$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa File: 034c3528-4b36-4ade-a86b-759701bbc55c.roa (raw, json) Hash identifier: 6ln7DEMBbfNgvXUh6LR8paggatrbqz+G1H7NjRZkazA= Subject key identifier: 2E:AB:95:62:D9:4D:48:49:8A:91:F5:91:EE:A9:12:C7:93:DC:0C:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BA76A6E1B97CEECE50957C43028179EF4EF0BDB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa Signing time: Mon 31 Mar 2025 15:20:33 +0000 ROA not before: Mon 31 Mar 2025 15:20:33 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a7:6a:6e:1b:97:ce:ec:e5:09:57:c4:30:28:17:9e:f4:ef:0b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:20:33 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:43:72:1e:fe:5a:87:1f:3c:c3:11:80:64:5d: e5:62:bd:3d:5a:42:42:e9:d8:d7:e6:91:d5:db:0f: 3e:87:05:fd:e8:03:cf:3a:25:32:67:76:56:4e:d2: 9f:fa:6e:28:9d:22:e2:1f:e0:6d:2e:b8:46:49:eb: 2e:44:7d:e4:b6:c8:27:8c:33:53:ce:65:0b:f3:45: 7b:e6:f2:a9:6e:e1:ed:49:b0:32:fc:27:5d:56:55: ba:c6:6c:4d:21:c4:d1:37:8a:74:66:c3:ed:7f:56: 5b:8d:c4:54:f1:63:8d:30:0e:9a:8e:43:e2:4b:20: c4:f8:97:e6:d6:11:69:24:f1:13:9b:bd:45:5c:9d: 47:11:7f:d3:fe:d3:be:a5:58:26:20:f5:cd:03:12: f1:81:64:e2:60:0f:55:4e:97:57:35:dd:a2:e3:be: 13:cf:a7:8e:41:57:a0:d4:86:52:7c:16:73:f3:5f: ac:7e:2f:bd:79:c0:2b:c1:21:3a:8b:59:8b:64:d3: 6c:fe:c8:d0:49:7e:e0:8a:b1:36:e9:42:7e:4c:ee: 1e:a6:79:40:d2:ce:da:fe:1d:2d:ee:55:52:81:46: 11:f8:ad:f0:08:13:70:4b:57:1a:7f:e9:d5:79:e5: b4:e4:71:22:2a:72:16:47:43:b7:79:7e:0f:95:67: 3b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AB:95:62:D9:4D:48:49:8A:91:F5:91:EE:A9:12:C7:93:DC:0C:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 1b:09:73:ff:dd:78:59:0f:6b:37:8f:c6:da:77:d2:e3:26:ed: c5:07:fe:05:15:39:09:2a:17:57:db:53:9d:11:22:b2:b0:c4: e0:44:9f:c2:71:70:78:75:65:a3:64:11:19:28:c0:76:7c:bd: 19:4e:19:82:c2:00:7c:2e:1c:e6:5e:dc:c2:01:19:01:11:d8: f0:da:d1:96:4b:65:c9:c5:eb:aa:5c:5b:64:eb:ba:da:11:f4: d4:14:6d:ac:b5:ca:0e:e2:90:c7:3f:b9:4f:74:f4:19:ea:e9: 1c:9f:2a:b1:04:02:b7:6b:cf:b6:a6:12:d8:78:63:53:d3:5f: 9c:73:c4:76:2f:98:2c:58:35:d6:02:b1:99:3f:33:8e:dc:7f: f8:d3:a0:0b:27:2a:80:1b:c3:75:03:f9:8e:2e:57:9d:5d:eb: 02:43:49:26:a8:4b:6d:e8:b7:03:3c:91:14:5b:7a:5d:ea:1b: 94:c9:e3:28:96:0e:76:86:d1:e9:69:8c:eb:56:4a:cf:0b:8d: 6d:5a:61:6d:ea:04:38:c8:28:d9:03:59:87:26:e9:43:1d:d9: e6:1b:93:4b:70:86:d6:50:bc:90:fa:56:e1:1d:d6:e8:21:75: 80:99:1d:e9:95:d6:56:1d:cb:f2:e9:61:22:70:a7:52:43:e1: 75:db:7a:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW6dqbhuXzuzlCVfEMCgXnvTvC9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUyMDMzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDljNjJhN2U2YmFiYjhlNjQwN2Y0ZDE4YTY3Y2E4ZTYx OWU5ZGRhYjI1YTk1ZmI1ZmM0NGQxOTFmZGZiYjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCQ3Ie/lqHHzzDEYBkXeVivT1aQkLp2NfmkdXbDz6HBf3o A886JTJndlZO0p/6biidIuIf4G0uuEZJ6y5EfeS2yCeMM1POZQvzRXvm8qlu4e1J sDL8J11WVbrGbE0hxNE3inRmw+1/VluNxFTxY40wDpqOQ+JLIMT4l+bWEWkk8ROb vUVcnUcRf9P+076lWCYg9c0DEvGBZOJgD1VOl1c13aLjvhPPp45BV6DUhlJ8FnPz X6x+L715wCvBITqLWYtk02z+yNBJfuCKsTbpQn5M7h6meUDSztr+HS3uVVKBRhH4 rfAIE3BLVxp/6dV55bTkcSIqchZHQ7d5fg+VZzsVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULquVYtlNSEmKkfWR7qkSx5PcDGswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNGMzNTI4LTRiMzYtNGFkZS1hODZiLTc1OTcwMWJiYzU1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBABsJc//deFkPazePxtp30uMm7cUH /gUVOQkqF1fbU50RIrKwxOBEn8JxcHh1ZaNkERkowHZ8vRlOGYLCAHwuHOZe3MIB GQER2PDa0ZZLZcnF66pcW2TrutoR9NQUbay1yg7ikMc/uU909Bnq6RyfKrEEArdr z7amEth4Y1PTX5xzxHYvmCxYNdYCsZk/M47cf/jToAsnKoAbw3UD+Y4uV51d6wJD SSaoS23otwM8kRRbel3qG5TJ4yiWDnaG0elpjOtWSs8LjW1aYW3qBDjIKNkDWYcm 6UMd2eYbk0twhtZQvJD6VuEd1ughdYCZHemV1lYdy/LpYSJwp1JD4XXbeqQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:00 2025 by rpki-client