$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa File: 3fe332a1-e627-48fb-af81-adef2af88de1.roa (raw, json) Hash identifier: zD7SYrI3Qvlj6ctUIPO1YadV8WEqwfYy6A2t/L/st2E= Subject key identifier: 95:C3:89:A6:2D:A7:01:0E:8A:F9:92:85:DA:66:9E:E8:2E:21:04:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 136040932A537BF6A4E851BBBEA49CC5B937B434 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa Signing time: Mon 31 Mar 2025 15:41:13 +0000 ROA not before: Mon 31 Mar 2025 15:41:13 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:60:40:93:2a:53:7b:f6:a4:e8:51:bb:be:a4:9c:c5:b9:37:b4:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:41:13 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1f:24:bb:90:28:2e:91:f6:92:04:6a:5c:73: 36:18:d9:38:18:c3:6b:85:16:82:b8:4b:8a:54:87: 91:63:bf:c5:9f:7f:76:bd:43:c2:25:92:96:2b:1a: 36:c4:23:7e:f8:e1:4e:c3:f2:ca:54:fe:c0:3f:09: 2c:b0:e1:19:ce:eb:5f:fa:e3:8f:9e:11:f6:c0:10: d4:eb:bc:58:55:b3:36:90:6b:93:d1:4b:73:fe:f2: 8b:f4:40:5d:df:b9:48:d7:40:41:e6:4f:03:44:a5: a7:aa:98:a4:35:7a:6b:c9:d6:b8:64:e6:06:6e:19: f7:48:fa:09:f1:34:bb:0b:31:50:ed:56:5e:cd:2f: 74:9b:55:a2:0c:95:dc:bd:cf:05:58:ab:e7:2f:57: 4a:8f:2e:79:d9:5b:fe:a8:cd:b9:a9:75:97:f5:86: a4:a6:51:95:5d:0e:76:da:5f:20:8e:32:86:9e:58: d7:f5:e9:bb:c6:a2:e9:af:db:32:d6:bc:cb:50:d0: f6:94:66:d4:44:19:86:8e:68:ce:dd:47:85:f8:af: 27:3d:c1:3e:b1:0a:22:7f:a2:b0:c6:37:95:68:a0: 3e:bc:df:cc:6a:47:7a:75:e7:02:0b:8d:e3:46:7e: 72:3c:7b:2a:10:31:9f:51:08:b1:d9:19:77:e2:a4: 4e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C3:89:A6:2D:A7:01:0E:8A:F9:92:85:DA:66:9E:E8:2E:21:04:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:db:2a:6a:61:29:06:51:c1:e8:18:af:9e:85:1d:74:84:76: 0c:45:46:0d:1a:a1:08:13:01:eb:e8:12:64:74:d1:5b:9d:07: 15:15:d7:08:71:ff:c1:5d:fb:fe:0f:0e:88:67:68:4a:c4:df: e0:68:d9:88:16:28:fb:80:2c:69:d3:4c:3e:e0:00:a3:fb:9a: f4:59:3d:29:96:88:cf:aa:09:78:36:37:7e:4b:b7:29:91:ef: 3c:d6:be:a1:f2:dd:04:30:ca:76:bd:53:4f:c5:d9:78:04:a5: a6:86:b1:b1:c5:9e:b5:da:2f:9b:db:e0:58:44:5d:f0:d0:ad: b0:c7:f2:74:26:1e:f4:32:02:7a:7c:6e:02:7f:38:d9:68:3b: 95:ac:7e:9c:c6:a1:43:4a:3f:f9:6b:23:b0:c4:08:d0:71:73: 23:10:0c:ee:9a:b6:51:17:ca:ca:5f:85:3e:86:4b:06:1c:a4: 39:32:97:fe:ba:c0:f1:3a:72:38:54:fd:c6:e9:1c:01:d2:d2: 31:20:1f:3a:31:68:6d:15:55:d3:21:95:ae:bc:46:89:d1:c3: c1:77:47:9c:b6:3c:6e:02:eb:97:44:7b:c4:a4:ac:98:f2:fd: 5b:3f:52:37:5c:98:d9:33:3d:86:f0:b0:af:4f:7d:57:01:58: b1:ce:7c:31 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE2BAkypTe/ak6FG7vqScxbk3tDQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU0MTEzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGExMDBjOGNjYjY1YmFlNWEyZWJjOTExY2IzNjRlZjNk Y2YzYmQwYTgzZThlMjIzMzcwY2E2ODM0NmEzYzJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUHyS7kCgukfaSBGpcczYY2TgYw2uFFoK4S4pUh5Fjv8Wf f3a9Q8IlkpYrGjbEI3744U7D8spU/sA/CSyw4RnO61/644+eEfbAENTrvFhVszaQ a5PRS3P+8ov0QF3fuUjXQEHmTwNEpaeqmKQ1emvJ1rhk5gZuGfdI+gnxNLsLMVDt Vl7NL3SbVaIMldy9zwVYq+cvV0qPLnnZW/6ozbmpdZf1hqSmUZVdDnbaXyCOMoae WNf16bvGoumv2zLWvMtQ0PaUZtREGYaOaM7dR4X4ryc9wT6xCiJ/orDGN5VooD68 38xqR3p15wILjeNGfnI8eyoQMZ9RCLHZGXfipE7nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlcOJpi2nAQ6K+ZKF2mae6C4hBOkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmZTMzMmExLWU2MjctNDhmYi1hZjgxLWFkZWYyYWY4OGRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAe9sqamEpBlHB6BivnoUddIR2DEVG DRqhCBMB6+gSZHTRW50HFRXXCHH/wV37/g8OiGdoSsTf4GjZiBYo+4AsadNMPuAA o/ua9Fk9KZaIz6oJeDY3fku3KZHvPNa+ofLdBDDKdr1TT8XZeASlpoaxscWetdov m9vgWERd8NCtsMfydCYe9DICenxuAn842Wg7lax+nMahQ0o/+WsjsMQI0HFzIxAM 7pq2URfKyl+FPoZLBhykOTKX/rrA8TpyOFT9xukcAdLSMSAfOjFobRVV0yGVrrxG idHDwXdHnLY8bgLrl0R7xKSsmPL9Wz9SN1yY2TM9hvCwr099VwFYsc58MQ== -----END CERTIFICATE-----Generated at Sat Apr 5 07:29:02 2025 by rpki-client