$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa File: 2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa (raw, json) Hash identifier: elGsVarh7orlKLW5mVrFsQFc05flyk/PqCkm9YxT6Rc= Subject key identifier: 1E:C8:50:93:FF:1A:96:68:09:45:F7:1A:13:CA:DB:C9:F5:C6:70:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 172DF25EC0CD1FEDA1222F83FECD42FE3F63592D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa Signing time: Mon 10 Mar 2025 15:11:16 +0000 ROA not before: Mon 10 Mar 2025 15:11:16 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2d:f2:5e:c0:cd:1f:ed:a1:22:2f:83:fe:cd:42:fe:3f:63:59:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:11:16 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5b:d9:e1:63:ef:41:7f:72:35:0e:13:25:b8: 6a:da:4f:a5:88:12:f0:43:7c:4f:83:f0:31:a5:d4: 9a:4c:00:d4:bd:62:7a:59:2c:65:fc:1c:5b:6f:4c: f7:b7:61:c1:5e:ab:67:3c:4e:ba:3f:8e:ab:bc:4e: 5e:57:bb:aa:54:c0:65:2c:51:f3:53:c7:9c:24:b7: 6b:94:dc:da:0f:6e:d9:f4:1b:a9:ee:60:6d:b6:d1: 87:7b:d7:ac:23:f8:ff:f9:89:40:60:ea:03:57:77: e9:8c:10:e7:7b:41:e9:e2:2c:d4:e7:e2:00:32:2b: 4d:db:84:f2:a5:15:4b:9b:0f:84:e3:af:33:17:76: ef:31:5c:61:7b:dc:47:ce:c5:bc:e3:3b:53:ef:e2: 7a:42:a8:71:f1:03:ec:15:99:02:4c:4c:a0:91:37: 46:7a:33:0a:ff:3d:13:75:95:fa:00:23:9f:62:72: 74:ff:81:97:70:c4:dc:ff:41:47:00:df:72:ac:a1: 78:a6:41:c8:32:bb:f2:d3:22:d4:22:72:a4:5a:69: 6d:75:dd:78:72:cc:9a:8c:5e:f4:28:38:89:9d:13: 30:87:d9:ce:47:31:d2:8a:79:3f:d9:c6:62:3f:96: 29:2e:eb:72:5d:95:40:fb:eb:dd:58:13:70:ab:71: 01:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C8:50:93:FF:1A:96:68:09:45:F7:1A:13:CA:DB:C9:F5:C6:70:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:0c:84:68:33:60:82:31:03:d7:9c:7e:7e:93:fa:29:04:55: 8e:a1:b9:de:96:ed:15:a2:c3:cf:7f:7f:ec:88:a3:67:6b:1f: d0:2c:e4:19:d8:0a:00:11:90:8e:84:ee:25:98:d9:83:c0:41: 49:d7:8e:9a:e5:9a:d0:d6:6c:10:2f:95:78:2e:0f:d7:88:3a: 6a:c8:c1:f6:22:88:d3:5b:63:61:21:36:a8:ae:f6:dd:09:4b: 16:80:46:21:7d:7c:43:9f:c8:b1:df:eb:71:18:e7:bd:8e:c5: 30:87:32:c7:bb:70:4e:e3:29:de:32:dd:11:d5:29:1e:36:54: 5b:12:66:7c:32:53:0e:84:e2:a1:a2:53:51:ea:38:2e:7f:c2: e3:4a:6a:3a:69:2e:cb:6a:7e:15:5d:00:9b:ea:8e:2d:c8:15: 3a:49:3f:05:ca:aa:22:82:08:fa:90:c5:3a:f2:33:9f:89:ec: 05:55:06:38:c5:66:7a:48:79:75:da:b9:56:47:70:58:e5:dc: ad:10:66:77:f0:b5:f4:ba:77:2d:4c:30:21:7d:b0:28:e0:72: 1e:60:d8:e5:87:8f:50:6c:7a:a8:92:f9:e1:af:d3:91:6d:24: 81:fb:10:0b:cd:86:24:bf:cb:a6:8c:0d:9c:ec:3f:74:03:37: f1:b3:21:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFy3yXsDNH+2hIi+D/s1C/j9jWS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUxMTE2WhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDlhYmI1YjcwMmY2YmFkNWRhNjg4MTM1NWVkMmRkOWNi NzJkYTI2MTgxMDFjZjg1MDg1ODNmMDdkNTAxZTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXW9nhY+9Bf3I1DhMluGraT6WIEvBDfE+D8DGl1JpMANS9 YnpZLGX8HFtvTPe3YcFeq2c8Tro/jqu8Tl5Xu6pUwGUsUfNTx5wkt2uU3NoPbtn0 G6nuYG220Yd716wj+P/5iUBg6gNXd+mMEOd7QeniLNTn4gAyK03bhPKlFUubD4Tj rzMXdu8xXGF73EfOxbzjO1Pv4npCqHHxA+wVmQJMTKCRN0Z6Mwr/PRN1lfoAI59i cnT/gZdwxNz/QUcA33KsoXimQcgyu/LTItQicqRaaW113XhyzJqMXvQoOImdEzCH 2c5HMdKKeT/ZxmI/liku63JdlUD7691YE3CrcQGNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHshQk/8almgJRfcaE8rbyfXGcAYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZjcwNDE2LTM5N2EtNGVhNC1iN2IxLWFkN2UwNDVjNzJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2hjANBgkqhkiG9w0BAQsFAAOCAQEAXgyEaDNggjED15x+fpP6KQRVjqG5 3pbtFaLDz39/7IijZ2sf0CzkGdgKABGQjoTuJZjZg8BBSdeOmuWa0NZsEC+VeC4P 14g6asjB9iKI01tjYSE2qK723QlLFoBGIX18Q5/Isd/rcRjnvY7FMIcyx7twTuMp 3jLdEdUpHjZUWxJmfDJTDoTioaJTUeo4Ln/C40pqOmkuy2p+FV0Am+qOLcgVOkk/ BcqqIoII+pDFOvIzn4nsBVUGOMVmekh5ddq5VkdwWOXcrRBmd/C19Lp3LUwwIX2w KOByHmDY5YePUGx6qJL54a/TkW0kgfsQC82GJL/LpowNnOw/dAM38bMh4A== -----END CERTIFICATE-----Generated at Thu Mar 13 23:36:44 2025 by rpki-client