$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa File: 23a53446-cb7a-4e95-8459-59f35aa8088c.roa (raw, json) Hash identifier: E31yQITDd4UK3y9/sB4sYfPSeFx+7yl/4hNuE0u4xC8= Subject key identifier: 3E:E0:CB:EF:DD:1D:19:43:BD:BA:41:16:11:0A:63:AF:60:0F:2A:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68298746DE3F2CB791EA957A9BD8467CDFC89E26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa Signing time: Mon 31 Mar 2025 15:51:44 +0000 ROA not before: Mon 31 Mar 2025 15:51:44 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.0.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:29:87:46:de:3f:2c:b7:91:ea:95:7a:9b:d8:46:7c:df:c8:9e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:51:44 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a3:8d:df:3b:92:11:6c:28:c6:dd:75:3e:af: bb:4f:83:e2:c4:00:35:b2:a7:1d:6b:65:29:66:d7: 1e:7a:0a:4b:f4:d8:d7:fc:3f:44:d4:5d:4c:4b:51: 21:15:35:28:90:54:4e:d5:57:c5:70:67:24:93:ea: b8:75:c4:9d:99:13:5c:0a:f0:10:2d:9c:1a:f5:44: 8c:1f:ab:0b:56:5a:80:23:59:25:01:d9:d9:97:89: ff:de:11:37:49:1b:c7:e7:9d:14:ae:30:71:50:05: de:d1:5f:58:24:f2:11:26:8c:58:f9:c8:a4:1d:fa: d3:0f:e2:1d:b4:a1:85:89:06:a5:8c:e8:77:a8:9f: d5:c1:7e:03:21:8a:6e:59:c0:f2:73:99:48:e9:4f: 4a:d1:12:ef:95:0f:35:fe:56:74:ad:97:68:9a:f6: a0:24:94:0b:e8:6d:96:4c:7f:fb:0b:b9:d9:c2:3e: 03:35:c1:27:e0:ac:46:11:72:ad:21:7c:a1:66:a2: cb:d5:dd:ef:80:81:d5:f8:2a:9f:d2:7d:cc:fc:0b: cb:ab:fd:01:a2:a0:2f:91:fc:3d:64:ad:e8:c0:d6: 63:ff:32:86:56:c5:41:b3:dc:0f:58:b9:a0:e3:9d: d7:46:5e:e0:5c:b7:db:5c:34:19:11:95:cb:1e:8d: 2e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E0:CB:EF:DD:1D:19:43:BD:BA:41:16:11:0A:63:AF:60:0F:2A:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.0.0.0/14 Signature Algorithm: sha256WithRSAEncryption ca:13:ed:d8:e6:76:38:ce:48:93:92:51:95:fc:f0:2a:14:80: 59:1a:de:f8:e0:03:f7:1f:a2:05:51:33:f6:12:93:61:ef:7f: 34:89:73:cc:f6:bd:dd:31:ac:1c:da:5c:cd:9a:73:77:1d:6e: 45:67:19:e3:20:87:30:c4:87:16:8e:25:c8:82:43:60:42:49: 63:fc:1a:c2:b1:fc:f6:80:9f:8d:8b:f3:1b:a0:b0:ec:2f:60: b3:5a:cb:17:71:36:bd:b5:d6:a4:49:0e:69:a3:96:de:f5:00: 93:42:a5:cb:69:d4:ca:05:fa:bd:c8:6b:c6:cd:3f:21:ed:eb: 39:ba:0e:64:12:3b:13:df:37:ae:d7:b3:33:50:be:52:09:c1: 58:d8:4a:be:87:ba:e4:06:27:1f:cb:48:dc:2c:41:4b:5f:2a: ef:08:e6:23:cb:42:78:f8:de:ff:24:69:f1:fe:52:f2:23:60: d8:2c:dd:5d:9c:36:37:b4:45:84:b0:14:c2:34:a4:a7:f5:dc: ad:9f:e1:63:a7:ad:be:f6:ec:1c:30:e9:19:88:43:d9:2c:3d: 05:5c:c7:69:39:77:a0:85:5a:20:a5:5a:49:85:a2:08:e1:24: 8f:9a:cc:f1:d4:8d:90:6c:c2:af:66:1c:d7:72:70:05:1c:31: fb:07:c7:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaCmHRt4/LLeR6pV6m9hGfN/IniYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU1MTQ0WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTk0ZjcyZGUyODk2YWM0ZTNmYmM4ODZjOThkNjVkMTdi ZWI0Zjc2ZmZkMTY1NjgzM2M0M2M1ZTAzZDlhYjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRo43fO5IRbCjG3XU+r7tPg+LEADWypx1rZSlm1x56Ckv0 2Nf8P0TUXUxLUSEVNSiQVE7VV8VwZyST6rh1xJ2ZE1wK8BAtnBr1RIwfqwtWWoAj WSUB2dmXif/eETdJG8fnnRSuMHFQBd7RX1gk8hEmjFj5yKQd+tMP4h20oYWJBqWM 6Heon9XBfgMhim5ZwPJzmUjpT0rREu+VDzX+VnStl2ia9qAklAvobZZMf/sLudnC PgM1wSfgrEYRcq0hfKFmosvV3e+AgdX4Kp/Sfcz8C8ur/QGioC+R/D1krejA1mP/ MoZWxUGz3A9YuaDjnddGXuBct9tcNBkRlcsejS7DAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPuDL790dGUO9ukEWEQpjr2APKqYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzYTUzNDQ2LWNiN2EtNGU5NS04NDU5LTU5ZjM1YWE4MDg4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBADANBgkqhkiG9w0BAQsFAAOCAQEAyhPt2OZ2OM5Ik5JRlfzwKhSAWRre +OAD9x+iBVEz9hKTYe9/NIlzzPa93TGsHNpczZpzdx1uRWcZ4yCHMMSHFo4lyIJD YEJJY/wawrH89oCfjYvzG6Cw7C9gs1rLF3E2vbXWpEkOaaOW3vUAk0Kly2nUygX6 vchrxs0/Ie3rOboOZBI7E983rtezM1C+UgnBWNhKvoe65AYnH8tI3CxBS18q7wjm I8tCePje/yRp8f5S8iNg2CzdXZw2N7RFhLAUwjSkp/XcrZ/hY6etvvbsHDDpGYhD 2Sw9BVzHaTl3oIVaIKVaSYWiCOEkj5rM8dSNkGzCr2Yc13JwBRwx+wfHmg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:40 2025 by rpki-client