$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa File: 145d5432-1426-4a63-9bed-c2784088be52.roa (raw, json) Hash identifier: 3q8wkRefESTOrOrr00U8FEUcoQAfKFMbfe/QXUKd2yM= Subject key identifier: 56:DD:28:28:03:BC:33:C0:7B:1E:60:11:68:83:44:CF:A5:84:F6:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 753EA7EB76EABA950EDB2B498CE88C8D5C93D201 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa Signing time: Mon 17 Feb 2025 16:40:16 +0000 ROA not before: Mon 17 Feb 2025 16:40:16 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.37.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:3e:a7:eb:76:ea:ba:95:0e:db:2b:49:8c:e8:8c:8d:5c:93:d2:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 16:40:16 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3a:8d:ed:1d:69:cb:4c:3a:99:30:d5:6a:03: 49:28:5a:a5:4b:61:02:5b:d7:78:15:44:20:ea:e9: 60:ef:8a:0d:cb:a5:f2:e6:a0:90:d7:b4:a0:1a:1c: f8:ee:d7:9e:df:68:2d:c9:e3:0c:1a:b4:ef:45:3e: 6a:ef:55:f0:16:2a:4d:b1:ec:f8:1b:91:bc:cb:4f: 80:1b:ee:8b:f5:cd:90:87:6b:e0:a0:b6:98:a2:af: ed:6b:63:ba:7a:ca:a9:a9:fe:c2:4a:c7:27:e1:70: 8e:cd:aa:e8:d7:37:de:20:16:83:95:34:4f:85:54: df:2b:84:92:f7:3e:d4:0f:aa:ed:cc:9e:0b:b2:1d: 93:8a:44:76:53:fe:1c:22:37:83:f3:8e:0d:43:ad: dc:b7:9f:59:7f:e3:6b:97:e9:2e:8c:4a:9c:1f:43: 6d:f3:a9:fb:2a:41:b3:39:89:8f:60:2a:96:d1:03: fe:a4:f2:4b:61:49:95:f6:a9:c6:d7:bc:47:77:9d: b9:be:f0:34:f8:c6:a9:16:d1:94:68:7a:96:4a:95: 50:83:6e:f8:65:6b:ec:4a:fa:15:c3:df:6a:9e:6f: 4d:6d:8a:55:e8:6d:51:e9:2e:f5:28:cc:21:14:4b: e8:ad:20:05:19:03:04:1b:92:ad:4a:78:7f:6a:74: e8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DD:28:28:03:BC:33:C0:7B:1E:60:11:68:83:44:CF:A5:84:F6:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/145d5432-1426-4a63-9bed-c2784088be52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.37.64.0/18 Signature Algorithm: sha256WithRSAEncryption 95:da:a8:ca:97:af:52:7a:ff:b7:fb:94:34:88:50:e2:de:b2: 19:e6:f8:fb:54:15:22:b5:79:85:08:d5:29:9f:57:b2:fc:20: 49:43:11:25:71:36:90:f0:21:00:f5:73:bd:6b:8f:57:e9:75: 86:22:fe:fe:08:20:a5:55:ee:73:23:3d:b4:cf:e7:66:68:3a: d7:d4:1c:37:b6:35:7d:aa:fc:dc:c7:18:80:6b:ad:5d:90:a5: 94:76:43:df:c2:67:77:6a:c7:7a:3e:6a:c4:c7:16:fc:56:37: ce:8a:b5:55:11:4e:51:a7:a2:e3:d3:d5:e0:6c:9f:ca:81:d2: de:65:78:75:5b:f3:a1:90:3d:e2:6b:d1:e9:b0:cc:f8:47:62: d3:3a:9b:4c:bb:16:17:fe:42:e0:52:8a:09:01:df:cb:57:f1: 59:76:1b:ec:57:8d:24:0a:e5:ed:26:37:60:b8:85:c5:37:58: d4:38:70:bf:f0:fa:e1:1d:5a:ea:2d:79:39:3d:80:b3:42:79: 4c:04:53:82:f0:70:33:76:1e:02:77:57:e5:e2:92:f8:34:44: 6a:d9:ba:96:f6:d9:48:58:b6:7f:ee:f2:f2:70:e1:3a:20:63: 89:02:a7:69:c8:b9:08:dc:14:cf:3b:44:85:98:35:64:3e:1a: 8a:65:ab:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdT6n63bqupUO2ytJjOiMjVyT0gEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTY0MDE2WhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzNkYTM2MTk2ZjY1NDEzMGQwMDY0NzNlYjViMmY5ODI1 MWQ4NTUxYzBjYWZhZjE4Y2I1ODJhZGI5ODZiOWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjOo3tHWnLTDqZMNVqA0koWqVLYQJb13gVRCDq6WDvig3L pfLmoJDXtKAaHPju157faC3J4wwatO9FPmrvVfAWKk2x7PgbkbzLT4Ab7ov1zZCH a+Cgtpiir+1rY7p6yqmp/sJKxyfhcI7NqujXN94gFoOVNE+FVN8rhJL3PtQPqu3M nguyHZOKRHZT/hwiN4Pzjg1Drdy3n1l/42uX6S6MSpwfQ23zqfsqQbM5iY9gKpbR A/6k8kthSZX2qcbXvEd3nbm+8DT4xqkW0ZRoepZKlVCDbvhla+xK+hXD32qeb01t ilXobVHpLvUozCEUS+itIAUZAwQbkq1KeH9qdOidAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVt0oKAO8M8B7HmARaINEz6WE9jowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0NWQ1NDMyLTE0MjYtNGE2My05YmVkLWMyNzg0MDg4YmU1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAJUAwDQYJKoZIhvcNAQELBQADggEBAJXaqMqXr1J6/7f7lDSIUOLeshnm +PtUFSK1eYUI1SmfV7L8IElDESVxNpDwIQD1c71rj1fpdYYi/v4IIKVV7nMjPbTP 52ZoOtfUHDe2NX2q/NzHGIBrrV2QpZR2Q9/CZ3dqx3o+asTHFvxWN86KtVURTlGn ouPT1eBsn8qB0t5leHVb86GQPeJr0emwzPhHYtM6m0y7Fhf+QuBSigkB38tX8Vl2 G+xXjSQK5e0mN2C4hcU3WNQ4cL/w+uEdWuoteTk9gLNCeUwEU4LwcDN2HgJ3V+Xi kvg0RGrZupb22UhYtn/u8vJw4TogY4kCp2nIuQjcFM87RIWYNWQ+Goplq6I= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:07 2025 by rpki-client