$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1c2b8be-ce70-4e43-89bb-dacaa6ad5228.roa File: d1c2b8be-ce70-4e43-89bb-dacaa6ad5228.roa (raw, json) Hash identifier: WhjBwHBM4d91b6Rx9VfHS0vg+vqOGvPKuvS+oMVuZME= Subject key identifier: BA:98:FC:19:BB:60:67:D6:2A:9D:3E:09:CD:D3:EA:BA:5C:55:AC:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BECA1434440DB7693DD38EB7751852B13CC4E16 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1c2b8be-ce70-4e43-89bb-dacaa6ad5228.roa Signing time: Sat 29 Mar 2025 00:41:07 +0000 ROA not before: Sat 29 Mar 2025 00:41:07 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.57.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ec:a1:43:44:40:db:76:93:dd:38:eb:77:51:85:2b:13:cc:4e:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:41:07 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:fb:27:84:f1:d9:34:42:52:79:55:29:4e:ef: 24:18:22:af:35:a8:33:7e:c9:7b:11:85:d3:70:80: 87:b8:0c:0c:ce:48:aa:d5:c3:10:fc:f3:ea:88:1c: c8:24:44:67:ed:83:25:b1:9c:6a:c5:17:95:bb:a8: 67:ac:63:4a:a1:97:bd:85:f0:71:b4:96:f0:4c:2c: ef:d4:18:86:f3:ac:21:3d:1e:ab:97:19:52:e3:68: 83:03:f1:4b:d4:2d:ee:3e:88:4f:e3:96:f6:05:b6: f1:9f:d1:c3:37:79:78:d7:d5:55:ad:85:6d:4b:8c: ac:59:fc:ec:42:30:28:52:1f:ef:46:b9:c4:f1:17: 06:ef:a1:dd:4a:5e:af:b6:b4:46:7b:b3:b8:c4:aa: 5f:af:f3:87:23:1b:78:18:44:b3:e3:a9:53:94:14: b2:fe:1a:d3:35:00:05:e7:af:75:fe:d5:4d:f8:f8: 19:f6:9d:7b:41:cb:58:8b:7b:4f:6d:fc:b8:4e:e5: db:35:24:59:cd:78:37:27:33:41:f6:a4:84:09:8d: b4:29:ca:05:fd:48:69:fa:b1:1b:4d:15:b1:c4:9e: 89:fd:d3:0e:c3:65:c7:7f:a4:1b:a0:9e:b6:31:d1: 99:0a:e4:fb:da:60:63:26:f5:8c:d6:c5:59:9b:4a: 5d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:98:FC:19:BB:60:67:D6:2A:9D:3E:09:CD:D3:EA:BA:5C:55:AC:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1c2b8be-ce70-4e43-89bb-dacaa6ad5228.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.57.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9e:31:55:92:08:63:69:e0:60:a3:6a:97:11:8f:73:1b:a4:86: d8:1e:53:e0:f2:fe:9c:65:d1:12:1d:b1:5f:43:c1:47:14:fc: 64:4a:4f:f4:22:3f:bf:6f:f3:43:e1:05:3e:76:bf:b7:78:55: 3d:82:b1:fc:69:3c:1d:34:8b:00:8f:16:74:45:5f:55:50:c9: ab:ca:70:ce:ab:da:95:6f:76:d5:6b:0a:93:b8:9c:95:bd:58: 94:15:d8:8e:00:8d:20:f8:c1:e4:77:9b:83:52:34:55:d8:93: 53:9c:61:36:f9:17:d5:6d:2c:05:9a:13:e4:0b:57:cf:ed:3a: cf:dc:7f:39:53:e7:33:ff:6a:ce:09:95:01:cf:14:9c:9e:62: 55:23:05:36:f4:4c:de:7f:d4:e7:a2:19:f4:80:af:04:f3:35: 0a:78:d1:f9:58:a8:9b:5d:b3:ef:7a:90:dd:89:11:d5:ee:ae: 0a:71:1c:84:83:ae:98:d4:d2:9b:73:2c:96:70:ec:d5:6a:f6: b5:c6:51:7c:27:65:a8:27:10:29:88:78:3c:c4:f3:1b:84:e3: 70:84:0a:2b:90:c6:24:d8:e6:78:fa:23:50:23:42:f7:9b:9f: 10:b4:cf:40:71:14:5c:f1:90:36:c6:83:d6:17:fc:87:d3:0e: 65:57:82:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS+yhQ0RA23aT3Tjrd1GFKxPMThYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA0MTA3WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTk0MTk0ZmZlZTRjOTUzNjYwYmU3NDI1MzM1ZThkYzVh OWEwODU4YjhiNjU5Y2ViMTRkMjgyNDhjZTE5NzQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6+yeE8dk0QlJ5VSlO7yQYIq81qDN+yXsRhdNwgIe4DAzO SKrVwxD88+qIHMgkRGftgyWxnGrFF5W7qGesY0qhl72F8HG0lvBMLO/UGIbzrCE9 HquXGVLjaIMD8UvULe4+iE/jlvYFtvGf0cM3eXjX1VWthW1LjKxZ/OxCMChSH+9G ucTxFwbvod1KXq+2tEZ7s7jEql+v84cjG3gYRLPjqVOUFLL+GtM1AAXnr3X+1U34 +Bn2nXtBy1iLe09t/LhO5ds1JFnNeDcnM0H2pIQJjbQpygX9SGn6sRtNFbHEnon9 0w7DZcd/pBugnrYx0ZkK5PvaYGMm9YzWxVmbSl0TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUupj8GbtgZ9YqnT4JzdPqulxVrCgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxYzJiOGJlLWNlNzAtNGU0My04OWJiLWRhY2FhNmFkNTIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOSAwDQYJKoZIhvcNAQELBQADggEBAJ4xVZIIY2ngYKNqlxGPcxukhtge U+Dy/pxl0RIdsV9DwUcU/GRKT/QiP79v80PhBT52v7d4VT2CsfxpPB00iwCPFnRF X1VQyavKcM6r2pVvdtVrCpO4nJW9WJQV2I4AjSD4weR3m4NSNFXYk1OcYTb5F9Vt LAWaE+QLV8/tOs/cfzlT5zP/as4JlQHPFJyeYlUjBTb0TN5/1OeiGfSArwTzNQp4 0flYqJtds+96kN2JEdXurgpxHISDrpjU0ptzLJZw7NVq9rXGUXwnZagnECmIeDzE 8xuE43CECiuQxiTY5nj6I1AjQvebnxC0z0BxFFzxkDbGg9YX/IfTDmVXghc= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:28 2025 by rpki-client