$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa File: 0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa (raw, json) Hash identifier: Yz74RIBJXm4aeSy0ECPXXQ4JmjBG/0JXVsJoZwiJGcU= Subject key identifier: DD:E3:2B:D9:9C:BD:46:2D:97:BD:7A:42:04:4C:6C:44:9A:01:6E:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A74DC36C7C52CCDA070B2C87648A4EE23BB8923 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa Signing time: Tue 18 Feb 2025 15:00:52 +0000 ROA not before: Tue 18 Feb 2025 15:00:52 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:74:dc:36:c7:c5:2c:cd:a0:70:b2:c8:76:48:a4:ee:23:bb:89:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:00:52 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:43:d3:72:dd:8b:f0:bc:b7:7e:e2:7e:9c:5b: 9c:1c:b2:83:b4:26:f0:ac:42:91:a5:ea:0f:6c:bb: 9d:de:0d:b5:a6:c1:b0:f7:35:20:51:57:e0:e6:5a: f6:c5:b7:fb:2f:10:38:d2:1d:a4:54:22:bf:f7:61: a5:06:a9:e7:70:84:a9:6c:13:85:d3:76:13:cf:5c: 60:33:55:bf:2e:df:d2:bf:5e:82:1c:fe:2c:66:55: 0a:5f:34:81:60:ea:64:79:46:e8:53:48:de:74:1b: da:df:8f:09:e8:bc:9e:02:cf:50:55:d1:06:b3:ef: fb:ee:a1:d7:8b:b6:f7:43:ed:e6:3f:7e:eb:15:55: 45:8d:7a:f2:7f:5e:4b:de:5d:5a:33:9c:d9:85:58: c8:d3:64:4e:46:80:27:48:60:eb:13:09:fa:d8:92: f3:ea:bb:a2:9d:d4:1d:3e:4b:b9:60:a3:57:a8:05: c7:92:7b:20:ed:4d:d4:59:fe:b2:7d:ea:8e:f0:ed: 8d:9d:31:51:50:6f:bd:97:e2:d6:56:cf:f1:fd:c0: 24:87:d8:de:81:47:9d:88:76:e6:60:c3:dd:f9:7e: bd:b1:8e:75:61:ed:ac:55:b3:c6:df:02:ea:54:5a: d9:e7:47:6d:27:69:54:9b:d6:6d:64:cd:47:8c:ad: b3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E3:2B:D9:9C:BD:46:2D:97:BD:7A:42:04:4C:6C:44:9A:01:6E:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0541c74c-5ba6-4a47-8a0a-55ac8feb33c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.117.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:7a:8e:21:10:03:4f:b7:8e:ef:d2:46:43:54:16:d7:af:7b: f9:09:27:0f:9c:d4:8c:48:56:f5:70:ab:ac:00:a5:e5:d4:fa: ba:9e:b5:ae:ca:78:03:0b:89:8f:e1:4c:d2:97:57:a4:c9:3e: 9e:78:e9:1a:cb:aa:c6:9b:5b:b3:2c:fa:3c:50:dd:87:b5:9b: 33:79:11:1b:fc:5b:0b:64:97:ea:c5:bb:45:aa:8d:97:17:7a: f8:78:26:7a:4d:07:1a:68:2b:97:7a:f4:c2:c2:47:99:c3:c2: da:d5:70:84:9c:e5:e9:ae:45:ce:8a:73:e6:c4:0f:4b:5b:e0: f7:d9:8a:06:14:59:79:86:7f:54:e3:c7:10:ca:fa:7e:cd:4e: 5a:90:ae:c4:30:4c:d0:35:40:f8:e6:69:68:d5:fb:ce:c4:0a: cd:b1:25:8f:5c:39:c3:1a:1c:9a:09:c1:4f:42:a5:47:d6:87: 56:fb:d0:19:20:1a:8d:69:90:76:30:ce:78:d0:ee:30:1b:71: 77:39:12:ac:96:a9:fd:e9:60:3a:b9:4a:e6:d9:e7:31:cb:86: e3:af:e0:eb:10:c7:43:aa:cb:c3:e3:ec:c5:95:b9:52:41:24: a2:a7:79:f3:90:70:80:d2:c0:95:89:92:df:07:20:0b:11:36: f4:af:66:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOnTcNsfFLM2gcLLIdkik7iO7iSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTUwMDUyWhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTQ3YjI5ZTFkY2QzZDc0NDMxNmE5Yzc5NTI0YmZiZTcx YTliM2JmNWQ5MWQ0NmEyYmI2ZDA2OWZkMTA0MTI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZQ9Ny3YvwvLd+4n6cW5wcsoO0JvCsQpGl6g9su53eDbWm wbD3NSBRV+DmWvbFt/svEDjSHaRUIr/3YaUGqedwhKlsE4XTdhPPXGAzVb8u39K/ XoIc/ixmVQpfNIFg6mR5RuhTSN50G9rfjwnovJ4Cz1BV0Qaz7/vuodeLtvdD7eY/ fusVVUWNevJ/XkveXVoznNmFWMjTZE5GgCdIYOsTCfrYkvPqu6Kd1B0+S7lgo1eo BceSeyDtTdRZ/rJ96o7w7Y2dMVFQb72X4tZWz/H9wCSH2N6BR52IduZgw935fr2x jnVh7axVs8bfAupUWtnnR20naVSb1m1kzUeMrbN7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3eMr2Zy9Ri2XvXpCBExsRJoBbjUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1NDFjNzRjLTViYTYtNGE0Ny04YTBhLTU1YWM4ZmViMzNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HUwDQYJKoZIhvcNAQELBQADggEBAE56jiEQA0+3ju/SRkNUFteve/kJ Jw+c1IxIVvVwq6wApeXU+rqeta7KeAMLiY/hTNKXV6TJPp546RrLqsabW7Ms+jxQ 3Ye1mzN5ERv8Wwtkl+rFu0WqjZcXevh4JnpNBxpoK5d69MLCR5nDwtrVcISc5emu Rc6Kc+bED0tb4PfZigYUWXmGf1TjxxDK+n7NTlqQrsQwTNA1QPjmaWjV+87ECs2x JY9cOcMaHJoJwU9CpUfWh1b70BkgGo1pkHYwznjQ7jAbcXc5EqyWqf3pYDq5SubZ 5zHLhuOv4OsQx0Oqy8Pj7MWVuVJBJKKnefOQcIDSwJWJkt8HIAsRNvSvZsg= -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:49 2025 by rpki-client