$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa File: 0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa (raw, json) Hash identifier: KAPSLgkm0J9zRtTYszDtOMkSuwHipid8nnmBVu4XD/E= Subject key identifier: FE:A1:21:32:F6:87:52:9C:70:4D:FA:76:D2:2A:A7:0E:86:2D:B9:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 234924DF47A50F3DCA399AFDE48325BBBF9DF591 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa Signing time: Mon 03 Mar 2025 22:30:20 +0000 ROA not before: Mon 03 Mar 2025 22:30:20 +0000 ROA not after: Mon 07 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 92.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:49:24:df:47:a5:0f:3d:ca:39:9a:fd:e4:83:25:bb:bf:9d:f5:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 3 22:30:20 2025 GMT Not After : Apr 7 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a1:16:a8:3a:50:e3:d0:07:6d:0f:2a:d8:a5: 8c:cc:0c:d0:84:58:0b:eb:db:cc:c6:57:97:26:63: d6:43:f3:02:64:5b:b8:89:06:d6:f2:f3:15:35:7b: 3a:fe:4b:16:58:33:2b:7d:d3:47:c5:48:64:ce:eb: cc:d1:a8:7b:af:b0:63:33:77:26:00:12:27:9e:dc: be:bb:f1:55:94:b7:b9:85:3b:91:af:9f:7b:fc:b2: fd:3b:0b:e1:8e:6e:29:18:f3:c5:4c:c2:be:45:28: 2d:4f:de:41:61:db:17:57:ad:1b:e1:60:db:91:13: 21:72:4b:28:46:cf:ec:b5:d5:6c:26:43:02:ee:55: 23:2e:1f:7b:97:d6:d8:7f:02:47:b3:f4:95:2c:6c: 62:ba:c9:78:55:f2:f5:1c:10:f9:ba:aa:c9:38:a4: 59:bf:e8:f8:5d:05:9b:cf:77:c6:ce:35:09:ed:01: 4f:e1:ad:1f:e6:a7:65:30:f5:f6:c6:92:ca:d7:26: fe:09:1b:b2:5f:05:ad:ac:7c:86:a0:7e:a9:e1:24: 79:f4:13:25:8c:8e:25:87:d8:f2:ed:05:9a:9d:6a: ed:36:3f:03:e5:68:ac:47:26:87:3c:01:fa:55:29: a3:b3:60:56:f1:0a:6c:72:b5:5c:f7:6f:a4:26:08: 86:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A1:21:32:F6:87:52:9C:70:4D:FA:76:D2:2A:A7:0E:86:2D:B9:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption b0:8e:06:f2:43:76:d6:15:a8:fa:c8:65:01:a7:21:e8:d6:84: 3d:52:c4:2a:68:4b:f1:08:95:7c:d7:4b:f4:0f:e7:26:3d:3c: e6:5a:f1:22:cc:ce:e0:96:c3:79:d5:aa:17:bd:10:e8:a7:05: a8:cd:3a:17:36:86:e2:52:c5:5d:a8:4c:d1:1e:c9:3c:0e:20: d6:e9:ec:de:d2:e3:21:ab:07:60:44:1a:e8:1b:b0:cf:12:dd: 04:2c:aa:ff:95:e2:97:11:71:ed:8f:4c:16:2a:86:05:df:16: 05:37:6d:de:e0:a0:38:1b:7f:82:ca:87:c6:66:ec:b8:63:50: 35:d6:79:33:33:aa:c7:57:5d:b2:51:c0:ac:86:b5:41:d4:e7: 7a:ef:c3:9f:7e:1f:ec:c7:6b:f0:9e:c0:db:f7:69:58:ae:f3: 26:22:07:7d:02:04:93:b9:e4:f4:0f:04:ce:90:eb:4c:f1:70: aa:42:a7:25:c0:40:fa:86:d5:65:da:12:2d:4f:41:64:b2:50: e3:73:bc:5c:68:60:d5:ab:22:34:25:76:57:97:72:69:56:8e: 03:e1:79:08:f8:fe:ab:ab:a9:b1:f2:e4:05:8a:db:50:c1:9e: ad:f6:99:11:9b:b6:ef:27:ac:22:22:76:65:91:ff:d0:6d:49: b8:2a:66:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI0kk30elDz3KOZr95IMlu7+d9ZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzAzMjIzMDIwWhcNMjUwNDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmY4OTA0YjQyZjM3NTkxNGI4YjhmZmE4NDBiYTg1YWU4 Mjg4ODAyZWY3NTI2OWRkMTk3ZTQyMmQ3NjJjNGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmoRaoOlDj0AdtDyrYpYzMDNCEWAvr28zGV5cmY9ZD8wJk W7iJBtby8xU1ezr+SxZYMyt900fFSGTO68zRqHuvsGMzdyYAEiee3L678VWUt7mF O5Gvn3v8sv07C+GObikY88VMwr5FKC1P3kFh2xdXrRvhYNuREyFySyhGz+y11Wwm QwLuVSMuH3uX1th/Akez9JUsbGK6yXhV8vUcEPm6qsk4pFm/6PhdBZvPd8bONQnt AU/hrR/mp2Uw9fbGksrXJv4JG7JfBa2sfIagfqnhJHn0EyWMjiWH2PLtBZqdau02 PwPlaKxHJoc8AfpVKaOzYFbxCmxytVz3b6QmCIYtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/qEhMvaHUpxwTfp20iqnDoYtuXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxMTRhODk2LTk3MjgtNDZhMC1hOWYyLWE2ZmRmMWM2ZmI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdcyYAwDQYJKoZIhvcNAQELBQADggEBALCOBvJDdtYVqPrIZQGnIejWhD1S xCpoS/EIlXzXS/QP5yY9POZa8SLMzuCWw3nVqhe9EOinBajNOhc2huJSxV2oTNEe yTwOINbp7N7S4yGrB2BEGugbsM8S3QQsqv+V4pcRce2PTBYqhgXfFgU3bd7goDgb f4LKh8Zm7LhjUDXWeTMzqsdXXbJRwKyGtUHU53rvw59+H+zHa/CewNv3aViu8yYi B30CBJO55PQPBM6Q60zxcKpCpyXAQPqG1WXaEi1PQWSyUONzvFxoYNWrIjQldleX cmlWjgPheQj4/qurqbHy5AWK21DBnq32mRGbtu8nrCIidmWR/9BtSbgqZko= -----END CERTIFICATE-----Generated at Thu Mar 13 23:45:27 2025 by rpki-client