$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa File: 0ddeb352-141f-467b-8491-f45b959c60b1.roa (raw, json) Hash identifier: /nJ8BkvIV6E9tKOtx6s8eujTqzDljLPa1rIoAyFrGp8= Subject key identifier: 44:16:E6:20:46:E9:C0:C4:0A:17:12:50:E9:D2:D0:D1:FE:65:BD:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A1FC08343CD3773209189C256EA6CE6A9377150 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa Signing time: Fri 14 Mar 2025 00:11:38 +0000 ROA not before: Fri 14 Mar 2025 00:11:38 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 209.54.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1f:c0:83:43:cd:37:73:20:91:89:c2:56:ea:6c:e6:a9:37:71:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:11:38 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:2c:ca:5b:aa:16:58:8c:b2:0d:d7:30:02: 49:8c:f4:c6:bd:37:12:7a:4e:f4:9b:6e:b7:f7:9e: bf:a2:0e:ed:4d:a9:bf:27:f7:fa:29:95:79:0a:c7: d0:53:5e:ce:b0:9d:23:1e:42:bc:51:a1:6d:82:4f: 26:dc:d3:29:96:41:90:55:4d:f1:33:7a:d1:ba:96: 47:91:c6:05:d6:87:68:2d:09:4b:8b:4e:c1:f8:2f: ca:13:72:39:ba:d1:d0:66:4a:20:0f:ee:b5:63:3f: 94:ac:c2:c3:75:cc:95:2e:6b:ef:e4:17:e3:26:3c: 12:5d:e5:8e:6a:2f:6d:df:23:54:45:06:6c:38:5b: 2f:17:1f:68:94:f1:a7:3b:bb:41:4e:a6:a7:48:c3: 6a:15:8f:83:c5:7a:38:03:06:e6:b3:b3:66:7f:e2: 0e:67:cc:fa:ce:9f:f6:bf:5f:0b:03:a1:63:8d:4d: c7:23:8b:c2:9e:35:df:df:cc:d0:14:bd:1e:d4:62: 9d:04:90:55:88:d5:ec:9f:61:b0:82:62:99:26:5a: b1:d5:90:b8:6f:72:33:5d:ba:1a:13:c9:7a:76:6d: e1:ed:d9:dd:28:34:b1:4f:18:47:37:1a:ed:b4:5f: 57:33:39:ae:dd:63:1a:d0:3b:ed:c3:4d:0c:73:32: 37:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:16:E6:20:46:E9:C0:C4:0A:17:12:50:E9:D2:D0:D1:FE:65:BD:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.54.176.0/21 Signature Algorithm: sha256WithRSAEncryption 01:d1:ef:ab:25:90:e4:c0:f8:0b:b4:c2:1f:cd:73:04:c2:e5: cf:5c:05:03:c3:10:29:a7:39:47:31:7d:63:90:b9:a7:97:f7: 90:03:67:0a:62:e6:58:8d:9b:9e:ac:04:8a:37:d0:91:b5:7e: 2f:01:37:91:02:11:13:fb:e3:75:6a:16:27:1f:17:dd:e7:8a: cd:29:9a:2f:5c:e6:9e:e3:a8:f6:bf:8c:dc:b7:88:86:a9:6b: 20:ca:a3:c6:7d:bc:0f:37:6b:cb:ea:ea:06:55:1c:d5:ad:33: 11:36:79:07:3a:ef:ed:2e:07:a7:39:01:b8:26:55:b2:39:de: c1:5e:8d:a2:cf:a4:ac:40:a7:e8:8f:f9:21:55:2e:e9:4e:db: 38:9d:78:0d:56:e5:2f:12:5f:86:0d:b9:ba:96:02:17:19:c4: ba:08:d4:16:9f:17:f9:3e:ca:3d:94:63:75:b0:f7:e3:68:20: db:86:83:e7:26:60:01:02:f8:d4:d5:a4:26:66:9c:51:05:c8: 15:b6:4d:b5:fa:cd:01:83:68:70:5a:05:c0:9f:06:f2:b8:47: 53:a5:a5:88:77:05:f6:a5:54:ea:5f:fc:d4:a3:2a:f7:ba:8e: 13:6c:ed:13:6c:2a:c6:67:dd:b9:c7:a0:83:0b:41:6a:8c:17: 6a:16:10:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUah/Ag0PNN3MgkYnCVups5qk3cVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDAxMTM4WhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGM1NzZhMGFhMTM3NTUxNThkOTA3MWJmM2QxYjM4YWZm ZTNjYTVkNTIxOWMxNmE3MzkzMGE5NGVhYzlhMWQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmcSzKW6oWWIyyDdcwAkmM9Ma9NxJ6TvSbbrf3nr+iDu1N qb8n9/oplXkKx9BTXs6wnSMeQrxRoW2CTybc0ymWQZBVTfEzetG6lkeRxgXWh2gt CUuLTsH4L8oTcjm60dBmSiAP7rVjP5SswsN1zJUua+/kF+MmPBJd5Y5qL23fI1RF Bmw4Wy8XH2iU8ac7u0FOpqdIw2oVj4PFejgDBuazs2Z/4g5nzPrOn/a/XwsDoWON Tccji8KeNd/fzNAUvR7UYp0EkFWI1eyfYbCCYpkmWrHVkLhvcjNduhoTyXp2beHt 2d0oNLFPGEc3Gu20X1czOa7dYxrQO+3DTQxzMjfBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURBbmIEbpwMQKFxJQ6dLQ0f5lvUwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkZGViMzUyLTE0MWYtNDY3Yi04NDkxLWY0NWI5NTljNjBiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRNrAwDQYJKoZIhvcNAQELBQADggEBAAHR76slkOTA+Au0wh/NcwTC5c9c BQPDECmnOUcxfWOQuaeX95ADZwpi5liNm56sBIo30JG1fi8BN5ECERP743VqFicf F93nis0pmi9c5p7jqPa/jNy3iIapayDKo8Z9vA83a8vq6gZVHNWtMxE2eQc67+0u B6c5AbgmVbI53sFejaLPpKxAp+iP+SFVLulO2zideA1W5S8SX4YNubqWAhcZxLoI 1BafF/k+yj2UY3Ww9+NoINuGg+cmYAEC+NTVpCZmnFEFyBW2TbX6zQGDaHBaBcCf BvK4R1OlpYh3BfalVOpf/NSjKve6jhNs7RNsKsZn3bnHoIMLQWqMF2oWECc= -----END CERTIFICATE-----Generated at Fri Apr 4 23:45:29 2025 by rpki-client