$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa File: c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa (raw, json) Hash identifier: 0775VwOlSmsUxg4VkQa1tSyb0LojOww41Pd0AZvcsZQ= Subject key identifier: AD:1C:31:0C:66:7C:B6:EE:E5:E2:B3:3B:F9:E0:1E:31:53:BF:20:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C8C88273918B65CCD8582E327AD66F5AD35C5FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa Signing time: Wed 12 Mar 2025 00:02:20 +0000 ROA not before: Wed 12 Mar 2025 00:02:20 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8c:88:27:39:18:b6:5c:cd:85:82:e3:27:ad:66:f5:ad:35:c5:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:02:20 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:ff:67:1d:45:3f:9b:fb:46:dc:d9:80:d9: 20:85:a4:d0:dd:12:f3:af:02:88:ac:b2:38:a9:c4: 89:16:5b:24:ad:16:b8:a3:14:e2:05:66:5a:2f:fa: e4:8e:4e:6a:6d:ee:93:8a:7f:da:fa:03:ae:c2:16: 6d:8d:58:31:b9:97:f3:3c:77:39:02:0e:fb:fd:27: b0:05:71:ed:e3:41:03:b2:0b:71:9a:93:e8:4a:5e: 9a:3c:14:da:97:ca:94:6a:1e:12:6a:9e:84:4e:9d: 8b:24:0a:5e:bd:b4:c9:ed:9a:f6:af:32:e4:7a:c6: c0:4b:93:52:b4:41:82:35:9b:f4:fe:cc:b3:ea:06: 97:87:f9:04:5c:e6:09:5e:5f:4e:81:15:56:29:10: 11:0a:40:37:74:28:ad:fd:de:84:b4:04:25:53:91: 3f:ff:28:74:17:c5:7b:0f:42:cd:2c:70:d4:8e:66: 3c:39:ce:3a:74:fb:de:1c:91:41:8b:8b:a0:3f:1f: 8b:aa:1b:cf:55:c0:5a:12:c1:17:92:03:78:be:0a: c9:2c:3e:1e:b3:7d:50:04:21:9f:76:a9:5b:d0:5a: 95:07:1d:f7:f2:c3:2a:6e:09:55:0e:26:08:f8:f8: b0:ee:ce:51:28:01:62:44:8b:2b:62:82:77:52:f0: d1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1C:31:0C:66:7C:B6:EE:E5:E2:B3:3B:F9:E0:1E:31:53:BF:20:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:91:c1:01:53:09:7f:f8:94:d6:18:70:03:ee:b1:91:d5:3a: c7:dc:d3:a8:19:60:0d:e0:4f:39:7f:8f:06:7f:f9:e4:1a:2b: 80:27:e7:54:5e:f3:00:d0:05:36:6c:6b:6d:e3:06:59:5d:c5: 11:bb:fc:1b:cb:91:b1:8c:73:bd:c3:41:2f:a2:34:2c:51:e4: 9b:92:03:1b:c7:a0:98:39:79:a1:3a:52:fc:db:de:61:3e:d0: d2:c3:45:a3:57:91:a4:c4:85:81:bc:9e:28:2c:57:1f:b0:a3: 61:22:af:a6:5c:86:12:69:89:7b:13:b9:88:3e:d5:12:11:2f: 67:98:9a:83:24:c3:db:95:11:f4:09:4c:f9:c4:53:d8:91:45: a0:45:9f:71:90:60:dc:0a:05:f1:f7:c9:06:df:30:df:1d:62: bf:d3:ea:43:c3:01:f9:f1:ff:fd:9c:a4:f8:9a:b0:3b:a9:a3: 4d:58:82:b3:98:55:fd:5c:57:50:04:db:08:e8:98:1f:a6:7c: 6c:bc:f8:80:da:64:e9:0e:a0:cd:f9:48:2a:b0:53:ea:52:fd: f6:e2:90:a2:23:69:9b:af:47:bd:39:ea:2d:a6:80:a7:c3:c7: 4c:d4:36:77:9a:87:85:76:87:74:5f:b8:7d:c3:26:df:3f:da: f2:2d:ff:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDIyIJzkYtlzNhYLjJ61m9a01xfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAwMjIwWhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzBmN2VmZDE4OTVhNDhiZTllMDQ0ZGYxMWZkNGYzNDgz MTVkNTAwY2ZkNjc2NjRhNzgxM2EwZTcyMjEyZjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy8v9nHUU/m/tG3NmA2SCFpNDdEvOvAoissjipxIkWWySt FrijFOIFZlov+uSOTmpt7pOKf9r6A67CFm2NWDG5l/M8dzkCDvv9J7AFce3jQQOy C3Gak+hKXpo8FNqXypRqHhJqnoROnYskCl69tMntmvavMuR6xsBLk1K0QYI1m/T+ zLPqBpeH+QRc5gleX06BFVYpEBEKQDd0KK393oS0BCVTkT//KHQXxXsPQs0scNSO Zjw5zjp0+94ckUGLi6A/H4uqG89VwFoSwReSA3i+CsksPh6zfVAEIZ92qVvQWpUH HffywypuCVUOJgj4+LDuzlEoAWJEiytigndS8NEhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrRwxDGZ8tu7l4rM7+eAeMVO/IIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NDVhZGViLTQ5OGQtNGRkOS1hMGQ5LTA3MGY1NzU3YzhmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCFTANBgkqhkiG9w0BAQsFAAOCAQEAG5HBAVMJf/iU1hhwA+6xkdU6x9zT qBlgDeBPOX+PBn/55BorgCfnVF7zANAFNmxrbeMGWV3FEbv8G8uRsYxzvcNBL6I0 LFHkm5IDG8egmDl5oTpS/NveYT7Q0sNFo1eRpMSFgbyeKCxXH7CjYSKvplyGEmmJ exO5iD7VEhEvZ5iagyTD25UR9AlM+cRT2JFFoEWfcZBg3AoF8ffJBt8w3x1iv9Pq Q8MB+fH//Zyk+JqwO6mjTViCs5hV/VxXUATbCOiYH6Z8bLz4gNpk6Q6gzflIKrBT 6lL99uKQoiNpm69HvTnqLaaAp8PHTNQ2d5qHhXaHdF+4fcMm3z/a8i3/9g== -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:00 2025 by rpki-client