$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa File: 425642c2-ae67-4aad-931d-f508fb8f82b3.roa (raw, json) Hash identifier: jj9rfS4QvjqJAWTphI7MU++wiLRdXuI0bQgpuPoN1Rs= Subject key identifier: 00:F9:76:56:20:DD:A3:2B:E8:29:51:56:41:A3:C4:FD:5B:74:24:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 463C038549D1D61B6B0760E78CF0D14E7CF0846D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa Signing time: Mon 03 Mar 2025 19:01:32 +0000 ROA not before: Mon 03 Mar 2025 19:01:32 +0000 ROA not after: Mon 07 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:3c:03:85:49:d1:d6:1b:6b:07:60:e7:8c:f0:d1:4e:7c:f0:84:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 3 19:01:32 2025 GMT Not After : Apr 7 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:25:ec:12:9f:40:e7:75:78:85:59:5f:ef:de: 63:72:7a:79:b5:8d:92:f1:d7:9a:cd:a0:fb:ff:f1: 07:87:80:77:79:ea:1c:e1:99:1a:a4:1a:5f:6f:e0: 78:a4:a4:54:0d:35:79:63:65:bd:8c:c5:1b:29:61: bb:44:80:8d:d3:00:1c:ec:f3:bf:1a:60:62:f9:34: fc:45:a6:3b:10:d4:27:70:b3:29:07:dd:e5:28:e6: b9:1f:c1:95:78:b6:22:5e:47:fa:b2:79:b9:5f:ad: 84:97:93:73:3b:28:29:40:14:78:13:9e:10:4e:47: be:c3:b9:c2:4a:69:57:ad:65:3b:8d:e8:13:50:37: d1:2b:59:a7:80:34:2c:df:12:29:cf:cf:07:91:c2: 23:e5:a7:3e:ad:0a:95:7d:8e:c6:8c:52:fa:aa:89: 9f:70:d9:71:8f:84:d4:e0:17:e7:53:c5:65:5b:7d: 9a:ef:ab:fb:7b:b2:03:8b:c8:f1:1b:fa:3d:97:a2: d7:6c:b1:08:0f:ce:0e:eb:97:69:33:40:c5:0e:ef: bf:b5:7b:4b:12:01:ea:08:63:8a:79:e2:f0:82:5d: d3:a0:1b:eb:0b:4a:ee:50:e0:98:37:3c:75:ea:90: a9:b1:f4:4d:18:e3:9d:91:a7:c9:5b:83:48:35:1a: a3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F9:76:56:20:DD:A3:2B:E8:29:51:56:41:A3:C4:FD:5B:74:24:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:8c:14:d0:08:6d:9f:61:f1:d3:29:d1:c4:0d:87:d6:c5:56: 50:12:5a:0f:24:77:4e:b4:b9:98:47:76:94:24:fe:ab:ed:3c: 5d:0e:b0:a6:db:ce:2b:28:90:9f:17:10:de:28:25:6f:d5:79: 36:81:4b:9e:99:7b:63:79:53:0a:44:26:08:77:2f:8a:f3:08: 9a:c7:70:8e:b2:39:26:3c:b0:c7:c8:65:e0:2c:4f:47:a6:34: 98:e6:4e:62:e9:0a:9c:60:2e:05:24:86:88:be:e5:c2:1f:2f: 33:22:ef:48:11:23:3e:ea:7b:e0:ef:0d:b1:a3:f2:b8:3e:86: 23:55:49:c9:48:62:51:09:a7:f1:21:a4:00:ed:07:c1:85:e8: ea:e7:0e:b7:23:fa:e8:f0:58:4f:2a:6c:a7:11:df:d4:f7:03: d3:d7:42:78:22:a3:e6:a1:52:3b:0b:5e:ec:1b:93:74:5c:55: 26:e5:1d:ae:61:04:d4:e1:48:82:a4:76:78:b8:f9:65:5f:ca: 00:c0:19:57:53:65:b5:6f:ec:1d:fb:10:ff:3c:6d:4b:e7:ee: 3e:fd:95:5c:86:3e:98:86:8e:3a:8d:33:49:87:0e:10:32:1c: e1:66:4e:07:cf:87:5c:f4:26:a4:9f:03:bf:e9:26:3e:00:b3: a3:e7:cc:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURjwDhUnR1htrB2DnjPDRTnzwhG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzAzMTkwMTMyWhcNMjUwNDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmYyODU5M2FiYmU5ZjRlNmQyNzc2ODNhNWI0ZmYzOWZj MGQ4MGUxN2ZkZjcwNzdhYTU2NzgwNzUzYWExNjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjJewSn0DndXiFWV/v3mNyenm1jZLx15rNoPv/8QeHgHd5 6hzhmRqkGl9v4HikpFQNNXljZb2MxRspYbtEgI3TABzs878aYGL5NPxFpjsQ1Cdw sykH3eUo5rkfwZV4tiJeR/qyeblfrYSXk3M7KClAFHgTnhBOR77DucJKaVetZTuN 6BNQN9ErWaeANCzfEinPzweRwiPlpz6tCpV9jsaMUvqqiZ9w2XGPhNTgF+dTxWVb fZrvq/t7sgOLyPEb+j2XotdssQgPzg7rl2kzQMUO77+1e0sSAeoIY4p54vCCXdOg G+sLSu5Q4Jg3PHXqkKmx9E0Y452Rp8lbg0g1GqPHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAPl2ViDdoyvoKVFWQaPE/Vt0JOUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTY0MmMyLWFlNjctNGFhZC05MzFkLWY1MDhmYjhmODJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwzANBgkqhkiG9w0BAQsFAAOCAQEAmowU0Ahtn2Hx0ynRxA2H1sVWUBJa DyR3TrS5mEd2lCT+q+08XQ6wptvOKyiQnxcQ3iglb9V5NoFLnpl7Y3lTCkQmCHcv ivMImsdwjrI5Jjywx8hl4CxPR6Y0mOZOYukKnGAuBSSGiL7lwh8vMyLvSBEjPup7 4O8NsaPyuD6GI1VJyUhiUQmn8SGkAO0HwYXo6ucOtyP66PBYTypspxHf1PcD09dC eCKj5qFSOwte7BuTdFxVJuUdrmEE1OFIgqR2eLj5ZV/KAMAZV1NltW/sHfsQ/zxt S+fuPv2VXIY+mIaOOo0zSYcOEDIc4WZOB8+HXPQmpJ8Dv+kmPgCzo+fMyQ== -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:22 2025 by rpki-client