$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3d5bebf-09af-4f01-bd8d-6ac74c0e8379.roa File: a3d5bebf-09af-4f01-bd8d-6ac74c0e8379.roa (raw, json) Hash identifier: 4IrDtDB8rcEppTXSTnrIbN1eAJ5E86i2++zptT7hSro= Subject key identifier: 53:F9:39:5A:BB:1E:6B:69:0C:39:3F:78:F1:F8:BE:47:35:E2:42:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23278C6484316A951C1E0BE58506FCA3D16B4AE9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3d5bebf-09af-4f01-bd8d-6ac74c0e8379.roa Signing time: Mon 24 Mar 2025 15:40:24 +0000 ROA not before: Mon 24 Mar 2025 15:40:24 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.246.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:27:8c:64:84:31:6a:95:1c:1e:0b:e5:85:06:fc:a3:d1:6b:4a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:40:24 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:37:c9:7c:9c:4c:f3:7b:b1:e5:52:8e:c7:c1: 11:92:64:e0:98:46:4c:8a:9b:88:29:46:00:dc:88: f5:32:89:e8:11:7a:52:2e:7b:93:43:99:a6:a2:79: 86:b3:72:da:69:93:3c:77:d1:22:16:04:8e:98:f0: 02:1e:18:d2:f7:8d:9d:c7:16:36:67:7c:36:f5:cd: b6:ca:37:fe:0f:17:b9:ec:00:e0:5c:d2:4a:c8:31: 81:fa:fd:ec:09:f6:33:bf:51:6e:79:a5:d7:a0:fa: d5:25:bb:a9:32:5e:78:b2:88:5b:b4:bd:01:6f:17: 22:f8:c3:cd:61:16:5a:d8:fd:38:13:f2:07:ff:5d: de:09:5a:38:88:f2:9f:3e:08:24:7a:6d:e3:53:9f: e0:17:7f:d5:06:ec:a3:9a:ee:bb:22:2d:3a:18:5c: a6:42:59:12:79:d2:8d:ad:6f:e8:37:b8:00:ef:b2: 4a:88:1a:4d:a1:da:e8:b2:01:73:51:84:49:9c:aa: 94:0d:3a:ff:f4:c3:2e:ba:cf:e6:70:ee:0a:fe:89: 34:5b:e1:ed:11:e5:7a:c9:94:67:3d:81:2c:a9:69: 70:d5:f9:c0:47:6d:25:f8:7c:41:60:a5:be:79:ca: fc:64:97:4e:af:f2:c5:08:19:ef:24:e1:78:97:40: 55:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F9:39:5A:BB:1E:6B:69:0C:39:3F:78:F1:F8:BE:47:35:E2:42:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3d5bebf-09af-4f01-bd8d-6ac74c0e8379.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.246.195.0/24 Signature Algorithm: sha256WithRSAEncryption c9:d0:35:08:f3:47:0d:9c:1d:0d:b8:5e:11:e6:b0:90:0c:40: 53:a3:56:70:93:6f:03:a1:dc:68:55:0a:ec:6f:5d:be:9d:0e: 1c:82:85:53:dd:97:b9:69:36:10:48:8a:1e:18:cc:ef:58:46: 47:81:9a:79:c4:e1:4f:6c:ac:d7:be:39:6c:9a:46:01:6f:71: 70:fa:74:ae:0d:cc:a4:52:80:0b:96:05:c2:64:9e:98:87:44: 3c:f5:e7:4f:4d:8a:75:66:84:2a:03:9a:ba:2b:f6:cf:81:af: 04:19:c9:68:bd:fd:6d:67:87:21:08:13:99:22:9d:67:4c:72: 8b:b4:03:f7:b0:fc:ad:92:03:1b:f6:31:5a:4e:da:d3:6e:14: 36:0e:be:dd:04:7f:0a:57:62:c5:43:e2:6d:bd:4c:b9:be:14: 58:ea:c7:99:ca:29:ed:01:fa:e3:9f:48:64:01:e6:0f:ec:bd: 72:4d:48:ad:c8:37:1f:e1:08:71:5a:c3:38:2b:b8:ab:54:36: 74:92:28:e7:0c:64:fd:6b:e7:90:07:95:8f:c9:ad:2f:6b:cc: b9:ce:67:c0:53:40:5f:81:30:ee:c2:ec:33:52:dd:81:37:f6: 2f:b7:64:bf:55:db:cd:26:7e:20:52:58:e0:23:d2:4b:60:ee: a8:6d:1a:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIyeMZIQxapUcHgvlhQb8o9FrSukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTU0MDI0WhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWViZGNiNTlkZDY4M2I3NzExODc0OTY3NTdlZTcyYzNh ZmJhYjAzYjAzZDAyNTg4M2EyYzc5N2ExNDJiNDJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTN8l8nEzze7HlUo7HwRGSZOCYRkyKm4gpRgDciPUyiegR elIue5NDmaaieYazctppkzx30SIWBI6Y8AIeGNL3jZ3HFjZnfDb1zbbKN/4PF7ns AOBc0krIMYH6/ewJ9jO/UW55pdeg+tUlu6kyXniyiFu0vQFvFyL4w81hFlrY/TgT 8gf/Xd4JWjiI8p8+CCR6beNTn+AXf9UG7KOa7rsiLToYXKZCWRJ50o2tb+g3uADv skqIGk2h2uiyAXNRhEmcqpQNOv/0wy66z+Zw7gr+iTRb4e0R5XrJlGc9gSypaXDV +cBHbSX4fEFgpb55yvxkl06v8sUIGe8k4XiXQFXRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU/k5Wrsea2kMOT948fi+RzXiQlowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzZDViZWJmLTA5YWYtNGYwMS1iZDhkLTZhYzc0YzBlODM3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY9sMwDQYJKoZIhvcNAQELBQADggEBAMnQNQjzRw2cHQ24XhHmsJAMQFOj VnCTbwOh3GhVCuxvXb6dDhyChVPdl7lpNhBIih4YzO9YRkeBmnnE4U9srNe+OWya RgFvcXD6dK4NzKRSgAuWBcJknpiHRDz1509NinVmhCoDmror9s+BrwQZyWi9/W1n hyEIE5kinWdMcou0A/ew/K2SAxv2MVpO2tNuFDYOvt0EfwpXYsVD4m29TLm+FFjq x5nKKe0B+uOfSGQB5g/svXJNSK3INx/hCHFawzgruKtUNnSSKOcMZP1r55AHlY/J rS9rzLnOZ8BTQF+BMO7C7DNS3YE39i+3ZL9V280mfiBSWOAj0ktg7qhtGmQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:18:00 2025 by rpki-client