$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa File: 6b0118f9-aa06-473f-9164-82651f7287ff.roa (raw, json) Hash identifier: n1UmocAxPpAXW30MQIivOJl28EN3xYRw7WMjxtvDLnY= Subject key identifier: A9:13:7D:77:5A:5E:14:8A:F9:21:F7:EA:8E:61:3E:A0:B8:20:45:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51CE4049CE25F59CCBC683D3116D68B05932B1DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa Signing time: Sat 05 Apr 2025 00:01:45 +0000 ROA not before: Sat 05 Apr 2025 00:01:45 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 128.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ce:40:49:ce:25:f5:9c:cb:c6:83:d3:11:6d:68:b0:59:32:b1:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 5 00:01:45 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:05:e0:ae:51:c1:ff:b7:26:e6:d0:9a:f1:ab: f1:2d:0a:cb:70:e7:85:b5:a8:7a:c9:3c:b9:a5:86: 85:69:80:8d:47:b0:f2:fc:ad:eb:ff:16:8c:c2:03: 65:e1:89:a0:5e:a1:be:87:9b:f4:8f:49:6b:10:c7: b2:a0:e6:c7:3c:7f:52:b7:d9:39:ed:14:28:60:21: 94:90:30:02:e2:de:62:e1:b4:30:ec:2b:7c:a1:cc: 84:6a:c9:ef:62:b7:33:cf:9d:bd:e0:cf:7f:4f:86: 1f:1a:d2:02:41:4a:38:01:74:d0:c3:65:bd:a7:06: 0d:21:66:7d:42:69:f7:91:41:20:72:a4:85:13:7a: b2:ab:02:66:bc:a4:1b:d3:87:cc:93:cd:0b:58:95: 4e:61:92:c2:a1:52:72:69:cf:86:fb:4b:2b:48:1c: bd:9d:95:81:4e:a0:51:7b:04:42:c8:e0:23:46:0b: b8:e3:21:f7:38:1a:f0:ef:72:3d:4f:0b:8e:85:e6: 97:c0:19:8d:31:9d:e7:d8:da:f7:52:23:8d:cf:69: bb:5e:96:9a:28:e7:ee:ae:0e:84:be:ba:ee:cd:52: 82:03:7a:47:9d:8d:07:af:8d:4b:a2:e2:6b:32:82: 55:5e:fc:ef:55:e3:92:04:86:80:e9:d4:42:c4:ce: 5d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:13:7D:77:5A:5E:14:8A:F9:21:F7:EA:8E:61:3E:A0:B8:20:45:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b0118f9-aa06-473f-9164-82651f7287ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:60:3e:26:88:be:87:9f:e3:08:fc:e1:92:e0:86:b1:30:22: c1:0e:dd:6f:ef:08:c0:85:e3:a1:58:78:52:c1:05:65:a3:5f: 77:a2:96:a4:e2:95:a5:aa:b2:50:ec:71:6e:21:e5:34:49:95: f7:0f:40:30:36:3c:f8:73:b9:c7:32:1a:f5:f8:06:39:bf:b5: c3:03:03:13:4f:78:c1:5a:fd:c0:e7:c9:29:c0:c6:f0:17:b2: 9e:20:bf:49:40:a4:72:0e:77:67:cc:be:c2:8f:f8:63:67:e8: c0:80:9c:79:22:cc:77:ea:0b:f0:13:5a:5f:ee:e3:1f:fd:42: eb:01:18:83:60:17:b5:33:7d:93:97:36:79:b7:42:83:2a:c9: 91:84:bf:bd:67:d9:2a:fa:cd:e0:70:d5:a2:0a:cc:77:07:2d: 77:08:c0:a7:30:7a:99:55:76:40:65:74:fe:cf:b8:ac:15:4e: 50:76:0b:65:eb:15:e6:ad:e1:8d:a1:e4:93:c5:8a:32:50:71: 99:ba:7f:9f:2a:1c:f6:4c:bc:94:3c:e9:7b:a4:8f:3a:76:65: 92:e1:ef:28:01:ff:84:b5:22:a8:ac:f2:17:8d:07:51:d6:08: 49:61:b0:4a:37:90:74:50:cd:78:3d:2e:ef:5c:44:08:c0:79: fe:66:61:28 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUc5ASc4l9ZzLxoPTEW1osFkysd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA1MDAwMTQ1WhcNMjUwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjVjZDM4MDE4NzRlNzY0MThkMDJiMzFhN2MyMmJmMTc4 ZTM0MGJjNzUwOWY4ZmQ0YzMzMmEzNmUwOGU1NmEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfBeCuUcH/tybm0Jrxq/EtCstw54W1qHrJPLmlhoVpgI1H sPL8rev/FozCA2XhiaBeob6Hm/SPSWsQx7Kg5sc8f1K32TntFChgIZSQMALi3mLh tDDsK3yhzIRqye9itzPPnb3gz39Phh8a0gJBSjgBdNDDZb2nBg0hZn1CafeRQSBy pIUTerKrAma8pBvTh8yTzQtYlU5hksKhUnJpz4b7SytIHL2dlYFOoFF7BELI4CNG C7jjIfc4GvDvcj1PC46F5pfAGY0xnefY2vdSI43Pabtelpoo5+6uDoS+uu7NUoID ekedjQevjUui4msyglVe/O9V45IEhoDp1ELEzl0xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqRN9d1peFIr5IffqjmE+oLggRWcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiMDExOGY5LWFhMDYtNDczZi05MTY0LTgyNjUxZjcyODdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCA1DANBgkqhkiG9w0BAQsFAAOCAQEA0GA+Joi+h5/jCPzhkuCGsTAiwQ7d b+8IwIXjoVh4UsEFZaNfd6KWpOKVpaqyUOxxbiHlNEmV9w9AMDY8+HO5xzIa9fgG Ob+1wwMDE094wVr9wOfJKcDG8BeyniC/SUCkcg53Z8y+wo/4Y2fowICceSLMd+oL 8BNaX+7jH/1C6wEYg2AXtTN9k5c2ebdCgyrJkYS/vWfZKvrN4HDVogrMdwctdwjA pzB6mVV2QGV0/s+4rBVOUHYLZesV5q3hjaHkk8WKMlBxmbp/nyoc9ky8lDzpe6SP OnZlkuHvKAH/hLUiqKzyF40HUdYISWGwSjeQdFDNeD0u71xECMB5/mZhKA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:11 2025 by rpki-client