca:4c:61: fb:66:0d:da:11:d1:d4:b2:8a:81:0d:42:50:a2:df:ff:60:04: 33:94:a7:18:b8:98:7b:b9:79:6f:fa:94:7f:58:b4:5f:ac:a8: a3:bb:2a:b1:bf:0d:f4:a9:90:70:ae:da:44:cb:d0:d8:56:86: c0:5e:34:db:32:8f:3c:af:ed:d0:95:2a:fc:be:0f:d1:cf:2b: 71:ef:6a:f5:5e:8b:77:53:ac:33:4a:5d:2a:58:20:a3:b9:6c: b2:bb:87:dd:c4:57:e6:ab:cd:d6:32:c5:a2:55:21:59:22:21: 10:dd:f9:eb:72:9d:53:9d:88:52:3e:a3:fa:6f:83:dd:53:f9: c8:2f:9e:27:d3:51:0d:d1:69:b3:bf:eb:e4:6b:bc:ea:ce:c6: 8a:22:df:52:eb:69:9f:98:83:69:43:5a:e1:74:c9:c4:a6:4d: 25:55:ef:ad:4a:40:90:4a:65:40:56:53:ac:37:4c:57:61:6c: 9e:84:fb:f5:36:05:3c:9a:97:a9:7f:c3:bd:5f:43:b8:ee:77: 0a:8c:67:40:1c:18:48:e9:8e:f1:a2:1f:0d:73:23:c0:c4:db: 7b:d7:83:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOT4tpLrfPOum/L024i9buA5C28IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAxMTEyWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTFjYWM1MDczZWIwOTVjNDI4YzIwNTY3ODlkYzczMTIw ZDA0ZmIwY2U3OTBiMTdkYTdlZWM3OTAwNjFiYmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrMiE8duT2LTuJQkrUbC4ZhuieTu+a1qRBm4G7vNU4coUA 0onQ7z2zNoNZ0vv0uhbzcfg5Z63c4bBrQg8Lv+bMqLIVrWex7GiXS9zKlm+y3dG4 JoLGKFqiBqjuBcIffYvYq4UJtLKitu+nZfZJv8xAdUKfBCj4EsxVERHoueS2nf4U yRdweFIX9trGYzh8BbSwOoWQm6PfClXul/46uVXwVncTbJgiS1CT1ujt5uNc4hJb KV7daiS+D92pDeEETGJEdWRtUWnMKzYxi2FQHrhoN9n3RaNOzOEBd5DdQSULyaUy sZ5ISu0bluLhyUL1LOFqelek8gg2tOThaAWLpgNhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzjImPxn8DcdwdO4WCpHo0R08yu4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNmRkYWU2LWMwODMtNDRkNS1iNThkLTZjYzQzOGNmNGQ1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFrFpwwDQYJKoZIhvcNAQELBQADggEBAG2wiLQJtNGAQ69e+vqpZYV/hN1a W71H1NiY4YjwsdFBaspMYftmDdoR0dSyioENQlCi3/9gBDOUpxi4mHu5eW/6lH9Y tF+sqKO7KrG/DfSpkHCu2kTL0NhWhsBeNNsyjzyv7dCVKvy+D9HPK3HvavVei3dT rDNKXSpYIKO5bLK7h93EV+arzdYyxaJVIVkiIRDd+etynVOdiFI+o/pvg91T+cgv nifTUQ3RabO/6+RrvOrOxooi31LraZ+Yg2lDWuF0ycSmTSVV761KQJBKZUBWU6w3 TFdhbJ6E+/U2BTyal6l/w71fQ7judwqMZ0AcGEjpjvGiHw1zI8DE23vXg88= -----END CERTIFICATE-----Generated at Wed Apr 16 16:44:46 2025 by rpki-client