$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa File: 537c046e-5a56-4195-932d-8cb70983c76c.roa (raw, json) Hash identifier: oI85rtTKM9FspUYeODLxvH7z0P2lUJmrJWww9SMZ7qQ= Subject key identifier: 4A:35:91:CE:3B:B1:64:2C:A6:A9:4B:A2:18:18:B6:5A:86:A7:21:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 153CFB073DF2CFCB2FF2BADEC20E80501D6919D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa Signing time: Mon 31 Mar 2025 15:22:14 +0000 ROA not before: Mon 31 Mar 2025 15:22:14 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:3c:fb:07:3d:f2:cf:cb:2f:f2:ba:de:c2:0e:80:50:1d:69:19:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:22:14 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b2:bd:f9:ec:de:0b:4d:85:26:9c:59:62:51: fd:2f:eb:2c:d8:75:e6:00:d0:41:62:77:2d:6d:ac: 2d:71:dd:01:fa:65:65:10:93:da:bf:2f:cc:ca:1e: cb:d8:4f:76:1f:c2:27:f9:4b:3a:a2:0d:95:35:80: 1a:01:f2:06:7c:8d:78:7c:c4:39:df:bf:af:5d:53: 68:cf:a4:9f:07:4f:20:b1:2b:3a:66:be:99:ed:cc: 2b:32:04:c6:d4:91:b6:18:03:e0:51:09:7c:12:29: 0a:0e:82:b3:4e:0e:97:4b:4d:2a:aa:5a:56:a2:31: 52:5b:39:54:ae:e2:d6:e3:61:02:8e:58:52:aa:31: f5:fe:15:f2:c1:e9:bd:9b:8e:5d:19:e3:08:bf:4f: 46:98:1e:39:63:1e:6d:2b:1d:46:2c:bf:d8:9c:a2: 28:45:4d:c3:50:26:4e:de:80:a0:79:3e:04:02:be: a3:e5:07:4e:0c:73:c8:91:d0:cf:30:1c:71:a9:0e: 31:ff:42:73:66:ad:01:e0:91:76:fa:ab:d6:da:bf: fd:01:b0:bc:04:d2:2e:74:8c:1f:3f:d1:58:6d:12: 40:fa:f9:49:54:f0:7c:62:aa:3e:38:8b:02:86:4d: ad:af:e8:d5:f7:91:93:88:12:81:81:60:59:99:7f: 84:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:35:91:CE:3B:B1:64:2C:A6:A9:4B:A2:18:18:B6:5A:86:A7:21:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.8.0/22 Signature Algorithm: sha256WithRSAEncryption b8:33:55:ac:e8:64:24:33:05:89:12:17:0d:5d:ca:55:d3:8b: 23:36:43:c9:19:b4:15:f4:9f:44:60:7d:7d:47:70:6c:dd:38: 09:3c:3c:47:cd:94:ba:c6:f0:bc:78:12:f1:dd:73:4c:87:3c: af:59:ac:4e:2e:b0:5e:52:ae:e7:9f:4d:17:8a:13:58:da:21: 66:17:27:bf:46:54:ef:e7:56:e0:05:a8:c9:0f:4a:a0:9f:94: 58:e6:3a:57:c7:11:03:e3:c3:21:8e:60:b3:0a:69:c7:7e:da: ae:46:4a:d4:f5:95:1d:ac:4f:ee:17:1f:e2:0b:1d:c3:74:9a: 8a:9e:1d:f1:35:aa:f0:03:f8:40:8a:62:93:f8:5e:76:0a:cc: 1f:73:46:fe:1c:e3:bf:6f:50:5f:f8:29:62:f1:0d:01:1d:a5: 57:45:3a:eb:ef:82:ca:5e:a4:b6:4c:f3:1d:b7:08:96:25:46: 1d:7d:ac:a9:09:bf:5b:ce:c4:75:6b:f9:28:49:c3:eb:64:bc: 9a:70:f4:29:47:14:81:65:c7:05:a4:0e:57:6a:88:17:7a:2e: 8b:c7:39:32:3d:5d:6f:88:66:76:be:c4:ab:96:85:1a:41:fe: 92:f9:48:6e:0d:25:35:16:1f:5b:7f:18:20:51:e0:61:2b:00: 48:f2:42:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFTz7Bz3yz8sv8rrewg6AUB1pGdkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUyMjE0WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWVkMDU5MDA5NWM2ODQzZTVjMzhkMmY5OGQ2YzUxNTA1 ZDdlNDgwMTJmNTc3OGM2ZmYyYzQ0ZjBmZWE5ZDNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCosr357N4LTYUmnFliUf0v6yzYdeYA0EFidy1trC1x3QH6 ZWUQk9q/L8zKHsvYT3Yfwif5SzqiDZU1gBoB8gZ8jXh8xDnfv69dU2jPpJ8HTyCx KzpmvpntzCsyBMbUkbYYA+BRCXwSKQoOgrNODpdLTSqqWlaiMVJbOVSu4tbjYQKO WFKqMfX+FfLB6b2bjl0Z4wi/T0aYHjljHm0rHUYsv9icoihFTcNQJk7egKB5PgQC vqPlB04Mc8iR0M8wHHGpDjH/QnNmrQHgkXb6q9bav/0BsLwE0i50jB8/0VhtEkD6 +UlU8Hxiqj44iwKGTa2v6NX3kZOIEoGBYFmZf4QTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSjWRzjuxZCymqUuiGBi2WoanIVcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzN2MwNDZlLTVhNTYtNDE5NS05MzJkLThjYjcwOTgzYzc2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX/ggwDQYJKoZIhvcNAQELBQADggEBALgzVazoZCQzBYkSFw1dylXTiyM2 Q8kZtBX0n0RgfX1HcGzdOAk8PEfNlLrG8Lx4EvHdc0yHPK9ZrE4usF5SruefTReK E1jaIWYXJ79GVO/nVuAFqMkPSqCflFjmOlfHEQPjwyGOYLMKacd+2q5GStT1lR2s T+4XH+ILHcN0moqeHfE1qvAD+ECKYpP4XnYKzB9zRv4c479vUF/4KWLxDQEdpVdF OuvvgspepLZM8x23CJYlRh19rKkJv1vOxHVr+ShJw+tkvJpw9ClHFIFlxwWkDldq iBd6LovHOTI9XW+IZna+xKuWhRpB/pL5SG4NJTUWH1t/GCBR4GErAEjyQjk= -----END CERTIFICATE-----Generated at Sat Apr 5 16:56:09 2025 by rpki-client