$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa File: 1044c764-927e-41a1-b94e-b8bb9091f9c3.roa (raw, json) Hash identifier: HeBgnTweQ5EJdHtixCxOax3d9HULbfFfUksL9u7GD80= Subject key identifier: 06:1B:E0:43:48:0E:D2:A0:85:9E:12:EC:00:DA:1C:85:08:B6:72:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7478C817FE79891CF4C5BA37D09306E886DB4E71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa Signing time: Wed 12 Mar 2025 00:22:09 +0000 ROA not before: Wed 12 Mar 2025 00:22:09 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 194.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:78:c8:17:fe:79:89:1c:f4:c5:ba:37:d0:93:06:e8:86:db:4e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:22:09 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:8b:45:13:de:d9:e3:dd:ad:98:1e:7c:2e:88: 7d:f4:40:9c:cb:14:0e:5b:41:6e:a0:b4:d0:ac:a8: 86:67:f0:a4:06:89:78:f3:b6:9b:3a:1b:32:03:ca: e4:e3:f5:56:b7:d5:00:26:01:83:78:ec:d6:ec:b0: fa:8c:fb:94:31:fb:fe:37:8d:4b:3b:fc:3c:d8:55: 87:ea:34:9a:4f:83:62:b8:59:86:7f:b7:1f:dc:18: a4:77:7e:f4:04:1c:1a:67:6e:e8:ba:f3:c3:a3:3a: ee:6c:5c:e9:9c:3b:04:2b:76:49:3f:76:46:26:14: 37:5e:4a:47:20:74:92:44:2b:a5:e8:64:66:9d:5a: 2d:92:6c:98:d3:b4:60:13:ab:dd:1d:f3:b4:dd:f5: 86:8c:92:9c:c4:05:55:ec:93:4f:18:60:51:79:89: 7c:28:13:bc:3c:94:ed:fd:ed:9f:04:81:a1:84:6d: ab:93:7e:ef:23:63:8f:32:1a:2b:ae:5e:cd:b4:12: 09:9a:15:5a:8d:f4:05:06:be:c7:2e:17:74:70:b3: 97:06:33:ef:5e:75:73:3d:8e:63:46:e9:10:81:f7: 08:f1:f8:1a:7a:f0:e1:65:4f:a3:45:4f:3a:7a:1a: f0:f9:53:e5:64:6e:13:65:90:1d:b9:c7:ef:90:13: 0f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1B:E0:43:48:0E:D2:A0:85:9E:12:EC:00:DA:1C:85:08:B6:72:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1044c764-927e-41a1-b94e-b8bb9091f9c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:58:2e:7d:0f:ca:34:24:46:cc:50:12:16:02:e0:1c:dc:12: 4c:4e:ea:0f:94:c2:07:0e:44:5a:2b:f8:d3:b5:b1:93:3a:5d: 9a:e9:29:a4:77:1a:74:8b:e7:bc:98:85:88:97:4b:91:ed:a3: 24:54:ea:c4:e2:12:b5:da:d3:15:d7:97:86:8b:cf:09:65:c2: 17:0b:55:38:c4:11:c4:69:da:ea:7f:4e:df:2a:fa:c4:45:6a: 39:e3:5d:cf:73:1f:5a:52:d5:8f:8b:3d:1d:bb:5b:a4:1a:d2: 6d:e5:d6:9a:9a:37:57:f9:aa:83:eb:d0:7d:88:f2:53:45:9b: 79:55:1c:8d:d0:d6:3d:6a:0d:9a:78:79:ef:c5:f0:59:b4:89: ee:a0:7d:5f:41:ea:fd:f5:11:0a:3c:16:75:91:33:c3:b5:c2: 47:d5:73:50:69:4c:f9:6e:40:93:a0:5b:9e:30:ba:f0:b8:ef: bd:25:42:c3:3a:64:98:78:50:40:a7:31:eb:40:d1:df:f5:40: 12:ef:50:82:db:c4:bb:0a:79:3d:95:15:90:68:58:6d:fb:7f: d1:07:77:ae:be:78:e5:bf:82:47:33:64:bf:78:b9:3b:50:bc: d4:68:6a:82:fb:69:de:cf:75:41:d1:50:60:09:71:5a:d2:73: ef:b6:d8:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdHjIF/55iRz0xbo30JMG6IbbTnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAyMjA5WhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTIwNWUxNGQ1OGU1OTQyZmE4MTEwYTRiMzdiMTExMDdi NjNiYzNjNDQwNDkzZWVlM2VkMmQ2NjE0NWJlNzI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7i0UT3tnj3a2YHnwuiH30QJzLFA5bQW6gtNCsqIZn8KQG iXjztps6GzIDyuTj9Va31QAmAYN47NbssPqM+5Qx+/43jUs7/DzYVYfqNJpPg2K4 WYZ/tx/cGKR3fvQEHBpnbui688OjOu5sXOmcOwQrdkk/dkYmFDdeSkcgdJJEK6Xo ZGadWi2SbJjTtGATq90d87Td9YaMkpzEBVXsk08YYFF5iXwoE7w8lO397Z8EgaGE bauTfu8jY48yGiuuXs20EgmaFVqN9AUGvscuF3Rws5cGM+9edXM9jmNG6RCB9wjx +Bp68OFlT6NFTzp6GvD5U+VkbhNlkB25x++QEw8/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBhvgQ0gO0qCFnhLsANochQi2crswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwNDRjNzY0LTkyN2UtNDFhMS1iOTRlLWI4YmI5MDkxZjljMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDChjANBgkqhkiG9w0BAQsFAAOCAQEAplgufQ/KNCRGzFASFgLgHNwSTE7q D5TCBw5EWiv407WxkzpdmukppHcadIvnvJiFiJdLke2jJFTqxOIStdrTFdeXhovP CWXCFwtVOMQRxGna6n9O3yr6xEVqOeNdz3MfWlLVj4s9HbtbpBrSbeXWmpo3V/mq g+vQfYjyU0WbeVUcjdDWPWoNmnh578XwWbSJ7qB9X0Hq/fURCjwWdZEzw7XCR9Vz UGlM+W5Ak6BbnjC68LjvvSVCwzpkmHhQQKcx60DR3/VAEu9QgtvEuwp5PZUVkGhY bft/0Qd3rr545b+CRzNkv3i5O1C81Ghqgvtp3s91QdFQYAlxWtJz77bYfg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:48:57 2025 by rpki-client