$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa File: efb54f3e-2c1a-4dbb-876a-f86620b04208.roa (raw, json) Hash identifier: VK7L1WEZk6UMc1tYbFYYW8SkoVL3Ogt+RZ3cb5qkYRk= Subject key identifier: 9C:4D:9A:D8:3E:65:75:87:C8:B2:16:3F:6E:74:17:44:1C:31:7C:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 438FF831E01403309D0DBF5BDCB2BEB0E31F44EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa Signing time: Wed 09 Apr 2025 00:41:09 +0000 ROA not before: Wed 09 Apr 2025 00:41:09 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8f:f8:31:e0:14:03:30:9d:0d:bf:5b:dc:b2:be:b0:e3:1f:44:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:41:09 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=d02c9cbb33b2b07b910ac60fdbd5fbe6c79637b9c2c3229b8c04ae4e71f25093, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:86:3c:5d:ea:ed:3d:f9:f3:3c:bd:d3:6c:d2: 9d:7a:18:5e:8a:80:67:53:2b:b5:b6:09:cd:0c:ae: 83:01:25:a5:6d:dd:17:87:3f:bd:46:a2:55:fe:0f: 5f:a1:db:5c:e4:9e:ab:4e:5e:f1:63:8f:bf:6c:aa: 27:2a:53:df:f5:73:28:13:d8:2d:9b:c3:29:63:5d: b7:f4:3f:74:27:be:82:0b:b3:a5:69:18:8f:3f:63: 3e:4c:43:16:b6:d8:19:2a:46:cc:32:a6:18:93:df: 94:ed:04:c6:55:51:4c:fb:03:fb:ad:fd:50:28:25: a3:44:ca:be:d8:a8:97:fd:38:4a:af:41:00:fe:05: 0c:e4:73:9a:a8:f0:c1:3a:d3:98:46:d9:9c:78:4a: cd:c0:91:65:e2:54:19:d1:2f:ad:47:f0:31:a0:18: ea:d1:2e:30:db:9b:35:b3:c9:2c:8e:e3:26:d8:c8: 6d:d2:a4:16:31:eb:33:59:30:a3:12:5a:44:0f:92: 76:24:45:c8:69:78:f3:62:5a:4c:54:8b:73:4b:6a: d1:1c:bb:bb:bc:56:80:13:a4:01:82:45:94:6a:57: 4a:f9:ae:79:66:a6:02:ab:90:27:6a:7d:83:2f:4f: 96:b7:2e:94:22:50:f1:07:41:70:4c:0f:a4:b4:a6: 27:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4D:9A:D8:3E:65:75:87:C8:B2:16:3F:6E:74:17:44:1C:31:7C:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.164.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:8c:98:33:14:de:12:41:1e:7a:ed:f6:34:e2:9c:6e:e7:80: 54:9a:26:7f:fc:9b:bf:b0:f2:9f:97:0a:79:b0:26:f2:01:87: db:50:98:c0:13:89:d4:2b:1e:4f:4d:07:60:48:e9:14:03:7d: 87:91:e2:d9:fd:4e:7f:c6:a1:13:b3:7a:cc:a0:a4:23:d1:dd: 83:40:93:37:12:fa:d4:36:d7:b1:fb:a6:d5:ee:c5:70:ee:29: 78:fd:b9:79:b9:46:0b:f1:ae:78:68:5a:69:ea:e5:c8:b0:e6: 76:a0:4e:0e:72:1d:5c:6f:d8:6f:33:c4:fc:f2:2d:92:6d:e0: 29:2b:cf:5d:4d:7e:b1:b4:1a:ab:20:68:dc:04:f2:26:38:0a: fb:18:e6:52:c1:4e:aa:84:96:48:c7:99:4e:35:1f:37:77:8e: 54:29:39:d6:18:3a:7f:f4:d4:b6:8a:7a:29:b8:b2:fe:8b:c6: d6:b1:d7:25:c0:76:e3:5f:96:00:29:f3:de:d7:6f:be:71:87: 78:59:64:e8:c7:55:49:14:14:46:fc:f4:4e:2e:48:22:bb:09: 9c:93:e5:77:8e:ce:41:a3:d1:2e:ee:6e:5b:45:63:7e:e6:0d: 45:cf:cf:c1:d0:e1:01:37:fd:f7:08:e5:74:12:dc:a2:65:42: e5:82:73:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4/4MeAUAzCdDb9b3LK+sOMfRO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDA0MTA5WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDJjOWNiYjMzYjJiMDdiOTEwYWM2MGZkYmQ1ZmJlNmM3 OTYzN2I5YzJjMzIyOWI4YzA0YWU0ZTcxZjI1MDkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6hjxd6u09+fM8vdNs0p16GF6KgGdTK7W2Cc0MroMBJaVt 3ReHP71GolX+D1+h21zknqtOXvFjj79sqicqU9/1cygT2C2bwyljXbf0P3QnvoIL s6VpGI8/Yz5MQxa22BkqRswyphiT35TtBMZVUUz7A/ut/VAoJaNEyr7YqJf9OEqv QQD+BQzkc5qo8ME605hG2Zx4Ss3AkWXiVBnRL61H8DGgGOrRLjDbmzWzySyO4ybY yG3SpBYx6zNZMKMSWkQPknYkRchpePNiWkxUi3NLatEcu7u8VoATpAGCRZRqV0r5 rnlmpgKrkCdqfYMvT5a3LpQiUPEHQXBMD6S0pidFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnE2a2D5ldYfIshY/bnQXRBwxfJowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYjU0ZjNlLTJjMWEtNGRiYi04NzZhLWY4NjYyMGIwNDIwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36QwDQYJKoZIhvcNAQELBQADggEBAC2MmDMU3hJBHnrt9jTinG7ngFSa Jn/8m7+w8p+XCnmwJvIBh9tQmMATidQrHk9NB2BI6RQDfYeR4tn9Tn/GoROzesyg pCPR3YNAkzcS+tQ217H7ptXuxXDuKXj9uXm5RgvxrnhoWmnq5ciw5nagTg5yHVxv 2G8zxPzyLZJt4Ckrz11NfrG0GqsgaNwE8iY4CvsY5lLBTqqElkjHmU41Hzd3jlQp OdYYOn/01LaKeim4sv6Lxtax1yXAduNflgAp897Xb75xh3hZZOjHVUkUFEb89E4u SCK7CZyT5XeOzkGj0S7ubltFY37mDUXPz8HQ4QE3/fcI5XQS3KJlQuWCc6w= -----END CERTIFICATE-----Generated at Wed Apr 16 16:58:40 2025 by rpki-client