$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa File: 2cd41937-b307-4b78-8756-47c56035ec43.roa (raw, json) Hash identifier: brEZNqeJR4KIL5u03MPx8juXnAyVpK2ZMAEnvSI0QNE= Subject key identifier: 26:61:82:75:90:4D:4C:16:6F:78:92:72:E2:42:C6:9C:E6:B3:06:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 193E782A64FBA57EB78C5E473C304FD9BA5C5159 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa Signing time: Wed 12 Feb 2025 00:00:00 +0000 ROA not before: Wed 12 Feb 2025 00:00:00 +0000 ROA not after: Wed 19 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3e:78:2a:64:fb:a5:7e:b7:8c:5e:47:3c:30:4f:d9:ba:5c:51:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 12 00:00:00 2025 GMT Not After : Mar 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:21:8b:50:0a:77:f7:57:be:5c:72:b4:6c:d8: 10:95:69:6c:44:b8:12:3e:82:ff:61:e3:50:c6:f5: bf:c0:30:19:1a:fa:3e:3f:ae:e7:80:ce:9d:fb:dd: 2d:1c:82:87:34:28:03:70:6f:30:dd:00:03:13:47: 14:cd:9e:77:b1:61:99:96:46:51:81:dc:ca:ce:d6: f5:4a:37:03:75:77:c7:30:5d:61:ad:5e:34:cc:d8: 03:66:dc:d5:a4:8f:ec:7a:1d:79:fb:37:b8:59:7d: ca:56:06:b6:0a:74:14:e5:f7:f1:bf:62:f5:f2:89: f5:51:2f:17:5b:90:ea:f4:c1:1d:f6:c0:46:5c:9a: 8f:4b:08:35:24:a3:81:f2:34:2a:3c:48:99:a2:93: dc:0d:3d:bd:61:43:9a:ac:d0:b3:a2:39:be:2f:40: 49:82:cf:5c:96:60:9c:d1:a4:f2:46:cf:46:fc:b4: 22:16:ed:ff:44:87:d6:26:48:91:8e:35:23:af:e9: 38:c5:02:c2:dd:8e:f2:ac:3f:1c:7d:59:da:78:da: d3:a6:0a:ba:f3:35:72:1e:01:20:99:be:1c:b6:69: 1b:c2:58:ed:7f:65:8a:ff:8d:45:0a:d0:e3:dd:a9: f1:37:64:99:66:4c:24:ae:cb:12:94:d0:07:47:ab: 64:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:61:82:75:90:4D:4C:16:6F:78:92:72:E2:42:C6:9C:E6:B3:06:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.16.0/20 Signature Algorithm: sha256WithRSAEncryption 81:83:7b:bf:ce:2b:bd:6d:a2:63:60:6a:2d:03:fa:dc:18:8b: 9e:91:f2:b8:74:65:87:62:65:f5:89:0b:13:15:5b:5a:aa:fe: fc:db:52:e2:96:ce:a0:5d:26:a0:2b:98:9d:5b:fc:33:0d:4c: 83:fb:8f:bd:d6:83:66:f7:56:01:7b:06:ed:f0:1e:bf:73:02: d7:f1:18:bd:2c:fe:60:d2:41:6f:4e:5f:fb:a7:50:b7:33:32: fa:bd:b9:53:39:43:0b:48:b4:a9:6e:84:12:8c:21:7f:a5:53: a4:af:d7:86:21:cc:8d:80:6e:42:0e:3b:4a:e2:bf:02:e2:79: ba:05:33:db:c0:2f:57:0c:bd:31:7f:45:a5:25:c1:82:52:a3: db:75:85:53:be:fb:17:82:8b:12:da:f5:da:60:4a:6e:c2:18: 87:d2:09:c7:2a:5c:0e:e1:19:b7:f2:52:b1:07:a0:4a:62:e2: 1b:da:46:81:f0:aa:f4:67:1b:6d:04:af:eb:e5:92:6c:46:11: 85:6b:31:c2:78:77:14:48:a5:53:8f:44:dd:36:be:c5:61:ca: 2a:c6:c2:70:fb:41:b9:d3:ae:98:e4:41:7f:8d:26:a1:cb:f4: 90:ac:f1:3b:64:4b:9e:55:d6:df:0e:19:1c:42:63:00:4d:5a: f5:af:73:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGT54KmT7pX63jF5HPDBP2bpcUVkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjEyMDAwMDAwWhcNMjUwMzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODIyNmFjYzg2NGQ5MDg4YmE3NDU4Mjc3Mjc2NzQ1ZGE1 ODUwOGQ3YTVjMjM2NmZhZjAyZTE5NTYxM2EwZmJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOIYtQCnf3V75ccrRs2BCVaWxEuBI+gv9h41DG9b/AMBka +j4/rueAzp373S0cgoc0KANwbzDdAAMTRxTNnnexYZmWRlGB3MrO1vVKNwN1d8cw XWGtXjTM2ANm3NWkj+x6HXn7N7hZfcpWBrYKdBTl9/G/YvXyifVRLxdbkOr0wR32 wEZcmo9LCDUko4HyNCo8SJmik9wNPb1hQ5qs0LOiOb4vQEmCz1yWYJzRpPJGz0b8 tCIW7f9Eh9YmSJGONSOv6TjFAsLdjvKsPxx9Wdp42tOmCrrzNXIeASCZvhy2aRvC WO1/ZYr/jUUK0OPdqfE3ZJlmTCSuyxKU0AdHq2TFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJmGCdZBNTBZveJJy4kLGnOazBuEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjZDQxOTM3LWIzMDctNGI3OC04NzU2LTQ3YzU2MDM1ZWM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjNhAwDQYJKoZIhvcNAQELBQADggEBAIGDe7/OK71tomNgai0D+twYi56R 8rh0ZYdiZfWJCxMVW1qq/vzbUuKWzqBdJqArmJ1b/DMNTIP7j73Wg2b3VgF7Bu3w Hr9zAtfxGL0s/mDSQW9OX/unULczMvq9uVM5QwtItKluhBKMIX+lU6Sv14YhzI2A bkIOO0rivwLieboFM9vAL1cMvTF/RaUlwYJSo9t1hVO++xeCixLa9dpgSm7CGIfS CccqXA7hGbfyUrEHoEpi4hvaRoHwqvRnG20Er+vlkmxGEYVrMcJ4dxRIpVOPRN02 vsVhyirGwnD7QbnTrpjkQX+NJqHL9JCs8TtkS55V1t8OGRxCYwBNWvWvc+g= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:00 2025 by rpki-client