$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2ab338b-49ab-4221-a66e-0f528ce31066.roa File: e2ab338b-49ab-4221-a66e-0f528ce31066.roa (raw, json) Hash identifier: fV9v8It0HxdmomdIuORQrfCW6BDKxD/dUFfE0xoiZ14= Subject key identifier: 5D:8E:42:07:B5:AD:8E:D1:0E:5E:34:16:64:93:B9:42:85:0A:7E:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C70C9CA2B869A0A20BF18B65AE728839A3C251B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2ab338b-49ab-4221-a66e-0f528ce31066.roa Signing time: Mon 31 Mar 2025 15:31:15 +0000 ROA not before: Mon 31 Mar 2025 15:31:15 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.172.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:70:c9:ca:2b:86:9a:0a:20:bf:18:b6:5a:e7:28:83:9a:3c:25:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:31:15 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:bb:ce:47:fd:43:43:8e:fc:e2:73:43:d0:b3: 66:fb:d0:60:fa:17:71:20:a6:8b:14:a6:95:9b:20: 68:e7:1a:08:c2:3a:46:d8:61:de:b8:52:c1:9e:2c: f2:21:22:9b:a7:b9:44:a3:07:5e:3e:cb:38:dc:3e: 79:79:f3:e6:67:75:3a:c1:60:93:ca:47:15:72:ca: 80:6c:e0:5d:6a:f3:09:84:bf:99:b2:5b:f3:f6:01: 95:23:76:ff:92:a2:fd:70:e3:7a:c5:fd:6e:95:68: dd:e1:6e:fd:63:66:f4:f7:5f:30:c6:aa:a5:8f:12: db:b1:70:b5:75:ac:b0:3d:4b:91:9d:a3:96:1b:93: 44:92:6d:16:f6:37:d6:ad:6b:1d:4c:cd:98:55:10: e1:22:6b:92:0d:b9:0e:10:2c:32:4a:1a:b6:a8:48: d3:af:70:72:1b:ba:96:22:55:03:82:9f:43:ac:32: af:e1:f6:7b:d0:83:2f:ec:24:e5:1e:34:01:db:f8: 70:35:ab:3d:43:f1:36:a8:07:5c:86:7f:3b:67:ef: 0c:bf:32:df:53:1b:c9:75:ab:ec:49:b3:12:32:4e: 03:cf:5e:ba:c5:e3:4d:ee:c0:d3:c2:6a:ea:41:0e: ad:d8:08:bb:44:75:f3:b4:f5:27:f1:27:a8:e6:c1: 90:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8E:42:07:B5:AD:8E:D1:0E:5E:34:16:64:93:B9:42:85:0A:7E:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2ab338b-49ab-4221-a66e-0f528ce31066.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption b2:b4:15:5f:bb:64:ba:bf:c6:f1:38:8e:58:73:33:6e:2e:72: 99:25:cd:65:69:2a:d4:66:73:6d:da:29:ec:e7:05:13:b2:dd: 1c:3a:1d:74:7e:3c:f7:d8:21:d8:b5:1d:fe:51:d1:c1:af:6f: d0:46:ae:8a:83:61:bb:44:a2:70:64:05:fa:47:e8:b3:b3:ad: 97:0f:a5:0a:78:83:39:fb:49:aa:55:dd:19:b1:d6:70:14:64: 49:16:cd:3b:40:8c:01:31:f8:e3:4c:16:3a:e2:61:86:6f:1f: 82:b4:1f:ec:fa:c5:47:44:d4:79:43:13:5f:b0:99:34:95:7a: 12:ba:1b:15:b1:c3:2a:6a:31:97:d7:94:c7:d5:5c:30:5e:e3: ee:f6:8d:86:7d:13:7a:9d:4a:b5:57:cd:36:6d:e8:bd:16:e2: 04:e0:60:c3:31:d8:48:b9:00:29:7f:5a:c8:64:83:bd:9f:a4: ef:cd:08:21:42:1b:d7:f5:e3:8c:45:96:60:83:df:3f:8a:c6: 21:ca:3c:0c:9b:5a:e3:88:db:85:24:b9:66:cc:65:af:4f:82: 2b:6b:91:c0:07:b0:73:8d:10:9d:d0:bc:16:d7:e1:c9:8c:c9: 57:86:ec:ca:bc:e1:e5:6f:78:c6:0f:ba:a7:7d:31:56:db:fc: 72:32:b0:47 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfHDJyiuGmgogvxi2Wucog5o8JRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMTE1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmY5NDg5OWJiNDM0MjczNTg0YWY0N2FmZWVhMzQ2Yzk4 MGFiYTYwNDc5YzU1Y2ZiYTU0NTA1OGNkMjc2NDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKu85H/UNDjvzic0PQs2b70GD6F3EgposUppWbIGjnGgjC OkbYYd64UsGeLPIhIpunuUSjB14+yzjcPnl58+ZndTrBYJPKRxVyyoBs4F1q8wmE v5myW/P2AZUjdv+Sov1w43rF/W6VaN3hbv1jZvT3XzDGqqWPEtuxcLV1rLA9S5Gd o5Ybk0SSbRb2N9atax1MzZhVEOEia5INuQ4QLDJKGraoSNOvcHIbupYiVQOCn0Os Mq/h9nvQgy/sJOUeNAHb+HA1qz1D8TaoB1yGfztn7wy/Mt9TG8l1q+xJsxIyTgPP XrrF403uwNPCaupBDq3YCLtEdfO09SfxJ6jmwZDtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXY5CB7WtjtEOXjQWZJO5QoUKfnAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyYWIzMzhiLTQ5YWItNDIyMS1hNjZlLTBmNTI4Y2UzMTA2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIorDANBgkqhkiG9w0BAQsFAAOCAQEAsrQVX7tkur/G8TiOWHMzbi5ymSXN ZWkq1GZzbdop7OcFE7LdHDoddH4899gh2LUd/lHRwa9v0EauioNhu0SicGQF+kfo s7Otlw+lCniDOftJqlXdGbHWcBRkSRbNO0CMATH440wWOuJhhm8fgrQf7PrFR0TU eUMTX7CZNJV6ErobFbHDKmoxl9eUx9VcMF7j7vaNhn0Tep1KtVfNNm3ovRbiBOBg wzHYSLkAKX9ayGSDvZ+k780IIUIb1/XjjEWWYIPfP4rGIco8DJta44jbhSS5Zsxl r0+CK2uRwAewc40QndC8FtfhyYzJV4bsyrzh5W94xg+6p30xVtv8cjKwRw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:55 2025 by rpki-client