$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa File: 22397cac-406e-4c89-85e5-b4a29edd8651.roa (raw, json) Hash identifier: ZAc/6gEieuB36R/zMLJeCTwahVi+NYB5z1A4oGoeMAE= Subject key identifier: E0:86:D2:D6:D5:8E:CB:4A:9A:CB:62:12:56:C2:59:61:D9:81:C3:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27812820CAA7AA13DD7B71FED783AF4573CAFF37 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa Signing time: Mon 31 Mar 2025 15:41:27 +0000 ROA not before: Mon 31 Mar 2025 15:41:27 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:81:28:20:ca:a7:aa:13:dd:7b:71:fe:d7:83:af:45:73:ca:ff:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:41:27 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:6b:16:a7:b1:4a:cb:5c:23:53:b3:51:5c:33: fc:d0:0d:45:ca:a7:92:54:c3:57:c4:9b:1a:0e:7a: 01:46:30:91:f2:9e:e7:bb:ca:c8:04:f5:b5:ad:46: 8b:58:89:bf:43:53:cf:d7:cc:33:a7:22:e8:39:f8: ba:56:60:56:56:d9:6c:f7:a9:5c:11:fe:23:5c:dd: 4c:99:60:76:bd:30:a1:cd:ad:6b:fb:55:64:45:27: 82:14:fc:f3:09:ef:95:15:61:7d:28:da:b5:5b:c3: 36:1e:25:fd:62:66:c8:35:e2:79:b2:13:89:8a:45: a6:e3:e9:84:f2:37:84:a6:86:c8:26:41:83:a5:64: c7:7a:90:12:ec:95:6e:f9:b7:a7:8a:1d:f7:07:f3: 67:9d:0f:aa:ae:e4:14:c8:cf:d0:54:21:84:d3:9d: c1:13:6f:9d:7b:ac:ba:e4:2a:30:09:3b:6d:85:27: 87:e6:ed:a9:37:75:f1:0d:8e:05:bf:87:e2:15:a2: d2:ea:c8:ec:77:fb:b6:4d:e3:51:9a:de:dc:0f:04: 8f:dc:5b:61:ea:11:8a:4e:4e:bb:23:0f:ac:1c:7c: 65:74:1a:63:6b:ab:78:4b:a5:10:ec:77:78:0f:d3: 9f:66:19:5d:f3:06:cc:c9:83:f1:4d:43:8c:8d:0f: 48:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:86:D2:D6:D5:8E:CB:4A:9A:CB:62:12:56:C2:59:61:D9:81:C3:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.15.0/24 Signature Algorithm: sha256WithRSAEncryption 00:a7:95:14:e6:34:c4:ab:b2:fc:e0:e0:01:0b:55:83:33:57: f3:85:10:9f:22:44:d1:e8:1a:55:22:1f:c6:b0:de:22:6e:37: b2:10:93:ad:00:2c:d6:ce:eb:e7:fb:19:58:a4:6d:14:ca:7e: ab:a1:98:be:a8:4d:d7:ea:d5:38:e0:00:29:63:43:a7:43:76: 58:92:4f:cf:d8:7a:22:1e:e9:85:23:e9:cb:3a:4a:5a:41:92: 63:c0:7a:c1:04:82:1b:95:e7:f6:ae:23:4a:63:61:4e:77:2c: 1a:d5:2a:c7:a6:dd:51:44:1d:96:6c:a0:4d:d0:59:ba:44:ec: e5:95:02:9f:08:d5:3e:05:4c:a2:43:27:ef:fc:c4:e4:59:96: 36:fa:51:b8:46:c6:67:ad:a9:0b:85:a9:21:2f:bd:4a:91:6f: f7:80:68:7f:f0:dc:b2:57:62:31:3b:34:ce:14:e9:7b:31:c0: 29:38:e7:94:79:84:c1:63:cc:ca:b8:aa:fb:85:3a:57:2e:07: e6:c9:00:c8:7b:88:a0:e1:6f:ed:6d:f7:14:75:ab:9f:7a:56: 81:d4:d6:6e:74:74:fa:e9:01:0f:91:a3:bc:d1:53:32:e7:50: 06:9e:f2:a9:9b:33:5d:71:ae:f9:23:59:fc:09:c4:c0:95:79: 82:1c:77:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ4EoIMqnqhPde3H+14OvRXPK/zcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU0MTI3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGRkM2U2ZDU1NjhjMWZmOWE0YjE5NWI5YTA4OGJjYWI4 YjZkOGY5M2JmYjFhMjNlMDgxOTFhZDM3YWQ0ZTgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKaxansUrLXCNTs1FcM/zQDUXKp5JUw1fEmxoOegFGMJHy nue7ysgE9bWtRotYib9DU8/XzDOnIug5+LpWYFZW2Wz3qVwR/iNc3UyZYHa9MKHN rWv7VWRFJ4IU/PMJ75UVYX0o2rVbwzYeJf1iZsg14nmyE4mKRabj6YTyN4Smhsgm QYOlZMd6kBLslW75t6eKHfcH82edD6qu5BTIz9BUIYTTncETb517rLrkKjAJO22F J4fm7ak3dfENjgW/h+IVotLqyOx3+7ZN41Ga3twPBI/cW2HqEYpOTrsjD6wcfGV0 GmNrq3hLpRDsd3gP059mGV3zBszJg/FNQ4yND0jrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4IbS1tWOy0qay2ISVsJZYdmBwwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyMzk3Y2FjLTQwNmUtNGM4OS04NWU1LWI0YTI5ZWRkODY1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GQ8wDQYJKoZIhvcNAQELBQADggEBAACnlRTmNMSrsvzg4AELVYMzV/OF EJ8iRNHoGlUiH8aw3iJuN7IQk60ALNbO6+f7GVikbRTKfquhmL6oTdfq1TjgAClj Q6dDdliST8/YeiIe6YUj6cs6SlpBkmPAesEEghuV5/auI0pjYU53LBrVKsem3VFE HZZsoE3QWbpE7OWVAp8I1T4FTKJDJ+/8xORZljb6UbhGxmetqQuFqSEvvUqRb/eA aH/w3LJXYjE7NM4U6XsxwCk455R5hMFjzMq4qvuFOlcuB+bJAMh7iKDhb+1t9xR1 q596VoHU1m50dPrpAQ+Ro7zRUzLnUAae8qmbM11xrvkjWfwJxMCVeYIcd7Y= -----END CERTIFICATE-----Generated at Fri Apr 4 23:54:25 2025 by rpki-client