$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa File: 94d91aaa-a302-47ac-9ff3-22b5494654b8.roa (raw, json) Hash identifier: IL0IDGHGbbvPwJQRmnPcSXnDnG12Tr6Lic1vkfY0OuQ= Subject key identifier: 23:F3:23:AD:8E:91:DA:BC:AB:58:92:AF:B4:FA:D1:6D:76:86:92:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3857735B1B2266D25DC029F7FCFB43072B0A0D26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa Signing time: Fri 14 Mar 2025 00:41:10 +0000 ROA not before: Fri 14 Mar 2025 00:41:10 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:57:73:5b:1b:22:66:d2:5d:c0:29:f7:fc:fb:43:07:2b:0a:0d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:41:10 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:53:79:8e:77:32:b6:c3:54:7f:73:88:13: 32:5e:83:b9:fe:cb:3d:ef:eb:22:e8:b0:18:bd:27: 61:85:70:e7:9d:df:fc:26:21:07:a0:42:b8:b2:d1: d5:09:5a:48:f1:03:21:48:49:d4:a2:8a:8c:0c:04: ce:93:65:0d:45:68:1b:5f:ba:23:3d:06:e3:dc:b1: 5c:ef:f0:42:d6:86:86:30:0f:35:fe:ee:e3:61:40: 46:6b:16:49:0b:6c:01:9d:93:f0:83:cd:d0:0e:c9: 57:24:ff:7e:be:96:8f:f4:aa:65:ac:c1:d6:cd:e6: 43:ec:f1:17:15:53:92:6b:37:77:de:bd:49:18:7f: 51:42:a9:c1:23:e2:42:d7:4a:84:83:50:d5:e1:73: 2e:05:10:fe:c3:d2:6d:66:1b:66:82:82:eb:d0:ad: cf:48:0e:5e:b5:3d:e7:4d:ca:5c:98:ba:95:9c:60: c0:10:9a:05:8a:a7:b0:5f:50:8c:ed:4e:0b:ea:29: 79:84:4a:9d:95:c6:eb:a9:57:ff:08:85:3b:b9:c6: 55:b5:e3:2a:e8:52:e3:01:c2:b8:60:31:33:2a:09: c6:6f:96:df:12:11:4f:e8:51:26:90:37:89:e5:0c: cb:1d:35:0b:26:ad:d3:56:da:55:e2:62:06:cf:64: e4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F3:23:AD:8E:91:DA:BC:AB:58:92:AF:B4:FA:D1:6D:76:86:92:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.115.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:5a:70:cf:d3:95:26:5b:8e:51:2d:0a:a1:69:0e:c7:62:40: 76:50:15:ca:03:3b:84:2c:61:33:a9:e4:41:c9:1f:ce:4d:65: 39:44:61:18:ef:ee:c9:2d:16:b8:47:0a:01:a1:55:c9:e8:53: e0:72:ae:ba:43:bd:df:a8:5a:b8:10:b1:9a:77:4b:a9:61:12: 2c:61:c1:c7:60:f1:b1:2c:4b:81:6c:d8:9c:59:51:0f:01:21: 3b:a8:95:ee:e1:6e:8d:89:bf:d1:a5:38:b5:5e:52:72:8e:ea: b9:56:50:7c:66:bc:ef:b1:a1:51:3b:22:17:e1:60:a4:ab:db: 3b:f5:b9:ea:a4:b4:7a:b2:be:9f:dd:22:de:67:b1:0e:aa:54: 9a:ab:13:b8:61:43:f1:78:be:a1:50:a8:bc:ca:4f:80:e5:ce: c7:49:b8:5f:56:48:3b:b4:03:f2:3b:18:91:54:92:05:45:0b: b8:6f:20:70:0e:f8:46:c6:8c:6a:b9:ca:67:1f:4f:c9:f6:42: be:db:e4:07:6e:b4:bb:60:fb:6c:af:a1:16:66:9f:e0:ec:03: 97:b5:12:a5:59:e4:d6:50:42:ed:d2:f5:02:62:8c:d7:21:a1: 48:9c:5d:ba:6b:56:81:7a:49:a7:ec:4a:ed:31:13:c0:e4:d5: 02:c7:da:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOFdzWxsiZtJdwCn3/PtDBysKDSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDA0MTEwWhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTlhZDRkNmU1N2JkNjBjOWM5ZTEwNzk1MTBhMGYwY2Qw NzlkNGViZGE5OWI0NTk1MGE3Zjk1ZDhhMzQ4NjFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzp1N5jncytsNUf3OIEzJeg7n+yz3v6yLosBi9J2GFcOed 3/wmIQegQriy0dUJWkjxAyFISdSiiowMBM6TZQ1FaBtfuiM9BuPcsVzv8ELWhoYw DzX+7uNhQEZrFkkLbAGdk/CDzdAOyVck/36+lo/0qmWswdbN5kPs8RcVU5JrN3fe vUkYf1FCqcEj4kLXSoSDUNXhcy4FEP7D0m1mG2aCguvQrc9IDl61PedNylyYupWc YMAQmgWKp7BfUIztTgvqKXmESp2VxuupV/8IhTu5xlW14yroUuMBwrhgMTMqCcZv lt8SEU/oUSaQN4nlDMsdNQsmrdNW2lXiYgbPZORXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI/MjrY6R2ryrWJKvtPrRbXaGksgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ZDkxYWFhLWEzMDItNDdhYy05ZmYzLTIyYjU0OTQ2NTRiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HMwDQYJKoZIhvcNAQELBQADggEBAFpacM/TlSZbjlEtCqFpDsdiQHZQ FcoDO4QsYTOp5EHJH85NZTlEYRjv7sktFrhHCgGhVcnoU+ByrrpDvd+oWrgQsZp3 S6lhEixhwcdg8bEsS4Fs2JxZUQ8BITuole7hbo2Jv9GlOLVeUnKO6rlWUHxmvO+x oVE7IhfhYKSr2zv1ueqktHqyvp/dIt5nsQ6qVJqrE7hhQ/F4vqFQqLzKT4DlzsdJ uF9WSDu0A/I7GJFUkgVFC7hvIHAO+EbGjGq5ymcfT8n2Qr7b5AdutLtg+2yvoRZm n+DsA5e1EqVZ5NZQQu3S9QJijNchoUicXbprVoF6SafsSu0xE8Dk1QLH2rE= -----END CERTIFICATE-----Generated at Sat Apr 5 19:28:22 2025 by rpki-client