$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa File: eeb8335c-6007-42c5-94bf-b06a36e147c9.roa (raw, json) Hash identifier: 0LSZB3A2/8JSalGMEf8UYHW065XjX3oKSHqvhDiR7xs= Subject key identifier: 08:77:9F:20:12:01:5A:A6:68:85:09:34:0D:C8:9A:BC:67:70:C2:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E0EAFF133309A2F0DB2F52FA249B0C22814AFB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa Signing time: Wed 26 Mar 2025 00:11:04 +0000 ROA not before: Wed 26 Mar 2025 00:11:04 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.168.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0e:af:f1:33:30:9a:2f:0d:b2:f5:2f:a2:49:b0:c2:28:14:af:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 26 00:11:04 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:08:9c:3b:12:c6:3f:2b:65:bc:34:52:ee: 9a:c7:44:17:43:d2:f5:f3:d6:10:ab:ad:ff:a4:e5: 71:92:a5:64:59:8d:4d:7b:91:5b:99:bd:c2:df:5e: 3e:7e:02:d3:75:05:28:92:4f:84:e1:a2:01:e0:7d: 8c:de:17:f4:ff:4f:e7:aa:cb:fc:b2:1a:7f:8c:4d: 08:c9:cd:c0:4f:b4:2f:ce:75:95:a2:71:51:51:f8: d2:51:25:11:67:7e:6b:b3:ee:e5:c5:76:bc:c8:ab: 17:78:0b:38:bd:f6:98:f3:b5:90:a5:af:32:62:28: 26:ed:02:6d:c4:2d:36:9e:a6:47:e6:c3:88:b6:5d: c2:70:46:10:a3:03:f7:e0:a5:79:9b:2d:34:89:d5: 47:a6:24:00:fe:3c:cc:c9:eb:90:21:bf:04:e0:9c: ac:11:06:22:49:fc:7d:6a:2b:04:f9:75:08:6f:b6: 86:a0:a8:ed:48:09:23:3b:3d:35:90:e5:56:83:33: 50:9a:a1:39:fb:05:cb:b8:01:80:60:b7:cd:6a:1b: 95:01:ee:5a:a8:65:c7:0f:ce:6c:a5:d2:4d:4f:6a: 49:fe:0f:f3:4e:04:33:1f:1f:30:99:ca:06:88:7a: 5c:9a:92:c5:1f:b8:d6:3e:d8:3c:06:a6:e7:04:4c: f0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:77:9F:20:12:01:5A:A6:68:85:09:34:0D:C8:9A:BC:67:70:C2:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.168.0.0/15 Signature Algorithm: sha256WithRSAEncryption a3:09:c2:57:cc:38:4e:63:a9:63:39:05:13:14:79:25:8f:a5: d1:46:1c:fd:df:ba:02:eb:61:81:00:f9:4b:da:82:d7:97:1f: e0:e9:66:78:07:64:e4:d0:6d:2e:29:61:47:b4:76:f8:b5:48: e4:c5:91:d2:f3:d1:0c:af:f9:7c:5e:01:7b:91:d0:e4:0f:f7: 81:4c:fc:ec:52:72:46:eb:54:00:39:98:9f:80:27:1e:bc:a0: c3:02:2c:a9:f4:bb:b1:72:fe:df:fa:c5:33:13:00:ab:61:3f: c5:29:71:ee:e6:a3:f3:b9:01:cb:24:c8:91:46:ba:ba:32:46: 84:a2:97:97:f3:0f:38:99:f5:77:6e:41:f7:25:82:27:09:4b: 74:f8:ca:9b:47:60:2f:f2:f9:1f:1a:3b:72:b8:c8:7f:9b:cf: 17:33:78:5b:6d:38:3d:1d:2e:c1:3f:6a:86:f3:e7:c5:03:f4: 39:b1:6d:bf:9c:08:31:df:13:dc:ad:86:a3:64:63:03:cd:5b: 0c:ee:e1:c0:bb:88:eb:a1:30:c7:37:85:8e:a3:86:22:9a:95: 71:32:ea:5f:c5:f6:3d:59:d6:24:b2:38:ed:5b:0f:f1:4c:b7: 9c:cf:40:2f:00:9d:9d:29:29:7c:ef:e3:80:4e:fc:09:6b:0a: ef:bc:19:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPg6v8TMwmi8NsvUvokmwwigUr7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI2MDAxMTA0WhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjczMmU1YmVhMDE3Zjk4YzM1NjRkZjU3MGQ3YmRjZDkx NDcyYjNlYWVkNjcyZDVmMWNkZmM3ZTJmMzNlZDg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTugicOxLGPytlvDRS7prHRBdD0vXz1hCrrf+k5XGSpWRZ jU17kVuZvcLfXj5+AtN1BSiST4ThogHgfYzeF/T/T+eqy/yyGn+MTQjJzcBPtC/O dZWicVFR+NJRJRFnfmuz7uXFdrzIqxd4Czi99pjztZClrzJiKCbtAm3ELTaepkfm w4i2XcJwRhCjA/fgpXmbLTSJ1UemJAD+PMzJ65AhvwTgnKwRBiJJ/H1qKwT5dQhv toagqO1ICSM7PTWQ5VaDM1CaoTn7Bcu4AYBgt81qG5UB7lqoZccPzmyl0k1Pakn+ D/NOBDMfHzCZygaIelyaksUfuNY+2DwGpucETPCpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCHefIBIBWqZohQk0DciavGdwwiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlYjgzMzVjLTYwMDctNDJjNS05NGJmLWIwNmEzNmUxNDdjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQqDANBgkqhkiG9w0BAQsFAAOCAQEAownCV8w4TmOpYzkFExR5JY+l0UYc /d+6AuthgQD5S9qC15cf4OlmeAdk5NBtLilhR7R2+LVI5MWR0vPRDK/5fF4Be5HQ 5A/3gUz87FJyRutUADmYn4AnHrygwwIsqfS7sXL+3/rFMxMAq2E/xSlx7uaj87kB yyTIkUa6ujJGhKKXl/MPOJn1d25B9yWCJwlLdPjKm0dgL/L5Hxo7crjIf5vPFzN4 W204PR0uwT9qhvPnxQP0ObFtv5wIMd8T3K2Go2RjA81bDO7hwLuI66EwxzeFjqOG IpqVcTLqX8X2PVnWJLI47VsP8Uy3nM9ALwCdnSkpfO/jgE78CWsK77wZGw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:27 2025 by rpki-client