$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa File: 3de3c612-36d7-4d0e-8a61-dc9891466376.roa (raw, json) Hash identifier: lg6/G5Xw6hlfjrttWtR8SFDCWHIVp/unu7Hddak780A= Subject key identifier: 1B:17:15:72:63:F2:A9:6F:82:89:16:AA:6D:D0:87:76:D9:A3:F8:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EBFC2D56B77A782F2DAF4E7B332244ABF377817 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa Signing time: Tue 18 Feb 2025 00:51:10 +0000 ROA not before: Tue 18 Feb 2025 00:51:10 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bf:c2:d5:6b:77:a7:82:f2:da:f4:e7:b3:32:24:4a:bf:37:78:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:51:10 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:04:66:08:b6:60:d7:d1:6d:03:1d:4e:31:ec: 85:3e:32:79:c7:f3:ce:e4:85:cf:46:97:40:2b:b2: 35:aa:71:2f:a1:92:5d:ee:8c:1a:33:90:58:83:17: dd:4d:5b:f6:ed:6a:cc:40:bf:03:cc:dc:06:ff:85: a6:28:c9:ba:3f:8e:ef:b8:31:8d:ae:19:02:9d:dc: 59:dc:6a:91:31:27:6b:a0:f3:84:b1:97:1d:17:85: de:23:96:a7:2c:e1:a3:ac:cb:89:66:79:37:b0:9d: 86:f9:c3:6b:dc:27:dd:7a:e8:f5:89:24:26:aa:a9: b4:71:62:11:0c:0d:19:dc:8e:92:3a:38:fd:3a:08: f1:6c:73:07:6a:56:a9:f7:62:cd:b1:90:b3:ea:4b: ea:13:85:42:05:c5:16:fe:2f:20:b3:44:dd:ca:99: 35:3a:74:9f:16:90:0c:55:1c:8a:26:c5:ef:31:9c: 11:03:d7:fc:23:59:6f:f3:ab:c1:7e:e9:93:50:3f: 03:a2:2a:a9:93:4e:f5:f2:69:89:dd:ab:48:54:dd: 8a:1f:49:53:11:6b:9a:4a:3d:2c:30:21:d9:e6:59: 21:86:88:13:61:82:e5:62:62:ba:20:33:28:2e:1d: 77:5d:b6:f1:9d:8b:8f:d9:0c:2a:e3:63:e7:68:c1: b0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:17:15:72:63:F2:A9:6F:82:89:16:AA:6D:D0:87:76:D9:A3:F8:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.113.0/24 Signature Algorithm: sha256WithRSAEncryption 01:78:37:f2:b0:75:4c:f3:9b:e2:a8:e3:43:7e:1d:ec:00:84: 59:a2:b2:a2:46:ab:36:0a:95:1d:26:44:42:a8:33:38:18:3d: b1:c1:9c:bb:e3:71:b4:de:44:34:ba:a1:94:61:a1:a5:cb:f2: cd:62:c5:3c:e9:a1:ed:84:55:c8:91:86:ce:70:7d:92:08:ce: b4:29:5f:f2:85:2d:16:df:b4:4e:7d:fd:1e:4f:cb:cf:ec:d6: 7e:ac:9b:12:9e:70:ae:40:f7:d6:af:8c:8d:b4:89:78:62:bf: 83:3f:48:f1:41:c7:01:cd:b3:3e:e9:2c:ca:1f:be:94:b7:cf: 1a:ae:aa:49:b5:70:58:79:e5:2e:4f:22:20:94:51:0d:89:d1: 65:ca:e3:cf:2c:48:a8:d7:44:70:ae:78:fb:3d:88:09:d9:ec: c8:a1:f5:dd:ef:5e:45:e5:6b:c4:8b:e1:5f:75:19:34:76:16: 02:ec:0e:34:27:d5:4d:e9:e9:74:85:ed:61:46:3d:5c:be:24: f4:94:20:4e:4c:a6:26:a6:54:61:d1:c4:35:76:ac:7c:48:bb: 12:9a:43:4c:bb:41:d0:67:b1:6d:79:9d:b3:a4:4a:7f:65:17: 2b:08:fb:18:98:7a:a6:ed:c3:85:64:88:bd:0a:ec:a2:61:e1: 22:bc:0b:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPr/C1Wt3p4Ly2vTnszIkSr83eBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MDA1MTEwWhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDAyODQxNzIzMGFhNTUwNDc5Mjk3ZWM5NTg1NTVjZDUy ZDQxMDM1NzVhYmY3MTVjNmI3MzgzMGU5ZTYwYzdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJBGYItmDX0W0DHU4x7IU+MnnH887khc9Gl0ArsjWqcS+h kl3ujBozkFiDF91NW/btasxAvwPM3Ab/haYoybo/ju+4MY2uGQKd3FncapExJ2ug 84Sxlx0Xhd4jlqcs4aOsy4lmeTewnYb5w2vcJ9166PWJJCaqqbRxYhEMDRncjpI6 OP06CPFscwdqVqn3Ys2xkLPqS+oThUIFxRb+LyCzRN3KmTU6dJ8WkAxVHIomxe8x nBED1/wjWW/zq8F+6ZNQPwOiKqmTTvXyaYndq0hU3YofSVMRa5pKPSwwIdnmWSGG iBNhguViYrogMyguHXddtvGdi4/ZDCrjY+dowbCFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGxcVcmPyqW+CiRaqbdCHdtmj+K8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkZTNjNjEyLTM2ZDctNGQwZS04YTYxLWRjOTg5MTQ2NjM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nEwDQYJKoZIhvcNAQELBQADggEBAAF4N/KwdUzzm+Ko40N+HewAhFmi sqJGqzYKlR0mREKoMzgYPbHBnLvjcbTeRDS6oZRhoaXL8s1ixTzpoe2EVciRhs5w fZIIzrQpX/KFLRbftE59/R5Py8/s1n6smxKecK5A99avjI20iXhiv4M/SPFBxwHN sz7pLMofvpS3zxquqkm1cFh55S5PIiCUUQ2J0WXK488sSKjXRHCuePs9iAnZ7Mih 9d3vXkXla8SL4V91GTR2FgLsDjQn1U3p6XSF7WFGPVy+JPSUIE5MpiamVGHRxDV2 rHxIuxKaQ0y7QdBnsW15nbOkSn9lFysI+xiYeqbtw4VkiL0K7KJh4SK8C7U= -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:12 2025 by rpki-client