$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5b65366-8de7-4756-a36f-b27f4f98edb0.roa File: d5b65366-8de7-4756-a36f-b27f4f98edb0.roa (raw, json) Hash identifier: yXJgHoCbyHYoqyqdaVDpE4SZHocro3ggRode860sVj8= Subject key identifier: 90:6E:65:0A:DE:17:E6:04:E9:7E:03:04:2E:52:56:56:62:C8:72:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B5E1E07D4FC45304492F30B7AEB0342B385E43E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5b65366-8de7-4756-a36f-b27f4f98edb0.roa Signing time: Mon 31 Mar 2025 15:11:03 +0000 ROA not before: Mon 31 Mar 2025 15:11:03 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:5e:1e:07:d4:fc:45:30:44:92:f3:0b:7a:eb:03:42:b3:85:e4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:11:03 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3d:21:bd:22:3b:0a:97:20:81:ba:74:97:95: d6:67:f3:6c:56:8b:cf:62:93:4b:7e:10:43:a5:a6: c9:64:82:a1:cf:06:ed:f6:c3:68:89:dc:d3:cd:b4: 89:56:dd:8d:41:4b:38:7a:3d:fd:b6:15:76:30:5f: 97:ee:df:af:c4:c6:33:06:4a:49:84:33:fa:97:6e: fb:00:53:0c:3a:39:1f:19:96:84:2a:43:0f:e9:cb: 24:e0:c1:6c:66:e3:a7:32:05:ae:4f:f5:64:da:ec: 59:94:ee:39:c1:f5:42:99:8d:7b:b4:c8:74:91:9f: 8d:55:5b:31:c1:70:a3:96:27:b9:c8:27:26:cd:f0: d2:e3:d0:91:54:82:0b:77:ad:3f:a8:da:38:37:4f: 3b:45:73:db:c5:97:22:ea:ea:45:0d:cf:b9:36:bd: 59:36:8d:2a:b6:5b:3e:bf:31:4a:28:2c:73:8f:0c: 6a:9c:d0:af:d7:95:ca:7b:71:14:bf:61:4f:98:97: 4a:1b:ad:cc:f3:62:3c:1d:9a:99:80:02:62:3b:96: d1:14:c9:d4:8a:fe:11:4c:f7:32:04:44:b8:a4:90: 02:76:f0:7f:6e:96:a8:71:ce:12:67:ec:ff:bb:db: fd:42:6f:48:e5:cd:59:0a:ed:ff:e5:08:a0:ba:a9: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6E:65:0A:DE:17:E6:04:E9:7E:03:04:2E:52:56:56:62:C8:72:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5b65366-8de7-4756-a36f-b27f4f98edb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.224.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:a4:be:08:ff:d4:21:cd:fb:d5:d6:cf:82:05:4e:8e:b7:71: af:6e:2f:c9:61:81:05:a4:34:69:23:36:c2:e5:2d:28:25:fd: 91:ee:8c:1b:68:1b:7b:a0:d9:e2:34:b9:aa:96:e3:e5:c2:d7: 46:50:52:1c:5a:99:13:e1:99:51:39:ca:e1:d4:02:53:6f:d5: c3:c8:ab:96:54:8c:ca:37:bc:65:bf:ca:8b:93:60:28:95:4c: 8f:6f:00:9a:e7:3e:68:ea:6c:cb:19:38:39:b3:9e:70:fb:a9: 3e:85:9f:16:fe:36:82:e7:38:72:96:3f:87:d3:c6:a3:00:4e: 66:d2:21:c7:33:77:96:69:28:01:31:51:f2:3c:4c:8a:97:65: a6:fa:59:8d:56:10:c9:7c:bb:a8:32:ef:fa:cc:50:85:c2:21: dc:fd:9e:ee:ef:49:af:e1:1d:3d:7b:d9:c6:ec:97:1a:4a:36: 0e:06:a2:95:8e:26:62:59:3e:f7:34:98:35:25:b0:21:c9:63: 7f:30:a8:13:9f:c1:55:ea:b4:0b:03:4b:c1:68:d0:46:88:66: 4a:84:e8:d6:e0:ab:ef:f0:bf:52:18:10:bb:f6:08:f7:c1:de: be:d2:d6:39:48:87:bd:d0:d7:3f:b6:37:a4:f2:e0:c2:18:ad: c1:59:ac:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO14eB9T8RTBEkvMLeusDQrOF5D4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUxMTAzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWY2MzJkM2E1YmRlMGZlOWZjYTQxODllNjk1MGIzNGE0 ZGZmMmE2MDYwMWI1YWE4ZTIwYTdmMGFkNTJiMmI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPPSG9IjsKlyCBunSXldZn82xWi89ik0t+EEOlpslkgqHP Bu32w2iJ3NPNtIlW3Y1BSzh6Pf22FXYwX5fu36/ExjMGSkmEM/qXbvsAUww6OR8Z loQqQw/pyyTgwWxm46cyBa5P9WTa7FmU7jnB9UKZjXu0yHSRn41VWzHBcKOWJ7nI JybN8NLj0JFUggt3rT+o2jg3TztFc9vFlyLq6kUNz7k2vVk2jSq2Wz6/MUooLHOP DGqc0K/Xlcp7cRS/YU+Yl0obrczzYjwdmpmAAmI7ltEUydSK/hFM9zIERLikkAJ2 8H9ulqhxzhJn7P+72/1Cb0jlzVkK7f/lCKC6qdotAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkG5lCt4X5gTpfgMELlJWVmLIcjswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1YjY1MzY2LThkZTctNDc1Ni1hMzZmLWIyN2Y0Zjk4ZWRiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYtuAwDQYJKoZIhvcNAQELBQADggEBAA+kvgj/1CHN+9XWz4IFTo63ca9u L8lhgQWkNGkjNsLlLSgl/ZHujBtoG3ug2eI0uaqW4+XC10ZQUhxamRPhmVE5yuHU AlNv1cPIq5ZUjMo3vGW/youTYCiVTI9vAJrnPmjqbMsZODmznnD7qT6Fnxb+NoLn OHKWP4fTxqMATmbSIcczd5ZpKAExUfI8TIqXZab6WY1WEMl8u6gy7/rMUIXCIdz9 nu7vSa/hHT172cbslxpKNg4GopWOJmJZPvc0mDUlsCHJY38wqBOfwVXqtAsDS8Fo 0EaIZkqE6Nbgq+/wv1IYELv2CPfB3r7S1jlIh73Q1z+2N6Ty4MIYrcFZrKE= -----END CERTIFICATE-----Generated at Sat Apr 5 12:23:38 2025 by rpki-client