$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa File: 91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa (raw, json) Hash identifier: x59qQo3bTVjwCNL3BumBX//kZMIXdTSDeqaDoM04Daw= Subject key identifier: C4:F3:D3:BA:F8:11:F3:C6:52:D9:86:E7:A9:BC:A0:74:18:74:E8:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BFDAB029AD625217246AAC0B4B904343D965C30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa Signing time: Fri 28 Mar 2025 00:41:49 +0000 ROA not before: Fri 28 Mar 2025 00:41:49 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:fd:ab:02:9a:d6:25:21:72:46:aa:c0:b4:b9:04:34:3d:96:5c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:41:49 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:99:4c:2c:cd:65:ab:8f:06:d3:45:97:63:54: 67:45:53:ce:b2:17:6c:66:ed:24:8a:94:b4:14:c7: e4:df:93:3b:dc:8d:6f:17:3a:05:e0:ec:a4:4a:b7: 41:f3:78:7c:ee:27:4d:14:a7:0d:00:5d:03:56:10: 48:0a:ff:a3:f4:4d:2a:a2:28:cb:65:a3:70:ac:d3: 2a:f6:45:b9:11:2d:ae:fc:a4:7b:39:74:ea:e9:ff: 8a:6d:90:32:a0:a2:b1:ba:32:a2:bf:2f:67:0c:c1: 51:d6:e2:a7:dd:04:e2:fd:ba:6f:a7:77:eb:91:be: e7:a8:0c:d0:c1:27:52:f9:e3:29:69:ea:37:15:66: 89:0a:55:f7:62:d7:26:92:68:9b:3a:db:21:39:e3: 08:bf:a4:c5:6f:51:8d:89:30:c5:b8:c3:0c:ea:17: 5d:f3:02:d7:2b:92:49:d5:28:d9:0d:1f:93:7a:75: 08:32:63:f2:6f:e7:db:da:aa:1e:72:ea:63:f7:b7: dd:8d:d0:09:33:73:76:dc:81:f7:bf:c5:d5:c3:32: bb:35:88:93:5a:4f:20:3d:71:22:30:fe:0c:c4:1a: 6d:2e:95:bc:6d:bb:11:16:ee:99:88:41:f5:56:0d: b1:2a:16:a6:da:5d:be:32:08:27:3d:78:cd:af:05: b3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F3:D3:BA:F8:11:F3:C6:52:D9:86:E7:A9:BC:A0:74:18:74:E8:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:99:30:ff:ab:75:83:34:a0:21:02:20:fd:fc:b8:1c:60:aa: 87:db:18:3e:d7:9b:0f:ab:6d:55:ca:a8:15:35:ed:75:85:8c: 0f:d0:de:f3:1d:f5:02:6a:ff:59:e6:11:5e:be:7e:30:44:5e: 03:4c:57:0f:b7:80:da:1b:34:56:6f:c3:d1:e0:40:e3:b6:04: 67:63:24:a3:8a:42:3f:9d:1f:ae:88:7a:de:08:36:88:21:14: 0c:9f:b3:22:8f:a2:bb:bb:ba:d0:7d:55:c9:1a:a1:72:23:ff: fd:05:bd:21:d0:e1:73:15:44:64:24:60:00:9a:f1:31:c8:8d: 79:7d:9a:ad:34:a8:fe:8c:f6:a7:87:d7:04:fb:17:4d:4d:39: e0:32:51:61:72:d6:12:c3:17:6a:d8:8e:c5:a2:b3:69:ce:17: b5:1e:be:c7:bc:77:ce:4c:4a:0f:b0:96:39:28:5d:10:a4:08: 47:85:30:2a:12:65:25:dc:78:2a:aa:3c:60:45:f4:4a:10:ea: 4d:c1:6a:4e:b6:80:5c:91:e4:1f:84:02:bc:e6:e1:71:ed:ad: c3:85:ff:d4:3d:28:42:16:fc:a8:7b:2d:10:a8:cd:db:2a:7b: 6d:1a:c1:d3:77:d1:cd:42:47:c0:ac:44:af:2d:30:10:c5:cc: 82:e8:ac:ee -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO/2rAprWJSFyRqrAtLkEND2WXDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDA0MTQ5WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODgwMDgzOTdkYjNjZWJkNmM1ZTEzNTg0ZTk2ODViMTFk ZmQzNzdkZDhjMjNkNGY3NmI4ZDlkNmY5Y2QxZWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4mUwszWWrjwbTRZdjVGdFU86yF2xm7SSKlLQUx+Tfkzvc jW8XOgXg7KRKt0HzeHzuJ00Upw0AXQNWEEgK/6P0TSqiKMtlo3Cs0yr2RbkRLa78 pHs5dOrp/4ptkDKgorG6MqK/L2cMwVHW4qfdBOL9um+nd+uRvueoDNDBJ1L54ylp 6jcVZokKVfdi1yaSaJs62yE54wi/pMVvUY2JMMW4wwzqF13zAtcrkknVKNkNH5N6 dQgyY/Jv59vaqh5y6mP3t92N0Akzc3bcgfe/xdXDMrs1iJNaTyA9cSIw/gzEGm0u lbxtuxEW7pmIQfVWDbEqFqbaXb4yCCc9eM2vBbNrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxPPTuvgR88ZS2YbnqbygdBh06IAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZDBkYjgzLWY3Y2ItNGJhNC04OTk5LTkwNjI5YWFmOTZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcmTANBgkqhkiG9w0BAQsFAAOCAQEAQZkw/6t1gzSgIQIg/fy4HGCqh9sY PtebD6ttVcqoFTXtdYWMD9De8x31Amr/WeYRXr5+MEReA0xXD7eA2hs0Vm/D0eBA 47YEZ2Mko4pCP50froh63gg2iCEUDJ+zIo+iu7u60H1VyRqhciP//QW9IdDhcxVE ZCRgAJrxMciNeX2arTSo/oz2p4fXBPsXTU054DJRYXLWEsMXatiOxaKzac4XtR6+ x7x3zkxKD7CWOShdEKQIR4UwKhJlJdx4Kqo8YEX0ShDqTcFqTraAXJHkH4QCvObh ce2tw4X/1D0oQhb8qHstEKjN2yp7bRrB03fRzUJHwKxEry0wEMXMguis7g== -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:24 2025 by rpki-client