$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa File: 09739967-9eaf-4466-adca-6a715e6c180f.roa (raw, json) Hash identifier: G7fJK74YYQAbZNDYrhLAxbpXMG2M6qBdWIXHiysYldA= Subject key identifier: 9E:93:F6:E0:E4:47:6C:8A:14:C7:CE:7A:E7:AD:10:E5:D0:33:47:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CBB17037B97780288F61DA24B41B52111914FF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa Signing time: Sat 15 Mar 2025 00:41:09 +0000 ROA not before: Sat 15 Mar 2025 00:41:09 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:bb:17:03:7b:97:78:02:88:f6:1d:a2:4b:41:b5:21:11:91:4f:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 15 00:41:09 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5e:a5:04:c9:1c:ba:bf:60:d9:f7:0a:37:49: 81:0a:47:fa:af:7c:73:21:e9:75:f6:52:ea:f6:63: 14:cb:d1:d4:01:e2:74:e7:6a:a6:81:6e:47:22:e5: 2c:2d:12:1c:1d:e3:94:b6:a2:e6:d7:55:02:4a:06: ac:03:8d:fd:a0:81:63:c5:d3:ba:4c:b8:2f:bd:a0: 10:a0:31:aa:d4:08:bd:c6:80:d5:c3:39:9c:51:13: 74:f6:d8:4a:f0:be:79:b0:4e:db:6d:5a:22:5e:75: 58:46:25:a8:2d:1a:9e:a5:3f:9d:2d:f4:db:af:45: 48:52:74:95:5b:27:1c:57:ea:32:5d:80:ea:ef:e3: 98:42:79:f2:85:00:92:f0:51:42:ff:14:91:db:3c: ca:20:c5:a1:6a:17:b7:c0:67:e0:e5:a7:26:e7:47: 38:cf:b6:84:cd:0a:54:b1:b4:60:80:6d:22:80:f8: b0:81:b7:4a:cb:ee:95:9a:dc:9f:fd:19:ed:bd:fe: a6:aa:9f:5a:c6:84:17:ca:cb:2e:f0:d8:9f:17:8b: 75:de:ad:11:ec:a7:45:72:0e:5f:6d:53:7e:05:82: 32:10:f6:c2:3b:73:05:6a:4c:ce:70:e8:e4:86:4f: ed:77:74:d1:50:80:2a:85:3e:7a:9b:86:d8:6b:31: 2e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:93:F6:E0:E4:47:6C:8A:14:C7:CE:7A:E7:AD:10:E5:D0:33:47:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09739967-9eaf-4466-adca-6a715e6c180f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.172.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:a1:45:e0:c4:73:80:8a:6f:d2:3b:a5:4f:76:00:d9:08:6a: 70:07:15:0e:26:3f:64:06:a7:02:d5:95:0f:8a:87:95:29:23: fa:de:4e:8f:ad:8d:87:8a:4f:eb:ac:39:f6:eb:b1:a8:a7:82: b1:f3:9a:ad:c1:e4:d0:6a:92:74:c9:94:ee:49:89:b0:ca:8a: 15:51:92:66:34:63:a6:b3:f0:76:d4:e7:54:9b:f9:5d:08:59: 20:f5:91:cc:95:33:58:51:9a:c8:5c:cb:f8:e8:5d:bf:c0:7c: c3:2a:7b:47:98:e2:6d:4e:5d:7e:17:e9:48:ab:12:d4:95:04: 7b:68:a5:02:3f:b6:c1:f1:2e:4d:3d:6f:bd:ab:ca:bb:80:ec: c7:5e:08:74:80:70:17:75:5e:a2:ad:53:2f:72:59:dd:b6:fe: 59:85:a9:5d:66:64:60:d8:93:b9:0b:ed:a1:e4:81:6a:13:11: 0d:d3:9f:2f:98:fb:e2:33:31:8f:26:92:26:a5:6d:9a:3b:7b: 79:c3:1c:e8:13:e1:9f:8f:a3:51:0a:43:44:a4:6e:f8:68:3e: b4:48:b2:b4:a9:53:7a:4e:d1:67:d6:1c:e3:83:ed:79:0e:3e: 7f:df:84:b6:6b:ef:9f:27:a2:6f:6d:fb:50:6c:9c:e6:2f:2a: ed:ad:9e:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbLsXA3uXeAKI9h2iS0G1IRGRT/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE1MDA0MTA5WhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDZkNWZjN2YxYmM3MmJjNmQzNzdmNzIxNDU4NTQ0ZGUz NjQwMjA1NDc2OWViZDBiNTAyMmQxNWRhNzEyZDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIXqUEyRy6v2DZ9wo3SYEKR/qvfHMh6XX2Uur2YxTL0dQB 4nTnaqaBbkci5SwtEhwd45S2oubXVQJKBqwDjf2ggWPF07pMuC+9oBCgMarUCL3G gNXDOZxRE3T22ErwvnmwTtttWiJedVhGJagtGp6lP50t9NuvRUhSdJVbJxxX6jJd gOrv45hCefKFAJLwUUL/FJHbPMogxaFqF7fAZ+DlpybnRzjPtoTNClSxtGCAbSKA +LCBt0rL7pWa3J/9Ge29/qaqn1rGhBfKyy7w2J8Xi3XerRHsp0VyDl9tU34FgjIQ 9sI7cwVqTM5w6OSGT+13dNFQgCqFPnqbhthrMS5JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnpP24ORHbIoUx856560Q5dAzR3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5NzM5OTY3LTllYWYtNDQ2Ni1hZGNhLTZhNzE1ZTZjMTgwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJM36wwDQYJKoZIhvcNAQELBQADggEBAI+hReDEc4CKb9I7pU92ANkIanAH FQ4mP2QGpwLVlQ+Kh5UpI/reTo+tjYeKT+usOfbrsaingrHzmq3B5NBqknTJlO5J ibDKihVRkmY0Y6az8HbU51Sb+V0IWSD1kcyVM1hRmshcy/joXb/AfMMqe0eY4m1O XX4X6UirEtSVBHtopQI/tsHxLk09b72ryruA7MdeCHSAcBd1XqKtUy9yWd22/lmF qV1mZGDYk7kL7aHkgWoTEQ3Tny+Y++IzMY8mkialbZo7e3nDHOgT4Z+Po1EKQ0Sk bvhoPrRIsrSpU3pO0WfWHOOD7XkOPn/fhLZr758nom9t+1BsnOYvKu2tnm0= -----END CERTIFICATE-----Generated at Sat Apr 5 16:53:56 2025 by rpki-client