$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa File: f2365433-7c93-4016-ad7e-0a4383160d29.roa (raw, json) Hash identifier: XtJjmQbC8TPvpDpqTwrjlacC0R1RS8Rpw9/5YLcJcRw= Subject key identifier: EF:12:75:C2:67:56:02:08:B1:C9:45:61:17:48:AA:58:C2:17:F8:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B5D3EDDC7F317048089541C6AA35557BC72BE90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa Signing time: Mon 14 Apr 2025 15:10:25 +0000 ROA not before: Mon 14 Apr 2025 15:10:25 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5d:3e:dd:c7:f3:17:04:80:89:54:1c:6a:a3:55:57:bc:72:be:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:10:25 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=5c5fb48aacac514c74975ed37264dc5f4c622b16df6deaab017351de99d54521, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:2b:2e:c9:60:16:64:fa:8c:7b:d5:dc:da: 63:df:08:df:df:12:a6:c7:0f:72:c7:f5:75:1d:63: 3a:a0:71:51:45:4c:aa:bf:3e:da:df:d7:ef:c3:98: 3d:4b:25:bc:06:24:26:40:24:6f:b8:cb:e7:d7:91: 0b:4e:97:5b:b2:b2:9a:b9:2a:46:f1:29:7f:ae:b0: aa:64:55:e9:9b:21:33:03:4f:6b:70:d5:b7:72:23: 62:bd:26:c5:c1:41:00:94:aa:43:93:4b:6c:5e:ac: f2:a1:67:3d:8b:bb:16:ff:24:90:79:ad:b9:2d:35: b0:3b:06:20:1c:3c:3a:2b:dc:e1:2f:bc:6c:36:4e: ac:37:8c:56:69:6c:45:dd:72:f2:5e:a4:59:14:b8: 42:99:b3:ea:b0:5c:3d:6d:6b:19:35:75:d5:12:d0: 32:88:70:83:65:92:9c:a1:93:c8:de:22:2a:fb:1d: ea:5c:d4:ee:ca:fb:26:75:af:2c:f1:59:cc:ed:6c: 38:9c:41:48:40:a0:90:53:1b:b9:7c:4f:cf:6f:e6: ea:66:64:91:c8:1e:04:71:72:b1:9a:c9:27:0b:9f: 0e:eb:25:04:ad:ef:a6:54:20:97:9e:1e:0e:0c:ef: a9:f6:ef:ed:19:eb:4d:45:12:3a:56:92:44:37:80: a8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:12:75:C2:67:56:02:08:B1:C9:45:61:17:48:AA:58:C2:17:F8:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.93.0/24 Signature Algorithm: sha256WithRSAEncryption 27:4d:78:71:45:fb:a5:63:cb:24:37:83:54:65:62:13:1f:0d: ca:d4:ec:a8:2f:e8:78:d4:76:31:5a:89:dc:da:f4:f4:a7:d2: 7e:c6:1b:2d:09:87:d1:42:4d:42:fc:a3:2b:08:e9:59:59:7d: b2:59:90:bf:fb:97:31:01:51:82:23:20:c6:4d:c7:e5:9a:25: 02:5b:56:eb:c8:4f:84:aa:da:aa:55:b2:81:50:99:01:32:a8: 02:99:36:e8:3a:51:76:cd:3f:28:2c:3c:e1:20:41:03:c0:42: dc:f0:75:54:d9:86:37:79:50:d1:1c:e2:68:6b:81:94:80:9c: 6f:7f:49:0d:32:c9:b0:6b:ec:38:ea:26:2b:2d:8a:c1:04:9b: c8:8e:b6:07:fc:e3:c7:8b:16:9e:72:6e:f8:0a:81:d1:ae:c7: 06:dc:f2:71:66:e8:ae:93:24:62:26:2f:5f:0d:1c:21:a9:2f: ec:b5:f2:aa:49:ed:8a:f2:49:63:a2:2a:3e:07:c5:4d:af:17: 64:c4:a1:7b:e8:de:45:f6:d8:c0:9e:46:fc:21:e8:bc:37:33: f0:3c:7d:3c:a3:dd:08:b6:5f:eb:d2:34:90:0f:5f:5c:8f:a9: fb:52:4b:cf:79:e3:49:62:f3:61:54:3f:54:74:58:26:e4:08: 1f:9a:bd:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe10+3cfzFwSAiVQcaqNVV7xyvpAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUxMDI1WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzVmYjQ4YWFjYWM1MTRjNzQ5NzVlZDM3MjY0ZGM1ZjRj NjIyYjE2ZGY2ZGVhYWIwMTczNTFkZTk5ZDU0NTIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxRCsuyWAWZPqMe9Xc2mPfCN/fEqbHD3LH9XUdYzqgcVFF TKq/Ptrf1+/DmD1LJbwGJCZAJG+4y+fXkQtOl1uyspq5KkbxKX+usKpkVembITMD T2tw1bdyI2K9JsXBQQCUqkOTS2xerPKhZz2Luxb/JJB5rbktNbA7BiAcPDor3OEv vGw2Tqw3jFZpbEXdcvJepFkUuEKZs+qwXD1taxk1ddUS0DKIcINlkpyhk8jeIir7 Hepc1O7K+yZ1ryzxWcztbDicQUhAoJBTG7l8T89v5upmZJHIHgRxcrGayScLnw7r JQSt76ZUIJeeHg4M76n27+0Z601FEjpWkkQ3gKjzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7xJ1wmdWAgixyUVhF0iqWMIX+OUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyMzY1NDMzLTdjOTMtNDAxNi1hZDdlLTBhNDM4MzE2MGQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC4SF0wDQYJKoZIhvcNAQELBQADggEBACdNeHFF+6VjyyQ3g1RlYhMfDcrU 7Kgv6HjUdjFaidza9PSn0n7GGy0Jh9FCTUL8oysI6VlZfbJZkL/7lzEBUYIjIMZN x+WaJQJbVuvIT4Sq2qpVsoFQmQEyqAKZNug6UXbNPygsPOEgQQPAQtzwdVTZhjd5 UNEc4mhrgZSAnG9/SQ0yybBr7DjqJistisEEm8iOtgf848eLFp5ybvgKgdGuxwbc 8nFm6K6TJGImL18NHCGpL+y18qpJ7YrySWOiKj4HxU2vF2TEoXvo3kX22MCeRvwh 6Lw3M/A8fTyj3Qi2X+vSNJAPX1yPqftSS89540li82FUP1R0WCbkCB+avSg= -----END CERTIFICATE-----Generated at Wed Apr 16 17:12:51 2025 by rpki-client