$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbc8700e-e39c-46ed-b212-3e8897a5b36d.roa File: dbc8700e-e39c-46ed-b212-3e8897a5b36d.roa (raw, json) Hash identifier: TCKotZ/idRWMVJkoTJ9wo3BBFE4xA2VD5aTVkoimpTc= Subject key identifier: B8:D5:1A:C0:F8:00:8C:0E:1F:B9:3A:EF:DA:3A:5D:AE:BC:7A:C2:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47CA1002E14035D119259D4EC48F911838BDEC8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbc8700e-e39c-46ed-b212-3e8897a5b36d.roa Signing time: Fri 14 Mar 2025 00:10:11 +0000 ROA not before: Fri 14 Mar 2025 00:10:11 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.223.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ca:10:02:e1:40:35:d1:19:25:9d:4e:c4:8f:91:18:38:bd:ec:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:10:11 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:60:94:1f:9f:a6:72:98:30:13:00:07:6d: c7:8d:09:ef:13:9b:04:b7:be:a8:ae:67:4e:2e:0c: 26:16:6a:93:b7:3b:a5:12:10:86:bc:97:ef:f6:03: 40:69:ae:77:f2:96:50:d9:5f:1a:4b:9d:5f:06:ef: fb:1f:64:89:19:8d:06:dc:ac:86:94:26:11:d4:8c: c5:0b:f8:50:8e:88:43:ea:3c:2e:0f:47:10:35:fe: 86:82:95:f2:48:98:0c:72:e9:2f:5e:b4:4f:ac:b7: d6:c4:a4:8c:aa:f2:c8:a4:db:cc:57:67:bd:12:35: d7:b1:1f:1a:3a:f3:b7:dd:6e:eb:f3:22:2f:db:37: f9:f4:1f:59:0f:30:31:d2:1f:6f:3d:b2:f1:21:fd: d2:63:10:86:ae:00:30:a3:79:a7:23:a3:15:79:ea: b2:19:23:1d:1f:32:3d:e7:ab:bf:89:18:1f:70:a1: d9:df:ca:41:7c:e7:25:20:f7:7d:b6:1a:3b:f3:6c: 26:70:b8:90:e9:c9:b1:c1:22:64:43:b6:60:28:12: 68:2d:22:2d:5f:7f:07:80:53:8b:d0:5a:57:c0:a7: 43:1e:6f:7b:0c:7a:ee:0b:8c:54:88:e9:85:33:49: a5:75:2e:c6:af:81:47:65:ec:d0:45:83:68:02:7f: c3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D5:1A:C0:F8:00:8C:0E:1F:B9:3A:EF:DA:3A:5D:AE:BC:7A:C2:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbc8700e-e39c-46ed-b212-3e8897a5b36d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.223.80.0/20 Signature Algorithm: sha256WithRSAEncryption 17:2d:84:b9:76:04:e1:a0:8c:b2:25:07:a2:1e:56:70:9e:3d: 70:ef:b8:c5:8e:f2:3f:4c:c5:d2:8e:21:d7:17:d1:46:49:da: 89:0a:75:b2:f6:1c:ae:05:e2:37:d4:d1:39:2b:07:3f:93:e4: 9f:56:85:d8:3b:85:fc:14:18:52:cb:7f:dc:f5:ff:ad:00:78: b2:d0:42:bd:e0:c7:4a:7b:3b:ea:87:2d:1b:c7:8d:79:2b:86: 99:53:18:8d:ad:be:37:e1:fc:96:ee:76:aa:19:9e:70:27:63: 7c:a6:84:7c:09:eb:31:b4:91:c2:9b:d4:5b:ac:24:15:cc:59: 92:4b:62:d3:ab:04:a8:ef:72:6e:57:4b:7c:06:6f:77:51:44: 2e:70:fd:7a:37:e0:62:3d:c1:8c:f4:f8:c5:75:7c:37:6f:ab: 67:e5:26:bf:29:f1:88:4f:e4:d7:8d:a7:ec:b6:5a:af:fe:aa: 81:27:b3:48:d8:a6:35:35:a2:c9:a5:d7:3d:be:86:50:eb:25: 31:2f:cf:60:5b:f1:46:1e:0b:3e:11:45:e9:fe:6c:d6:40:7a: b4:1f:c0:db:87:6d:b4:ed:2a:d4:27:9b:5c:5e:d9:51:da:20: a3:3f:a3:d0:98:97:9e:7e:05:83:c4:3b:33:09:d6:69:da:8e: df:58:b8:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR8oQAuFANdEZJZ1OxI+RGDi97IswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDAxMDExWhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjk4ZTVkYzg5N2MxYjU4YjBlNjNjY2U5ZjQzNWRhNDk1 MDFkMzA5NDUyMmZjOGRjMGFlMWJkODNkMzBkNzFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChCWCUH5+mcpgwEwAHbceNCe8TmwS3vqiuZ04uDCYWapO3 O6USEIa8l+/2A0BprnfyllDZXxpLnV8G7/sfZIkZjQbcrIaUJhHUjMUL+FCOiEPq PC4PRxA1/oaClfJImAxy6S9etE+st9bEpIyq8sik28xXZ70SNdexHxo687fdbuvz Ii/bN/n0H1kPMDHSH289svEh/dJjEIauADCjeacjoxV56rIZIx0fMj3nq7+JGB9w odnfykF85yUg9322GjvzbCZwuJDpybHBImRDtmAoEmgtIi1ffweAU4vQWlfAp0Me b3sMeu4LjFSI6YUzSaV1LsavgUdl7NBFg2gCf8PLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuNUawPgAjA4fuTrv2jpdrrx6wnIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiYzg3MDBlLWUzOWMtNDZlZC1iMjEyLTNlODg5N2E1YjM2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATP31AwDQYJKoZIhvcNAQELBQADggEBABcthLl2BOGgjLIlB6IeVnCePXDv uMWO8j9MxdKOIdcX0UZJ2okKdbL2HK4F4jfU0TkrBz+T5J9Whdg7hfwUGFLLf9z1 /60AeLLQQr3gx0p7O+qHLRvHjXkrhplTGI2tvjfh/JbudqoZnnAnY3ymhHwJ6zG0 kcKb1FusJBXMWZJLYtOrBKjvcm5XS3wGb3dRRC5w/Xo34GI9wYz0+MV1fDdvq2fl Jr8p8YhP5NeNp+y2Wq/+qoEns0jYpjU1osml1z2+hlDrJTEvz2Bb8UYeCz4RRen+ bNZAerQfwNuHbbTtKtQnm1xe2VHaIKM/o9CYl55+BYPEOzMJ1mnajt9YuOw= -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:17 2025 by rpki-client