$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa File: 0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa (raw, json) Hash identifier: w9RXaFQa5TCAelKHp9AUSnrtp60vJhSH58Ohlt7ITvY= Subject key identifier: 8E:64:F3:AD:F6:74:57:F8:AB:D9:E8:89:8B:32:96:29:DC:D9:1F:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 164FC9AD3F59740F2FD92F9DD9FD18B9ECE693CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa Signing time: Mon 10 Mar 2025 15:11:52 +0000 ROA not before: Mon 10 Mar 2025 15:11:52 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:4f:c9:ad:3f:59:74:0f:2f:d9:2f:9d:d9:fd:18:b9:ec:e6:93:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:11:52 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ba:e1:c7:05:be:46:71:7c:ac:d1:7c:61:0b: fe:d0:a3:99:e8:d8:29:25:90:36:85:5d:ee:08:cb: 3f:29:f0:72:61:eb:97:d1:97:b5:d9:26:ed:6d:63: ae:c9:65:fe:f0:2e:9e:4e:34:17:cc:ad:a7:f5:af: 54:67:4b:23:7b:fb:25:89:e3:80:be:4d:ea:3c:86: 65:70:0b:0b:35:8d:bf:43:b5:b2:16:30:31:f1:9c: 90:80:d7:6c:6f:fe:dd:08:7f:4a:85:f3:5f:2e:7e: e6:5f:87:69:1c:86:7d:1a:e8:db:8c:6f:2c:8d:96: c7:df:6f:2f:9a:f6:c9:eb:c3:0b:f0:ab:bd:b3:95: 47:33:b7:1c:e2:00:3b:e3:49:1c:d4:01:c1:2c:f0: 8d:bb:09:0e:ef:59:df:c0:4a:35:96:fc:79:15:b4: b3:b0:e0:38:4a:fd:49:29:01:e3:a9:01:27:5a:d1: b5:7f:a1:89:7b:4b:6e:4a:b9:1d:d8:70:cb:19:fb: 44:25:88:b4:6c:a1:b3:d0:78:96:26:77:68:03:29: 7e:f7:5c:be:b9:3c:8a:36:7e:9b:fb:ba:6e:a2:ae: aa:45:a1:55:4a:a0:11:a6:55:5f:2a:ff:9e:ca:ce: 2c:33:13:24:69:7d:99:65:0a:c0:87:7c:34:aa:36: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:64:F3:AD:F6:74:57:F8:AB:D9:E8:89:8B:32:96:29:DC:D9:1F:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:71:8e:c8:cc:93:0e:51:1d:68:81:6f:be:3a:e8:f7:26:bf: 36:b1:7d:d9:61:2a:18:85:91:bd:34:7f:f0:2f:fa:ce:e8:21: 39:ec:14:72:d7:49:cb:5d:94:4d:d2:dc:e0:1a:3e:b1:f2:0c: c6:ce:ed:52:4f:55:ae:dd:85:e2:79:a0:0b:8c:28:05:e8:c5: 02:1f:7b:b6:aa:dd:dc:34:fe:08:bf:8f:e3:a4:9f:f0:b4:cb: 2e:38:d2:a8:74:dd:89:c3:7f:7b:9b:77:4a:b2:0d:52:af:f4: 5d:8f:ca:ed:34:f3:00:e4:97:32:4c:84:cf:a8:b1:ad:e9:fb: 46:94:bc:dc:f9:94:0a:9e:f5:fa:b0:2c:43:be:c2:01:f5:81: 82:fb:b6:47:8b:54:71:ce:18:68:f9:50:74:c3:42:74:5b:44: 10:b5:89:89:69:ba:6f:b6:61:3b:95:cc:de:5b:7e:8c:ce:15: eb:a8:13:1c:a1:0e:33:5a:cc:16:9e:ac:14:e8:5b:71:af:26: c7:55:20:b6:f3:30:47:69:24:77:ab:9d:9b:6e:37:56:af:4d: 49:3c:1f:16:9a:86:4f:1d:6b:7f:86:e7:f7:36:32:18:0c:1f: 97:a2:08:1d:b5:1e:97:5e:1c:a6:d6:4c:87:6f:67:7e:7e:cb: 3f:bf:72:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFk/JrT9ZdA8v2S+d2f0Yuezmk8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUxMTUyWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDdkNmI5NmVkZGY0ZGVlYjNlNWI5MzNmOTM2ODQxNjQz MmNjNDljY2M4MzUwMTkwYzRmNGQ3MzE3YWVlZGJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOuuHHBb5GcXys0XxhC/7Qo5no2CklkDaFXe4Iyz8p8HJh 65fRl7XZJu1tY67JZf7wLp5ONBfMraf1r1RnSyN7+yWJ44C+Teo8hmVwCws1jb9D tbIWMDHxnJCA12xv/t0If0qF818ufuZfh2kchn0a6NuMbyyNlsffby+a9snrwwvw q72zlUcztxziADvjSRzUAcEs8I27CQ7vWd/ASjWW/HkVtLOw4DhK/UkpAeOpASda 0bV/oYl7S25KuR3YcMsZ+0QliLRsobPQeJYmd2gDKX73XL65PIo2fpv7um6irqpF oVVKoBGmVV8q/57KziwzEyRpfZllCsCHfDSqNn4dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjmTzrfZ0V/ir2eiJizKWKdzZH/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZGMyNTIxLWE1M2UtNGIwNS1iNTM0LThiM2JlOWQ5ZjhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAD9xjsjMkw5RHWiBb7466Pcmvzax fdlhKhiFkb00f/Av+s7oITnsFHLXSctdlE3S3OAaPrHyDMbO7VJPVa7dheJ5oAuM KAXoxQIfe7aq3dw0/gi/j+Okn/C0yy440qh03YnDf3ubd0qyDVKv9F2Pyu008wDk lzJMhM+osa3p+0aUvNz5lAqe9fqwLEO+wgH1gYL7tkeLVHHOGGj5UHTDQnRbRBC1 iYlpum+2YTuVzN5bfozOFeuoExyhDjNazBaerBToW3GvJsdVILbzMEdpJHernZtu N1avTUk8Hxaahk8da3+G5/c2MhgMH5eiCB21HpdeHKbWTIdvZ35+yz+/ckU= -----END CERTIFICATE-----Generated at Thu Mar 13 23:42:50 2025 by rpki-client