$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c50577a-0584-4873-b250-87c171b5c8e2.roa File: 2c50577a-0584-4873-b250-87c171b5c8e2.roa (raw, json) Hash identifier: cGDsRMqLXQzeZdyPBJ+3B8rK+PSDuZMRPUkAKuCgeU0= Subject key identifier: 09:9A:6A:62:99:29:13:42:0D:AA:66:90:2A:BA:D0:43:8F:CC:30:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6082487EB21D8421FAECEAF155C68C41EEBDFF5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c50577a-0584-4873-b250-87c171b5c8e2.roa Signing time: Tue 18 Feb 2025 15:50:11 +0000 ROA not before: Tue 18 Feb 2025 15:50:11 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:82:48:7e:b2:1d:84:21:fa:ec:ea:f1:55:c6:8c:41:ee:bd:ff:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:50:11 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:59:5b:8f:8b:43:5e:ed:96:db:3f:4a:b2: eb:84:6e:41:bd:1a:c6:89:5d:df:55:2a:51:a3:a2: 5c:a5:15:2b:94:e9:98:77:14:e6:b2:45:bd:9b:1c: 8e:87:6e:ff:94:63:15:f1:26:6d:41:f6:6b:da:82: 20:af:07:a5:fb:2d:40:d8:d4:a0:af:fd:56:df:cb: 6c:e6:13:c4:7a:65:3f:3a:2b:70:03:3c:ed:a9:09: 36:0c:4c:4f:c0:19:e9:2b:68:c4:6c:ae:db:7b:e1: 55:76:7f:e2:8d:dd:93:b4:94:8e:13:f1:a2:46:99: e5:bf:87:dc:41:09:d5:b2:99:1a:bc:d7:fe:03:a9: c8:ec:dd:3f:8b:97:a6:08:4e:25:d6:d4:29:d9:32: 48:cd:75:c2:d2:e7:ba:be:1c:f6:2e:4c:31:07:e7: 1a:46:44:17:c4:a4:9c:55:ef:6b:57:61:b2:d0:2e: c6:31:24:d3:88:d5:1d:21:cc:1a:b7:7d:dc:04:f2: 62:86:2a:11:a9:51:64:63:02:97:b4:30:97:f4:7f: 99:5a:dc:d6:69:6d:99:c2:09:be:c1:30:6e:8e:34: c8:76:93:b2:4e:ac:ff:a1:40:0e:07:6e:cb:23:0a: 41:a0:bb:16:a5:60:7f:d8:4d:ef:81:ca:e2:69:52: e2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9A:6A:62:99:29:13:42:0D:AA:66:90:2A:BA:D0:43:8F:CC:30:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c50577a-0584-4873-b250-87c171b5c8e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.131.0/24 Signature Algorithm: sha256WithRSAEncryption 85:30:5f:91:8e:4f:c3:0c:9d:3b:9a:51:40:4b:59:a7:58:8e: 6c:ea:c8:4b:42:84:26:52:fd:62:dd:6d:3a:1d:fd:70:f0:37: 8c:c6:40:32:e4:a5:ea:3a:7d:ff:9e:82:95:41:75:81:46:cc: 6d:32:79:60:75:cc:c7:dc:df:b5:e3:cc:62:96:18:24:3f:32: 8f:1f:86:71:bb:17:fa:da:11:16:3b:34:19:5b:eb:bf:ae:14: ab:24:d6:06:65:54:3b:53:dc:13:3d:85:3d:4b:9b:07:39:08: ff:29:45:8c:2c:bb:4c:f1:6b:7a:ae:bf:57:a9:33:41:4d:7c: df:a3:e3:ab:a7:72:4c:d4:71:ad:a0:9d:2e:92:0e:f6:e8:7f: 49:5f:2a:9d:84:6d:42:2e:3b:60:14:54:39:23:07:dd:df:32: b9:d8:ee:8e:30:78:7f:a7:e6:55:4d:01:17:e4:30:57:77:f4: 30:eb:f4:3d:e0:b1:7c:71:b6:5a:24:34:88:49:82:c2:07:6d: 12:60:c2:39:6d:5c:5b:3b:28:fc:52:f9:ca:2f:6d:81:ab:e6: 58:a5:81:ef:87:40:c5:52:1e:90:15:69:80:28:ba:62:00:88: e1:72:1c:e3:0e:c1:70:fb:6f:0a:6f:4e:7e:90:18:b8:ee:62: 34:4f:00:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYIJIfrIdhCH67OrxVcaMQe69/10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTU1MDExWhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzA3ZDA3ZWM4MmFjMjVmMTM3NjEwMzRiZDIxY2JhODY2 MWI1ZDY4ZmMzZTAxNGQ3YTYyMGQyZTIyZmNhNzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7kVlbj4tDXu2W2z9KsuuEbkG9GsaJXd9VKlGjolylFSuU 6Zh3FOayRb2bHI6Hbv+UYxXxJm1B9mvagiCvB6X7LUDY1KCv/Vbfy2zmE8R6ZT86 K3ADPO2pCTYMTE/AGekraMRsrtt74VV2f+KN3ZO0lI4T8aJGmeW/h9xBCdWymRq8 1/4Dqcjs3T+Ll6YITiXW1CnZMkjNdcLS57q+HPYuTDEH5xpGRBfEpJxV72tXYbLQ LsYxJNOI1R0hzBq3fdwE8mKGKhGpUWRjApe0MJf0f5la3NZpbZnCCb7BMG6ONMh2 k7JOrP+hQA4HbssjCkGguxalYH/YTe+ByuJpUuI3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCZpqYpkpE0INqmaQKrrQQ4/MMAwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjNTA1NzdhLTA1ODQtNDg3My1iMjUwLTg3YzE3MWI1YzhlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYMwDQYJKoZIhvcNAQELBQADggEBAIUwX5GOT8MMnTuaUUBLWadYjmzq yEtChCZS/WLdbTod/XDwN4zGQDLkpeo6ff+egpVBdYFGzG0yeWB1zMfc37XjzGKW GCQ/Mo8fhnG7F/raERY7NBlb67+uFKsk1gZlVDtT3BM9hT1Lmwc5CP8pRYwsu0zx a3quv1epM0FNfN+j46unckzUca2gnS6SDvbof0lfKp2EbUIuO2AUVDkjB93fMrnY 7o4weH+n5lVNARfkMFd39DDr9D3gsXxxtlokNIhJgsIHbRJgwjltXFs7KPxS+cov bYGr5lilge+HQMVSHpAVaYAoumIAiOFyHOMOwXD7bwpvTn6QGLjuYjRPAJE= -----END CERTIFICATE-----Generated at Thu Mar 13 23:47:43 2025 by rpki-client