$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa File: dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa (raw, json) Hash identifier: 6G5C7OGR0OXlCL5vHMxDhwEMmAuBEq0Q/NiUu393QpM= Subject key identifier: E3:F4:90:1F:AF:A3:EF:EE:17:CB:A0:BB:53:C0:0E:1C:4F:60:5D:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66A01E81F8A9782B1DB34E2E1FA73AE6E2A05177 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa Signing time: Wed 02 Apr 2025 00:00:29 +0000 ROA not before: Wed 02 Apr 2025 00:00:29 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a0:1e:81:f8:a9:78:2b:1d:b3:4e:2e:1f:a7:3a:e6:e2:a0:51:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:00:29 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=b288fa068f424b56ba28eb666980761790befa508f81c7c25c8ae76bdfe50fc7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e8:e1:ad:c9:9a:55:f2:6d:db:20:f2:ef:ce: c9:62:0c:0a:f1:ae:16:ab:79:cd:bb:76:a5:ce:0b: 2a:0d:40:60:16:92:45:b9:18:af:56:d4:71:58:59: e3:2a:0d:ed:37:e7:19:05:9f:c5:84:25:ea:89:cf: cf:49:45:c7:c4:2e:d0:36:6b:15:e0:0c:60:5c:26: 14:f6:44:dd:03:35:65:bf:03:f9:2d:2a:09:3d:da: ef:0f:dd:03:49:44:5a:ba:b8:a5:cd:20:2b:b6:e6: 90:bb:14:b2:f8:60:58:cc:ff:04:d1:a5:37:63:4e: 37:23:56:b2:0e:d3:9d:b6:67:5e:dc:48:ff:d2:2b: a4:6a:7f:31:8f:09:20:02:ff:e7:63:dd:c7:57:47: 3a:36:4e:2a:2f:08:f7:9d:b5:a4:e8:32:84:cc:89: 78:e0:ab:d1:77:55:40:4b:fa:b7:7e:6b:4b:dd:f1: 47:80:20:61:be:84:a3:b3:f4:00:1c:90:8f:ab:cd: ee:7a:9a:9f:4e:16:70:df:65:2e:fd:ac:d6:8a:08: 1e:a4:8f:ae:fb:b9:95:03:f0:d8:b0:0b:13:23:c9: 7d:f2:f7:fb:9d:37:ae:6d:1f:6b:c8:1b:11:34:84: 99:9a:81:2a:17:db:22:64:f4:d1:db:a6:a2:83:13: c9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F4:90:1F:AF:A3:EF:EE:17:CB:A0:BB:53:C0:0E:1C:4F:60:5D:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:89:41:a4:03:db:0e:51:be:62:df:6d:e5:ba:f2:0e:06:c8: fd:39:19:95:2a:be:2a:dd:56:e6:3d:3a:f3:18:cf:f2:f7:16: d0:70:43:cc:5c:79:c0:5f:16:ec:ab:88:52:d6:cc:bb:ed:ee: 94:45:29:b0:12:8e:be:e6:ca:f7:45:a6:6c:a0:a7:4e:cc:aa: e0:d1:b4:23:ca:73:1a:e8:51:68:02:ba:18:fa:de:aa:bc:6e: d9:05:a3:8a:24:98:79:a4:3d:52:e2:c2:56:45:18:17:3e:c3: a6:85:90:44:6a:4c:4a:42:21:18:18:f1:90:41:33:4f:25:f3: 74:f3:70:1a:e7:a9:d9:00:bd:ee:8f:2f:d0:6b:18:cc:d1:39: bc:ac:3b:93:85:0f:a7:ad:42:10:a2:ea:29:13:4a:16:5d:f0: 92:21:bc:0c:21:73:36:a0:13:87:eb:10:79:ac:a3:44:cb:a4: 52:91:c6:3d:ab:00:2d:bf:d4:ef:fd:b0:60:1a:89:1b:20:ab: a3:64:98:af:b6:39:83:0e:8d:1d:53:6a:71:5e:e7:53:28:5a: ae:d9:da:8e:1a:8c:b5:69:8c:7d:81:53:73:df:98:24:25:1c: 8a:d3:91:eb:48:76:03:29:f1:92:20:ac:e0:69:ea:48:37:46: 02:10:1b:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZqAegfipeCsds04uH6c65uKgUXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAwMDI5WhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjg4ZmEwNjhmNDI0YjU2YmEyOGViNjY2OTgwNzYxNzkw YmVmYTUwOGY4MWM3YzI1YzhhZTc2YmRmZTUwZmM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf6OGtyZpV8m3bIPLvzsliDArxrharec27dqXOCyoNQGAW kkW5GK9W1HFYWeMqDe035xkFn8WEJeqJz89JRcfELtA2axXgDGBcJhT2RN0DNWW/ A/ktKgk92u8P3QNJRFq6uKXNICu25pC7FLL4YFjM/wTRpTdjTjcjVrIO0522Z17c SP/SK6RqfzGPCSAC/+dj3cdXRzo2TiovCPedtaToMoTMiXjgq9F3VUBL+rd+a0vd 8UeAIGG+hKOz9AAckI+rze56mp9OFnDfZS79rNaKCB6kj677uZUD8NiwCxMjyX3y 9/udN65tH2vIGxE0hJmagSoX2yJk9NHbpqKDE8mLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4/SQH6+j7+4Xy6C7U8AOHE9gXcwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZjhjNjhlLTkyY2YtNDk3MC1iZWM1LTBmYjM2NjZiMjdhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSgjANBgkqhkiG9w0BAQsFAAOCAQEAfolBpAPbDlG+Yt9t5bryDgbI/TkZ lSq+Kt1W5j068xjP8vcW0HBDzFx5wF8W7KuIUtbMu+3ulEUpsBKOvubK90WmbKCn Tsyq4NG0I8pzGuhRaAK6GPreqrxu2QWjiiSYeaQ9UuLCVkUYFz7DpoWQRGpMSkIh GBjxkEEzTyXzdPNwGuep2QC97o8v0GsYzNE5vKw7k4UPp61CEKLqKRNKFl3wkiG8 DCFzNqATh+sQeayjRMukUpHGPasALb/U7/2wYBqJGyCro2SYr7Y5gw6NHVNqcV7n UyhartnajhqMtWmMfYFTc9+YJCUcitOR60h2AynxkiCs4GnqSDdGAhAbZQ== -----END CERTIFICATE-----Generated at Wed Apr 16 16:47:01 2025 by rpki-client