$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37621c40-d9ed-4041-a8bb-b981309da27f.roa File: 37621c40-d9ed-4041-a8bb-b981309da27f.roa (raw, json) Hash identifier: R9mwEEo3lB82vNtz9ieQw3iGPZGqy5pffAizCJxFD3A= Subject key identifier: 65:A6:CD:CE:19:B4:71:84:9A:F2:E9:0A:CD:30:50:36:06:E9:54:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E124CF18FE21520146E48DDC48DA9C0C9E09ACB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37621c40-d9ed-4041-a8bb-b981309da27f.roa Signing time: Sat 29 Mar 2025 00:30:20 +0000 ROA not before: Sat 29 Mar 2025 00:30:20 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:12:4c:f1:8f:e2:15:20:14:6e:48:dd:c4:8d:a9:c0:c9:e0:9a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:30:20 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e0:94:2b:26:75:cf:8d:1f:d7:c3:be:a8:6d: c5:53:37:a1:ee:5d:b9:4a:2b:d7:15:df:23:0e:4f: 70:26:b0:db:8e:d9:11:fe:e7:32:63:e7:b5:cc:39: 02:52:b7:2a:dd:86:8b:9e:a0:63:7c:6b:65:ce:98: b3:5a:1c:db:11:1e:4b:59:51:fe:56:70:bf:97:3c: 5d:f7:ea:cd:d3:f6:86:66:7a:74:2d:24:2d:80:02: 26:e3:01:3a:d0:fd:43:35:9c:9f:bd:a3:fa:a2:ff: 82:a5:35:52:7d:7b:56:a5:09:aa:09:59:20:74:f4: 9b:eb:fd:9c:3d:e0:ba:3c:c7:c4:ed:88:5c:93:98: d1:16:c9:da:f8:8f:d1:b3:65:62:ef:97:22:02:c7: a0:97:47:c2:d3:20:01:32:28:4c:9e:4d:4b:0d:b6: 2b:fc:93:46:58:92:0e:6c:41:4d:59:f0:5f:f3:2d: d6:f4:86:7b:f6:fe:01:a6:69:e9:ac:dd:33:20:54: af:ef:b8:72:6a:99:dd:81:0e:44:c1:bb:37:1a:07: 57:27:ed:1f:44:ce:ac:31:4b:b4:ba:b8:42:70:85: 7b:3f:45:5e:90:76:4b:bf:44:b9:fe:24:a7:f6:5a: 06:2a:31:2a:21:30:e3:bd:2d:f0:bc:29:e1:97:48: 78:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A6:CD:CE:19:B4:71:84:9A:F2:E9:0A:CD:30:50:36:06:E9:54:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37621c40-d9ed-4041-a8bb-b981309da27f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 13:ff:de:35:2d:28:ae:6b:06:a2:78:87:70:0a:2b:85:a9:16: 38:a3:44:f8:fe:7b:68:40:a0:53:15:a3:9c:05:1f:9d:ae:92: d3:53:91:a2:d1:aa:96:2e:7d:6a:24:54:c5:f7:f2:f4:0a:60: cd:8d:88:06:12:da:e3:2e:20:e2:10:94:a6:6e:a9:84:17:28: 90:70:8f:f1:b7:53:66:74:04:00:b2:55:10:88:69:25:3c:05: 77:e5:d7:1b:2e:ea:08:a7:c4:58:6e:ef:7a:14:01:2b:91:41: f7:1f:84:0d:9f:2b:f9:17:67:05:a3:75:de:63:59:a5:fd:c9: 31:5f:04:4d:63:1f:ed:ba:cc:50:9b:64:c3:5b:99:02:b9:57: 06:17:58:5f:d8:9e:8d:f7:ac:f1:67:32:fb:92:53:db:f0:a2: c7:63:4f:9b:02:1d:04:81:81:ef:fa:fb:f4:1b:a2:cc:68:d6: 05:21:73:1e:1f:e4:83:4e:36:d4:39:bf:64:e5:ad:b3:59:05: e1:d2:e4:e5:c7:93:93:78:81:83:22:fe:7f:3d:88:6b:71:dc: cb:84:17:cc:d7:6f:8b:7d:b5:83:ae:43:be:27:cb:0f:43:da: 76:df:33:8c:fc:4e:ff:4d:44:fd:ea:67:63:d6:cf:84:87:9a: 5e:c4:3d:83 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXhJM8Y/iFSAUbkjdxI2pwMngmsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAzMDIwWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWI1ODVkYzBhZTNlZTExODg4Y2I4NTFkMzY0MmU2M2Zl NjQ2YzI5MTE1MTY1ZmY4NTIzOGYxNzU0ZWVmNDNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR4JQrJnXPjR/Xw76obcVTN6HuXblKK9cV3yMOT3AmsNuO 2RH+5zJj57XMOQJStyrdhoueoGN8a2XOmLNaHNsRHktZUf5WcL+XPF336s3T9oZm enQtJC2AAibjATrQ/UM1nJ+9o/qi/4KlNVJ9e1alCaoJWSB09Jvr/Zw94Lo8x8Tt iFyTmNEWydr4j9GzZWLvlyICx6CXR8LTIAEyKEyeTUsNtiv8k0ZYkg5sQU1Z8F/z Ldb0hnv2/gGmaems3TMgVK/vuHJqmd2BDkTBuzcaB1cn7R9EzqwxS7S6uEJwhXs/ RV6Qdku/RLn+JKf2WgYqMSohMOO9LfC8KeGXSHhXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZabNzhm0cYSa8ukKzTBQNgbpVHMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3NjIxYzQwLWQ5ZWQtNDA0MS1hOGJiLWI5ODEzMDlkYTI3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJrFDANBgkqhkiG9w0BAQsFAAOCAQEAE//eNS0ormsGoniHcAorhakWOKNE +P57aECgUxWjnAUfna6S01ORotGqli59aiRUxffy9ApgzY2IBhLa4y4g4hCUpm6p hBcokHCP8bdTZnQEALJVEIhpJTwFd+XXGy7qCKfEWG7vehQBK5FB9x+EDZ8r+Rdn BaN13mNZpf3JMV8ETWMf7brMUJtkw1uZArlXBhdYX9iejfes8Wcy+5JT2/Cix2NP mwIdBIGB7/r79BuizGjWBSFzHh/kg0421Dm/ZOWts1kF4dLk5ceTk3iBgyL+fz2I a3Hcy4QXzNdvi321g65DvifLD0Padt8zjPxO/01E/epnY9bPhIeaXsQ9gw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:55 2025 by rpki-client