$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa File: 183114c1-3537-409b-bf98-35d1e862b2f5.roa (raw, json) Hash identifier: A8vBpEf/xVPQ9+ZQ3kOsH/qlgpD2B76ls3aeKL0PD1I= Subject key identifier: 56:28:88:CB:EE:BF:5A:89:E2:62:EE:4F:CA:40:7C:20:2A:99:F9:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54ACC0D8EC895BBBF98F170779677FD08DC1B8A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa Signing time: Mon 31 Mar 2025 15:10:57 +0000 ROA not before: Mon 31 Mar 2025 15:10:57 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.86.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ac:c0:d8:ec:89:5b:bb:f9:8f:17:07:79:67:7f:d0:8d:c1:b8:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:10:57 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:64:b3:8a:ea:cc:0f:6f:16:87:77:b1:fc:6a: b3:e5:04:d4:0f:28:96:60:e3:71:d2:f8:89:d7:08: cc:4d:6f:f1:77:a5:82:95:81:cc:5c:93:15:1c:b0: 02:2a:13:85:c4:86:62:a8:56:f4:40:21:0b:c1:3d: 43:56:35:16:64:71:ef:34:17:a2:6f:1f:cf:e6:e3: e5:29:da:a9:d0:cf:df:7e:40:db:fd:d3:d5:85:7c: cc:37:bc:2f:b3:ae:c8:2c:bd:02:bb:bd:d8:0a:d3: be:7c:41:d7:29:f1:87:79:b5:de:a8:fe:48:27:28: de:a0:b7:b0:7d:9b:c3:93:37:ad:11:d1:cd:a8:f4: b1:d3:7c:19:1a:8b:e8:5a:cd:14:a4:0f:e3:36:48: 92:62:c7:f7:4f:22:b3:b6:2f:f8:8c:a8:21:e5:24: e8:80:fe:d5:eb:18:50:1d:c8:ff:4b:c2:27:7c:1e: 26:42:a6:0a:5f:5b:c7:6c:7a:80:56:dc:d7:6c:44: 15:11:ce:1c:f9:1f:b9:9f:0f:5a:dc:3f:11:b9:96: 6c:bd:22:1f:32:10:c3:5b:1f:40:44:9d:e7:a3:66: 52:a0:fe:6e:80:ac:b0:71:ed:a0:e0:bb:bc:21:df: 6f:39:65:50:d3:e7:47:92:73:0c:68:9f:f9:35:63: bd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:28:88:CB:EE:BF:5A:89:E2:62:EE:4F:CA:40:7C:20:2A:99:F9:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.86.90.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:8c:6e:3d:22:32:5e:02:5a:33:8f:79:f4:0c:18:36:89:55: 71:bc:c9:55:fe:50:d1:13:7e:0c:1f:33:95:85:22:92:7a:85: 25:56:cc:63:cb:d7:92:f0:3a:d9:f7:32:19:b9:cb:a2:2e:c4: bb:17:bc:a6:8f:0d:27:99:74:96:b6:b9:af:1e:ca:2a:fc:8b: a3:2d:b2:9a:d4:b4:19:e9:47:60:8f:c1:7e:38:63:04:e6:44: 10:9d:88:68:d5:93:92:dd:aa:84:74:32:04:7e:c0:96:86:3b: 42:86:cb:a0:ac:38:97:54:60:b3:91:25:82:38:84:45:af:6e: 97:12:1b:b7:f7:04:54:56:9c:aa:45:c7:24:de:70:fc:23:3c: 8e:df:7c:63:c9:48:cc:77:6e:b8:c2:bb:6e:40:fc:69:25:7d: c3:c1:32:27:cd:e4:0b:2c:28:6c:14:ce:e3:3d:a0:2b:45:87: e8:a8:04:b8:ef:d9:56:39:88:a8:7f:a9:29:26:b9:e1:fb:d2: 61:31:79:5e:bc:ad:0e:8c:79:3d:9c:61:ae:b7:00:cd:33:8d: 90:32:b8:6c:cf:d6:fa:40:ce:93:74:25:1f:d2:71:20:8b:dd: 84:ef:86:49:0d:bf:01:8b:33:c6:fe:78:a5:4a:bb:17:b7:de: ba:82:2d:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVKzA2OyJW7v5jxcHeWd/0I3BuKYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUxMDU3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2VmOGVkYzBkYjM2MDA0NzM5NGZjNzAzOTVjZGUzNzll M2QzNjgwZmQ4NzAwMDY2YzdmYmQ4NzA2MzFkZjk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXZLOK6swPbxaHd7H8arPlBNQPKJZg43HS+InXCMxNb/F3 pYKVgcxckxUcsAIqE4XEhmKoVvRAIQvBPUNWNRZkce80F6JvH8/m4+Up2qnQz99+ QNv909WFfMw3vC+zrsgsvQK7vdgK0758Qdcp8Yd5td6o/kgnKN6gt7B9m8OTN60R 0c2o9LHTfBkai+hazRSkD+M2SJJix/dPIrO2L/iMqCHlJOiA/tXrGFAdyP9Lwid8 HiZCpgpfW8dseoBW3NdsRBURzhz5H7mfD1rcPxG5lmy9Ih8yEMNbH0BEneejZlKg /m6ArLBx7aDgu7wh3285ZVDT50eScwxon/k1Y70NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUViiIy+6/WoniYu5PykB8ICqZ+V4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4MzExNGMxLTM1MzctNDA5Yi1iZjk4LTM1ZDFlODYyYjJmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHQVlowDQYJKoZIhvcNAQELBQADggEBAI6Mbj0iMl4CWjOPefQMGDaJVXG8 yVX+UNETfgwfM5WFIpJ6hSVWzGPL15LwOtn3Mhm5y6IuxLsXvKaPDSeZdJa2ua8e yir8i6MtsprUtBnpR2CPwX44YwTmRBCdiGjVk5LdqoR0MgR+wJaGO0KGy6CsOJdU YLORJYI4hEWvbpcSG7f3BFRWnKpFxyTecPwjPI7ffGPJSMx3brjCu25A/GklfcPB MifN5AssKGwUzuM9oCtFh+ioBLjv2VY5iKh/qSkmueH70mExeV68rQ6MeT2cYa63 AM0zjZAyuGzP1vpAzpN0JR/ScSCL3YTvhkkNvwGLM8b+eKVKuxe33rqCLRU= -----END CERTIFICATE-----Generated at Sat Apr 5 16:51:08 2025 by rpki-client