$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa File: 0f893b02-709b-4a20-ab74-f859a710b1be.roa (raw, json) Hash identifier: K9/dHtc8/TZmlgTJtVZFvPTDGOjJrTf/qoBBeReNs/A= Subject key identifier: E6:B4:03:98:A5:D6:35:7F:41:06:3C:EE:B2:DA:7A:11:9D:23:80:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D671E14D285A160ADA2AD56982F3E54A7693BA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa Signing time: Mon 10 Mar 2025 15:10:12 +0000 ROA not before: Mon 10 Mar 2025 15:10:12 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:67:1e:14:d2:85:a1:60:ad:a2:ad:56:98:2f:3e:54:a7:69:3b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:10:12 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bc:60:a4:37:03:00:b8:8f:70:57:0f:2c:60: 2a:15:46:42:3f:de:0b:2b:a1:bc:07:2c:43:a4:e8: d2:04:47:6d:60:8a:86:69:cc:c4:a3:88:35:47:5e: a2:e8:df:d1:34:4e:c2:78:1b:0d:de:17:6a:7d:22: 15:84:a6:a7:5f:2d:4b:5e:b5:e4:17:f4:69:36:8d: 64:f2:96:2e:3e:d2:c2:17:ce:0e:f1:49:a8:d9:e4: 1e:ff:f8:62:05:f4:6f:28:81:73:3f:8e:2e:6b:18: 08:e6:ea:d5:b0:11:d0:df:52:e5:1b:ea:1a:20:7b: 98:00:68:56:96:e7:9f:ef:0a:9e:f8:e3:a5:cd:73: 62:25:d2:fc:3e:c9:7a:cf:fd:53:25:90:5b:8d:ea: 7d:c5:0a:bf:16:84:fe:72:2e:18:b0:eb:0a:77:b1: 90:55:44:46:b2:90:c9:40:73:fd:23:61:78:d6:4f: 25:3d:4c:30:d2:a2:2b:fa:d2:ba:29:ba:cd:38:45: 88:03:55:d6:f0:48:ff:87:bb:b3:c8:6a:bf:59:73: 95:46:00:4c:ef:d9:73:66:69:e5:e3:f8:9f:3e:ed: 37:b6:53:48:39:52:b1:5c:ef:34:16:4c:d3:23:51: d2:25:5f:4f:97:c8:46:ca:c2:b8:e5:26:9c:38:d2: e3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B4:03:98:A5:D6:35:7F:41:06:3C:EE:B2:DA:7A:11:9D:23:80:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption 49:22:9f:21:95:53:15:0e:42:ea:16:dc:53:bb:bd:97:25:d1: 0d:a4:2b:e5:fe:8e:a0:66:8a:1a:96:84:ee:b3:a6:5a:f0:7c: d4:2e:9d:23:b9:b1:bd:a5:4e:fc:49:d7:43:8c:94:9f:19:e4: c7:a8:91:be:85:55:ac:1d:23:37:e2:a8:6f:bb:94:06:34:d8: 56:2e:0d:85:b6:a8:30:7a:1b:c1:89:74:18:86:83:8c:ab:83: 1c:5c:de:d8:49:7d:fa:28:73:83:91:9f:1a:84:7c:b0:49:41: ff:7a:c9:59:39:60:2e:c4:60:10:bc:8f:92:f8:c8:39:a5:a7: e7:73:6a:72:64:26:5c:5c:a6:77:fe:74:bc:50:e6:7d:45:c3: 9e:74:3e:a7:2d:12:cd:bc:46:e5:30:29:d3:04:77:80:39:11: 9f:a7:64:72:e0:01:bf:da:ff:fd:00:40:1e:65:b2:62:8c:44: 67:49:04:02:ea:a4:98:6d:7d:48:ca:0d:28:d8:10:d9:1f:2e: 9c:17:30:4c:46:e8:8f:4c:58:09:fa:63:25:99:1a:5b:50:78: 1e:4e:87:63:2b:cf:18:54:9a:fb:41:db:3a:38:33:3a:c1:7d: eb:5a:ab:25:4a:3f:59:be:23:cd:82:ee:e3:22:ed:8d:4e:47: 2a:b1:47:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbWceFNKFoWCtoq1WmC8+VKdpO6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUxMDEyWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDE2YTdkZTI4YTY0MjVkYzZjOWI0OTk4NWEyNjY3MTQ4 OTE0MjJiYzhjNTQ3NjllN2NhNGU5YzVmM2Q1YTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWvGCkNwMAuI9wVw8sYCoVRkI/3gsrobwHLEOk6NIER21g ioZpzMSjiDVHXqLo39E0TsJ4Gw3eF2p9IhWEpqdfLUteteQX9Gk2jWTyli4+0sIX zg7xSajZ5B7/+GIF9G8ogXM/ji5rGAjm6tWwEdDfUuUb6hoge5gAaFaW55/vCp74 46XNc2Il0vw+yXrP/VMlkFuN6n3FCr8WhP5yLhiw6wp3sZBVREaykMlAc/0jYXjW TyU9TDDSoiv60ropus04RYgDVdbwSP+Hu7PIar9Zc5VGAEzv2XNmaeXj+J8+7Te2 U0g5UrFc7zQWTNMjUdIlX0+XyEbKwrjlJpw40uORAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5rQDmKXWNX9BBjzustp6EZ0jgMQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODkzYjAyLTcwOWItNGEyMC1hYjc0LWY4NTlhNzEwYjFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgEAwDQYJKoZIhvcNAQELBQADggEBAEkinyGVUxUOQuoW3FO7vZcl0Q2k K+X+jqBmihqWhO6zplrwfNQunSO5sb2lTvxJ10OMlJ8Z5Meokb6FVawdIzfiqG+7 lAY02FYuDYW2qDB6G8GJdBiGg4yrgxxc3thJffooc4ORnxqEfLBJQf96yVk5YC7E YBC8j5L4yDmlp+dzanJkJlxcpnf+dLxQ5n1Fw550PqctEs28RuUwKdMEd4A5EZ+n ZHLgAb/a//0AQB5lsmKMRGdJBALqpJhtfUjKDSjYENkfLpwXMExG6I9MWAn6YyWZ GltQeB5Oh2MrzxhUmvtB2zo4MzrBfetaqyVKP1m+I82C7uMi7Y1ORyqxR8s= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:07 2025 by rpki-client