$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa File: 4391dc68-2a33-4b79-8713-4af8518a52be.roa (raw, json) Hash identifier: ng5Z3otBJVaRjWHzEgj7vHbo8muL1M9zXggE3DD8fSk= Subject key identifier: 86:5D:01:AB:F5:D7:94:B7:F5:09:E0:89:0E:AF:BA:A0:50:52:20:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BD3D6170D0170C325ECED3AE5E2F55AEF79E2C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa Signing time: Mon 10 Mar 2025 15:20:22 +0000 ROA not before: Mon 10 Mar 2025 15:20:22 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.255.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d3:d6:17:0d:01:70:c3:25:ec:ed:3a:e5:e2:f5:5a:ef:79:e2:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:20:22 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a7:2c:6a:a3:23:48:33:d6:ce:b6:90:11:00: 0e:0c:a3:6e:18:74:ac:80:47:05:71:c8:a0:21:39: 16:a9:e9:4e:fa:3c:10:6d:17:fa:a2:98:51:be:84: 68:32:10:72:b5:54:9d:db:2e:1a:2c:81:a2:f0:e8: 9f:6b:3a:48:2b:98:c0:b2:70:da:50:73:26:46:1b: d2:eb:ea:12:7b:6d:bb:c0:0c:c6:ec:7b:a8:fe:74: 6e:fe:3a:23:6b:3b:27:33:ad:9e:05:17:08:d5:50: ed:73:53:f8:29:aa:78:9c:bb:cc:18:cb:9e:da:0c: 6e:2e:a2:3c:c4:35:99:b4:dd:aa:fc:af:b0:ea:90: c5:0a:9b:05:47:0a:d5:6f:be:12:9c:c6:31:4b:69: 7a:17:3f:d2:6a:68:85:40:de:9b:5a:50:60:18:31: 70:26:9a:b2:6c:4a:62:46:46:34:d2:e7:51:b5:ff: 3d:58:49:96:37:ec:b4:3e:9b:f9:d8:10:f9:0f:43: 73:ae:0a:73:0b:bc:9f:dc:72:e7:2b:5b:9d:31:ce: 52:f7:91:8b:45:23:b2:ec:61:be:f5:e4:27:c8:91: 69:77:a0:a1:c9:7e:23:be:ef:d4:4c:76:68:aa:4c: 12:bd:a0:7e:5f:ce:c0:c9:e2:68:4f:05:71:d7:f5: 10:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5D:01:AB:F5:D7:94:B7:F5:09:E0:89:0E:AF:BA:A0:50:52:20:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.255.64.0/18 Signature Algorithm: sha256WithRSAEncryption 99:15:5a:87:35:45:c1:84:55:3e:d9:4c:90:0a:52:a5:28:4c: 1a:56:d7:df:c0:41:d6:1a:75:65:72:ae:47:86:15:b7:ef:f5: aa:5f:47:bc:33:df:ed:0e:ef:0b:3f:52:a4:13:29:52:c8:32: a6:54:0e:b5:d2:db:fe:d5:4f:92:d4:23:ff:09:0f:13:33:31: 30:95:c2:a9:d1:24:50:9c:75:5b:84:76:e6:11:84:c4:94:bf: 1f:8b:ba:5d:a4:b3:af:68:9a:e8:f6:0c:a8:a6:15:fd:9e:e9: 7e:84:2c:08:b2:88:b5:0a:27:8e:24:8e:e7:12:ad:c9:cb:d3: db:d0:dc:73:48:07:38:27:ed:79:54:b7:ff:b4:ca:ca:47:56: 33:f8:fb:73:e2:e0:9d:f3:83:f1:1a:06:8b:07:ef:41:ae:e6: c5:aa:1b:14:78:32:c1:0e:f4:d9:c8:52:d2:ec:b8:4a:10:72: 72:40:ba:91:54:0d:94:14:3d:c4:9f:d6:8f:4b:39:37:ab:8b: 60:f8:1a:db:60:99:8c:43:70:1c:8a:7b:de:7a:9e:83:d4:89: 42:e7:d8:69:e0:a2:a0:dd:bf:94:34:c5:78:f7:ad:25:55:32: 0d:56:4e:04:7a:04:37:72:de:c1:e6:23:e3:4f:2c:39:a3:9d: 6f:99:1d:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC9PWFw0BcMMl7O065eL1Wu954sMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUyMDIyWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmNlZGQ2YmQ4NjIxZTdiMTg3YjFlZDJiN2U3YTllNGU1 M2UxY2I1Y2U2MTQ3YzY0OTVkN2ZkMTY1NzcxOTgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDpyxqoyNIM9bOtpARAA4Mo24YdKyARwVxyKAhORap6U76 PBBtF/qimFG+hGgyEHK1VJ3bLhosgaLw6J9rOkgrmMCycNpQcyZGG9Lr6hJ7bbvA DMbse6j+dG7+OiNrOyczrZ4FFwjVUO1zU/gpqnicu8wYy57aDG4uojzENZm03ar8 r7DqkMUKmwVHCtVvvhKcxjFLaXoXP9JqaIVA3ptaUGAYMXAmmrJsSmJGRjTS51G1 /z1YSZY37LQ+m/nYEPkPQ3OuCnMLvJ/ccucrW50xzlL3kYtFI7LsYb715CfIkWl3 oKHJfiO+79RMdmiqTBK9oH5fzsDJ4mhPBXHX9RB5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhl0Bq/XXlLf1CeCJDq+6oFBSIEUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTFkYzY4LTJhMzMtNGI3OS04NzEzLTRhZjg1MThhNTJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM/0AwDQYJKoZIhvcNAQELBQADggEBAJkVWoc1RcGEVT7ZTJAKUqUoTBpW 19/AQdYadWVyrkeGFbfv9apfR7wz3+0O7ws/UqQTKVLIMqZUDrXS2/7VT5LUI/8J DxMzMTCVwqnRJFCcdVuEduYRhMSUvx+Lul2ks69omuj2DKimFf2e6X6ELAiyiLUK J44kjucSrcnL09vQ3HNIBzgn7XlUt/+0yspHVjP4+3Pi4J3zg/EaBosH70Gu5sWq GxR4MsEO9NnIUtLsuEoQcnJAupFUDZQUPcSf1o9LOTeri2D4GttgmYxDcByKe956 noPUiULn2GngoqDdv5Q0xXj3rSVVMg1WTgR6BDdy3sHmI+NPLDmjnW+ZHQE= -----END CERTIFICATE-----Generated at Thu Mar 13 23:27:50 2025 by rpki-client