$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa File: 97aba946-3a05-402f-9b1e-270f07bcd39f.roa (raw, json) Hash identifier: 19OCTlBzCMXC94oWYwR/P2AHPiDQYYCkJhkqy1qfNV4= Subject key identifier: 27:2F:67:02:FA:E4:C0:13:02:2E:C1:8F:78:43:03:C8:EC:09:55:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A209E1599ABB10E8B51A6D621FCC3E690DAE5CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa Signing time: Fri 04 Apr 2025 00:11:46 +0000 ROA not before: Fri 04 Apr 2025 00:11:46 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.18.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:20:9e:15:99:ab:b1:0e:8b:51:a6:d6:21:fc:c3:e6:90:da:e5:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:46 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:2f:6c:42:f2:f8:90:84:73:07:b6:db:57:8d: 8c:87:05:bd:d2:66:f6:f1:e1:96:38:af:7a:15:23: 31:af:49:9a:ba:3d:ea:c3:10:cd:74:a3:9f:f2:0b: f5:64:0b:5f:93:6c:bd:99:9b:d5:4a:5a:91:b7:ee: 79:78:c7:85:3a:26:0d:dd:94:53:00:be:62:1d:de: ae:36:36:a9:68:35:66:5b:af:32:a8:5c:6d:e6:46: 06:25:11:f2:d3:c2:ae:29:6d:c6:6c:d7:87:54:cd: 78:8e:c7:e9:b6:de:29:87:90:cf:56:cf:92:9c:70: 5f:50:19:bd:fc:00:48:f0:c0:20:11:c2:3a:73:dd: 78:17:2c:8e:5d:6d:d4:a1:5b:11:23:2a:82:42:7d: 12:0c:fe:02:80:ca:b8:98:46:1c:a2:a4:d4:a6:60: 78:4a:1c:ca:53:b3:11:41:12:42:e8:f7:82:c4:d3: 27:2b:06:61:df:c7:ac:ef:eb:63:69:0d:51:63:e8: f9:80:4e:7a:7d:21:1d:7a:8d:4d:4a:97:a7:cb:e1: f0:df:06:9c:15:08:f5:e4:2e:ad:0e:cb:47:76:2b: 88:ae:5a:ed:d9:aa:34:bb:2c:62:65:c5:f8:7a:cf: 38:c2:81:d4:bd:0f:c1:05:36:dc:98:28:3f:7d:dd: bd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2F:67:02:FA:E4:C0:13:02:2E:C1:8F:78:43:03:C8:EC:09:55:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97aba946-3a05-402f-9b1e-270f07bcd39f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.18.0.0/15 Signature Algorithm: sha256WithRSAEncryption 01:91:68:bf:f5:41:ab:56:48:ad:f0:b4:21:1f:2b:4d:c8:d3: 3d:7f:fd:4b:1f:dc:26:0a:7e:3b:95:54:91:a7:dd:ea:2b:58: 13:9e:8f:40:4b:51:88:17:44:bc:de:85:80:d2:5b:f3:08:54: 24:e9:bd:8f:da:4d:95:e9:40:b8:34:ab:a5:83:f6:59:43:fe: 80:0f:9e:bb:f7:36:75:4f:6d:df:55:d1:4f:93:7d:a7:32:88: e2:27:4e:ae:61:fa:8d:57:c6:aa:1c:d6:d5:e2:08:94:9d:65: 6a:47:d7:07:39:8e:8d:92:f4:a4:ca:7e:66:9f:98:65:f7:d3: 11:6d:a0:cb:8d:df:00:fe:b6:35:41:b9:69:6e:22:bb:05:12: e9:ab:e4:9f:74:36:23:dd:c7:1d:85:5a:5e:6f:43:68:ae:bc: 44:94:48:0a:9b:33:13:10:75:c8:95:16:02:7c:37:80:bd:ec: 8f:8a:13:be:b9:0c:62:c1:16:c0:2b:fd:19:f5:bc:da:2d:a4: 7a:f7:c9:4e:22:29:52:f4:b9:e5:9b:f7:a7:a2:f3:6f:97:89: 31:bd:37:f6:6c:c7:32:a3:92:0f:80:5c:f2:c8:28:77:51:09: ee:24:4d:11:99:94:de:ed:0d:ad:8b:92:1d:a0:77:83:5b:6c: 7a:40:53:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKiCeFZmrsQ6LUabWIfzD5pDa5c0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTQ2WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzZkNDY4NGQ1NzU3ZTAzNGFkZDc3ZTQ4NDNjY2VjMDhk ZjllNTg2NTcwZWEyMjM1OWQ4MTMyOTg2NDVmOTk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGL2xC8viQhHMHtttXjYyHBb3SZvbx4ZY4r3oVIzGvSZq6 PerDEM10o5/yC/VkC1+TbL2Zm9VKWpG37nl4x4U6Jg3dlFMAvmId3q42NqloNWZb rzKoXG3mRgYlEfLTwq4pbcZs14dUzXiOx+m23imHkM9Wz5KccF9QGb38AEjwwCAR wjpz3XgXLI5dbdShWxEjKoJCfRIM/gKAyriYRhyipNSmYHhKHMpTsxFBEkLo94LE 0ycrBmHfx6zv62NpDVFj6PmATnp9IR16jU1Kl6fL4fDfBpwVCPXkLq0Oy0d2K4iu Wu3ZqjS7LGJlxfh6zzjCgdS9D8EFNtyYKD993b0PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJy9nAvrkwBMCLsGPeEMDyOwJVZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3YWJhOTQ2LTNhMDUtNDAyZi05YjFlLTI3MGYwN2JjZDM5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjEjANBgkqhkiG9w0BAQsFAAOCAQEAAZFov/VBq1ZIrfC0IR8rTcjTPX/9 Sx/cJgp+O5VUkafd6itYE56PQEtRiBdEvN6FgNJb8whUJOm9j9pNlelAuDSrpYP2 WUP+gA+eu/c2dU9t31XRT5N9pzKI4idOrmH6jVfGqhzW1eIIlJ1lakfXBzmOjZL0 pMp+Zp+YZffTEW2gy43fAP62NUG5aW4iuwUS6avkn3Q2I93HHYVaXm9DaK68RJRI CpszExB1yJUWAnw3gL3sj4oTvrkMYsEWwCv9GfW82i2kevfJTiIpUvS55Zv3p6Lz b5eJMb039mzHMqOSD4Bc8sgod1EJ7iRNEZmU3u0NrYuSHaB3g1tsekBTew== -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:19 2025 by rpki-client