$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa File: 0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa (raw, json) Hash identifier: kzTLBmPPhN7LjD2SHEwMxojhA+LIKYjxoYtViQex7Xc= Subject key identifier: BC:99:21:CB:44:A5:72:8A:DB:1B:20:E4:F1:9B:DC:D0:26:8E:D2:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B3060944A115A0444062CD1274AD55462934E63 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa Signing time: Mon 31 Mar 2025 15:41:21 +0000 ROA not before: Mon 31 Mar 2025 15:41:21 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:30:60:94:4a:11:5a:04:44:06:2c:d1:27:4a:d5:54:62:93:4e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:41:21 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=5500a18bb3586a35b3cf0a9016fc0676509f97e0a230db5b378c12cb1641b0bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:36:9c:03:6e:c2:dc:ac:07:5e:69:04:e3:13: 42:00:47:a4:0a:84:64:9a:51:bb:8a:ed:1a:a5:2c: f1:6c:58:c9:71:55:f7:d6:3f:b1:c9:f6:2a:84:ba: 7e:ad:ce:71:8f:2d:f7:7f:f5:ec:a0:b5:95:f5:b5: 2b:fc:82:14:30:e4:c2:36:c1:26:50:8a:2b:a3:d4: 57:2e:09:85:76:8a:32:47:1e:97:f8:18:67:2d:dc: 6a:68:7e:0a:1f:cd:bf:d6:b0:cd:e0:a3:73:b1:e9: 97:fe:24:39:ff:05:8c:b5:87:08:44:59:50:66:c9: 84:9d:d1:b7:30:ad:55:b5:4b:b2:b1:79:17:69:d3: 37:69:a0:f7:6a:b9:9f:88:7c:26:14:07:2b:50:1c: 98:bc:e8:44:d3:c9:b9:83:8c:91:04:b5:77:e3:51: 2f:2d:18:0f:59:98:a9:f6:1d:59:ec:87:73:23:81: e0:ab:4f:7f:8f:a6:55:34:a2:0b:f7:f5:de:d4:b5: 63:69:c5:f0:35:af:c0:5d:f2:87:d1:06:e0:58:7f: 12:27:6a:e0:b9:e8:58:d2:ee:fb:bd:63:fb:56:f1: 9c:06:8a:1a:35:eb:c6:bc:4a:17:7e:92:3c:f1:81: 7e:42:b4:34:2d:97:cb:d9:09:37:72:3f:2e:5d:0c: 2f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:99:21:CB:44:A5:72:8A:DB:1B:20:E4:F1:9B:DC:D0:26:8E:D2:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2fbad4-ef20-49dd-9b21-8abbc46cef31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.82.0/24 Signature Algorithm: sha256WithRSAEncryption b4:b0:32:1c:a2:80:be:85:61:a3:38:fd:25:4b:c1:76:4e:11: 0b:a7:ae:56:1d:fd:c3:5d:b7:36:16:4a:e3:e2:bc:4b:ba:cd: 86:6f:a9:45:57:eb:7a:d5:ba:11:07:64:ae:42:db:f8:ce:84: fc:a2:95:81:cc:89:35:d8:22:7c:c9:e6:58:a2:f5:e3:42:62: 0d:1a:fa:1e:f1:33:68:b9:0d:ec:e9:4d:fe:2d:48:29:d3:b5: 0d:ae:4d:24:20:9f:98:98:70:cc:f6:ed:cd:28:6d:49:92:4a: 1a:f6:b1:8d:23:83:76:88:7d:14:41:cf:20:b6:69:01:be:c4: 5c:87:ac:a3:ab:4a:c0:40:c6:40:7d:bb:c3:e8:06:f1:3a:60: 3e:6f:fd:42:83:cd:95:2f:6e:e8:3f:ba:1f:83:52:7b:55:88: bd:a6:9a:3f:ad:e4:79:46:52:b8:26:86:10:1f:47:34:87:c9: 74:af:df:e7:1b:f4:92:06:7d:f5:f6:d2:10:2c:3f:79:8e:79: 7e:e2:66:52:9b:79:a5:57:2b:b4:a8:ef:b8:a5:b7:8a:87:9d: 27:4b:b3:f4:7e:3d:5e:23:ed:a8:de:66:07:35:cd:9f:77:37: c9:6b:4b:61:9a:a8:61:aa:9b:80:58:3f:bb:f5:4b:5f:d9:b3: 78:b2:58:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGzBglEoRWgREBizRJ0rVVGKTTmMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU0MTIxWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTAwYTE4YmIzNTg2YTM1YjNjZjBhOTAxNmZjMDY3NjUw OWY5N2UwYTIzMGRiNWIzNzhjMTJjYjE2NDFiMGJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqNpwDbsLcrAdeaQTjE0IAR6QKhGSaUbuK7RqlLPFsWMlx VffWP7HJ9iqEun6tznGPLfd/9eygtZX1tSv8ghQw5MI2wSZQiiuj1FcuCYV2ijJH Hpf4GGct3Gpofgofzb/WsM3go3Ox6Zf+JDn/BYy1hwhEWVBmyYSd0bcwrVW1S7Kx eRdp0zdpoPdquZ+IfCYUBytQHJi86ETTybmDjJEEtXfjUS8tGA9ZmKn2HVnsh3Mj geCrT3+PplU0ogv39d7UtWNpxfA1r8Bd8ofRBuBYfxInauC56FjS7vu9Y/tW8ZwG iho168a8Shd+kjzxgX5CtDQtl8vZCTdyPy5dDC9NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvJkhy0SlcorbGyDk8Zvc0CaO0jYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMmZiYWQ0LWVmMjAtNDlkZC05YjIxLThhYmJjNDZjZWYzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GVIwDQYJKoZIhvcNAQELBQADggEBALSwMhyigL6FYaM4/SVLwXZOEQun rlYd/cNdtzYWSuPivEu6zYZvqUVX63rVuhEHZK5C2/jOhPyilYHMiTXYInzJ5lii 9eNCYg0a+h7xM2i5DezpTf4tSCnTtQ2uTSQgn5iYcMz27c0obUmSShr2sY0jg3aI fRRBzyC2aQG+xFyHrKOrSsBAxkB9u8PoBvE6YD5v/UKDzZUvbug/uh+DUntViL2m mj+t5HlGUrgmhhAfRzSHyXSv3+cb9JIGffX20hAsP3mOeX7iZlKbeaVXK7So77il t4qHnSdLs/R+PV4j7ajeZgc1zZ93N8lrS2GaqGGqm4BYP7v1S1/Zs3iyWMQ= -----END CERTIFICATE-----Generated at Wed Apr 16 17:11:36 2025 by rpki-client