$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57bcef1-b811-4c33-8250-10863c654d10.roa File: c57bcef1-b811-4c33-8250-10863c654d10.roa (raw, json) Hash identifier: HO0yzZoeFN9Y4sEQSzfmK1lyJM1Z2shHJOsqJyrAMeI= Subject key identifier: B7:9D:C8:04:92:1A:74:3E:32:31:58:08:DE:ED:FB:BC:46:F4:21:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FAECE80864F490354C094C2877E32EAB641265C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57bcef1-b811-4c33-8250-10863c654d10.roa Signing time: Mon 24 Mar 2025 15:30:19 +0000 ROA not before: Mon 24 Mar 2025 15:30:19 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.33.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ae:ce:80:86:4f:49:03:54:c0:94:c2:87:7e:32:ea:b6:41:26:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:30:19 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3a:a4:ed:63:9b:ec:74:65:ab:f7:ba:28:a5: ee:68:35:19:dc:3f:b0:ad:e1:86:01:c6:30:86:a1: 72:d9:a2:40:5e:89:e5:4d:40:50:b1:3f:41:b1:71: c3:88:6c:4f:8c:17:eb:c9:74:c1:89:b1:95:7b:c8: fa:91:ef:62:aa:07:3a:b4:db:02:5c:6b:f7:0a:23: bc:ff:df:e5:27:1a:e3:f5:2a:8d:a4:e4:ab:fa:20: 40:d9:cd:e4:0c:6c:50:3a:e6:15:74:27:0b:47:84: 64:5a:0f:79:f3:ae:d4:d8:10:5f:77:03:65:d4:29: 8f:30:2c:25:75:cb:da:a2:23:fb:5e:0b:5e:10:14: c8:26:44:55:a8:54:7e:7b:a8:bd:16:b4:16:e2:48: db:cf:32:63:94:e3:3c:4c:c2:4f:8c:7d:5e:b0:4f: 17:d6:8c:6f:48:57:ae:49:87:c8:61:94:72:65:94: 71:46:74:85:55:e8:25:5c:00:05:c0:11:82:6b:3a: cd:21:bb:30:3b:aa:85:f2:fc:88:b4:e8:69:ed:c6: 41:f9:49:d9:33:21:eb:b1:c6:69:d9:90:7c:28:fa: 53:58:bc:5e:b2:30:5f:45:06:69:81:73:cc:1a:73: 7a:f3:14:7e:14:c0:b3:53:9c:b1:2f:12:21:d0:21: b8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:9D:C8:04:92:1A:74:3E:32:31:58:08:DE:ED:FB:BC:46:F4:21:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57bcef1-b811-4c33-8250-10863c654d10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.33.160.0/20 Signature Algorithm: sha256WithRSAEncryption 78:2d:ca:2a:5e:ab:31:ea:10:c5:cd:37:8b:ff:6d:ca:4e:d0: de:16:7f:7a:f7:96:5f:88:bd:6a:f2:c6:7b:89:d2:83:75:38: 98:8c:b7:05:3d:cd:9f:12:98:07:84:d9:7c:d8:90:0a:0b:65: 1e:73:24:2f:90:5d:bc:66:d8:f9:76:45:26:8a:d1:6b:79:d5: d4:ac:cd:4d:6c:82:fb:2f:af:09:88:c6:a4:c2:bf:0b:a5:38: 35:c9:0b:7e:c5:00:a1:89:a0:75:eb:8f:5a:ac:87:ad:ac:45: dd:0f:2d:58:c0:2c:a6:9d:96:da:48:1d:40:18:99:4e:e0:6d: 25:f8:c2:a7:aa:cf:3c:e2:f3:3a:4c:44:df:22:9d:a5:d7:6c: 5e:d6:a4:40:ae:ca:5a:bb:64:f5:c2:f8:80:0a:89:53:68:6c: 77:c2:d7:e5:fa:33:1d:a7:4a:8c:be:ea:de:47:f7:a6:7e:f3: 3e:a3:66:0b:af:d4:28:5a:bb:dc:43:e2:4b:4b:8b:b0:2a:79: 2d:aa:e7:35:1c:6d:5b:dd:b9:da:38:59:ff:8d:73:e7:ac:78: 8a:bf:84:be:5c:53:10:4b:23:5e:96:52:d5:1d:b5:8d:52:fa: a2:0b:cc:69:44:8a:e6:84:fd:02:0c:95:06:82:60:ab:62:0b: 4f:a8:cd:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH67OgIZPSQNUwJTCh34y6rZBJlwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTUzMDE5WhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTBhNmUwZWI4MmU0MjQ3OTE5ZjI5OGMxNTE2ZjAwOGVk N2M5ZTczNzIwMzI0ZDY0MmJjZjFkZjY0NmUzYWRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2OqTtY5vsdGWr97oope5oNRncP7Ct4YYBxjCGoXLZokBe ieVNQFCxP0GxccOIbE+MF+vJdMGJsZV7yPqR72KqBzq02wJca/cKI7z/3+UnGuP1 Ko2k5Kv6IEDZzeQMbFA65hV0JwtHhGRaD3nzrtTYEF93A2XUKY8wLCV1y9qiI/te C14QFMgmRFWoVH57qL0WtBbiSNvPMmOU4zxMwk+MfV6wTxfWjG9IV65Jh8hhlHJl lHFGdIVV6CVcAAXAEYJrOs0huzA7qoXy/Ii06GntxkH5SdkzIeuxxmnZkHwo+lNY vF6yMF9FBmmBc8wac3rzFH4UwLNTnLEvEiHQIbi3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt53IBJIadD4yMVgI3u37vEb0IZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1N2JjZWYxLWI4MTEtNGMzMy04MjUwLTEwODYzYzY1NGQxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIaAwDQYJKoZIhvcNAQELBQADggEBAHgtyipeqzHqEMXNN4v/bcpO0N4W f3r3ll+IvWryxnuJ0oN1OJiMtwU9zZ8SmAeE2XzYkAoLZR5zJC+QXbxm2Pl2RSaK 0Wt51dSszU1sgvsvrwmIxqTCvwulODXJC37FAKGJoHXrj1qsh62sRd0PLVjALKad ltpIHUAYmU7gbSX4wqeqzzzi8zpMRN8inaXXbF7WpECuylq7ZPXC+IAKiVNobHfC 1+X6Mx2nSoy+6t5H96Z+8z6jZguv1Chau9xD4ktLi7AqeS2q5zUcbVvdudo4Wf+N c+eseIq/hL5cUxBLI16WUtUdtY1S+qILzGlEiuaE/QIMlQaCYKtiC0+ozVM= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:38 2025 by rpki-client