$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa File: eeb1a0db-c6e7-4578-b508-84b15c96b526.roa (raw, json) Hash identifier: +hpE2Zu7llLuGYe8eUrjMJL14rv8beLIg1swHK6Ry4o= Subject key identifier: 9F:AB:F6:E3:E0:AF:03:CC:8F:8D:DC:56:25:E3:BB:52:46:F7:C3:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CFA0CE6ED60734248B56AC070C399F45E54F81F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa Signing time: Tue 18 Mar 2025 00:00:17 +0000 ROA not before: Tue 18 Mar 2025 00:00:17 +0000 ROA not after: Tue 22 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fa:0c:e6:ed:60:73:42:48:b5:6a:c0:70:c3:99:f4:5e:54:f8:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 18 00:00:17 2025 GMT Not After : Apr 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:79:df:2f:0c:2c:14:61:15:50:8f:79:33:1c: 75:a2:61:77:36:6a:82:47:03:e0:34:be:1e:ba:02: 68:5e:10:f6:99:b2:a2:4f:15:97:ce:13:df:9d:0d: c2:b2:b9:7c:d7:a0:d3:d7:59:89:de:09:fd:c2:36: 45:b0:bf:ba:1a:0c:29:6b:db:f3:4e:8f:89:c9:05: d1:24:fd:6d:d8:9d:fd:9e:11:d6:d3:70:b2:da:dc: b4:cd:a5:35:8a:3a:ea:26:07:07:df:1b:cb:26:38: 8f:5b:5e:92:11:6c:74:46:11:6b:33:0b:9e:39:26: 78:97:6f:c5:dd:35:7a:b6:1d:8d:c0:2f:25:ee:12: 70:9d:a3:d0:50:21:5f:3c:3e:cc:6c:24:6d:01:b4: 81:ce:03:59:d8:eb:95:76:8f:6a:61:5d:6d:9b:ad: c8:97:f3:03:19:5d:e3:ee:cb:d0:3a:bf:93:38:0b: 89:0e:c7:ac:4a:06:36:3f:a6:ad:26:67:c8:d2:6a: e5:50:48:44:3f:98:ff:0a:b5:ea:00:1a:9c:88:5d: 48:8b:80:f8:8c:a4:33:20:e0:2f:b9:cd:f5:b7:55: 65:cb:76:28:5b:a2:3e:d5:fc:74:50:fc:b4:ea:eb: 9e:ce:81:1d:ad:6f:7f:4b:4d:d8:ab:b2:9a:6f:3f: f9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:AB:F6:E3:E0:AF:03:CC:8F:8D:DC:56:25:E3:BB:52:46:F7:C3:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.16.0/20 Signature Algorithm: sha256WithRSAEncryption bd:f1:16:1d:24:23:ea:68:b2:d3:90:29:19:97:67:56:4f:08: 3e:d0:75:bd:25:58:16:39:44:79:8c:27:22:4c:4e:c7:95:57: c5:50:e9:dc:92:70:0d:cc:8a:45:f0:82:27:ae:d2:73:83:90: 3b:da:74:a1:20:5d:34:fd:d5:98:c7:7e:3b:25:bb:0c:75:5c: c0:ed:fa:60:90:90:5d:4c:54:84:d4:e1:7b:8a:42:e4:a2:64: 04:03:4e:31:0b:42:52:87:45:f8:db:99:85:52:2d:1c:ac:75: 85:f9:03:a6:ff:de:ac:7b:e7:d5:65:1b:51:f3:ec:cd:af:41: 19:ac:d9:b8:df:3c:02:3a:e5:ed:86:d9:cc:58:72:c0:9b:2b: 4d:23:ea:d8:70:1e:37:af:d4:a5:dd:44:67:95:db:05:26:b0: b9:78:53:47:7e:a6:3d:3f:21:2a:70:04:28:51:47:7c:96:2f: 3d:e0:08:0c:48:6b:10:cc:df:62:fe:b5:0d:a0:45:01:31:c6: e4:18:9a:6c:6c:8b:fd:7d:c2:cd:ea:60:a5:e0:c5:9d:83:68: c9:bf:d7:20:d0:77:f5:f1:cc:05:ef:51:ac:5f:f8:73:cc:e6: 7f:5c:4d:ba:a6:74:9a:00:80:ba:83:d6:17:e4:1b:a6:21:54: a3:ee:73:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULPoM5u1gc0JItWrAcMOZ9F5U+B8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE4MDAwMDE3WhcNMjUwNDIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGVhOTc1YTQxYWRmZDU4YzY1OTJjZGUyNWIzNTljMDk2 MTdiZDAwOTU1Nzc4YzczNWI0Nzk5MzQ1NjFiMjcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjed8vDCwUYRVQj3kzHHWiYXc2aoJHA+A0vh66AmheEPaZ sqJPFZfOE9+dDcKyuXzXoNPXWYneCf3CNkWwv7oaDClr2/NOj4nJBdEk/W3Ynf2e EdbTcLLa3LTNpTWKOuomBwffG8smOI9bXpIRbHRGEWszC545JniXb8XdNXq2HY3A LyXuEnCdo9BQIV88PsxsJG0BtIHOA1nY65V2j2phXW2brciX8wMZXePuy9A6v5M4 C4kOx6xKBjY/pq0mZ8jSauVQSEQ/mP8KteoAGpyIXUiLgPiMpDMg4C+5zfW3VWXL dihboj7V/HRQ/LTq657OgR2tb39LTdirsppvP/kxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn6v24+CvA8yPjdxWJeO7Ukb3w74wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlYjFhMGRiLWM2ZTctNDU3OC1iNTA4LTg0YjE1Yzk2YjUyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQYbhAwDQYJKoZIhvcNAQELBQADggEBAL3xFh0kI+postOQKRmXZ1ZPCD7Q db0lWBY5RHmMJyJMTseVV8VQ6dyScA3MikXwgieu0nODkDvadKEgXTT91ZjHfjsl uwx1XMDt+mCQkF1MVITU4XuKQuSiZAQDTjELQlKHRfjbmYVSLRysdYX5A6b/3qx7 59VlG1Hz7M2vQRms2bjfPAI65e2G2cxYcsCbK00j6thwHjev1KXdRGeV2wUmsLl4 U0d+pj0/ISpwBChRR3yWLz3gCAxIaxDM32L+tQ2gRQExxuQYmmxsi/19ws3qYKXg xZ2DaMm/1yDQd/XxzAXvUaxf+HPM5n9cTbqmdJoAgLqD1hfkG6YhVKPuc3w= -----END CERTIFICATE-----Generated at Sat Apr 5 12:17:18 2025 by rpki-client