$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa File: 47a95b2d-b390-454d-b7fe-61f0be7e13af.roa (raw, json) Hash identifier: qopCP8eEa+3eE1Bzr8NXYM0wfjCfE2NKB4Wfdrb9NMI= Subject key identifier: 71:77:26:CB:34:7D:83:54:34:69:95:1B:E9:67:A4:8C:5D:A0:02:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C0D9CA9C4FD0652548C387B03BCF5D3A0344704 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa Signing time: Tue 11 Mar 2025 00:02:39 +0000 ROA not before: Tue 11 Mar 2025 00:02:39 +0000 ROA not after: Tue 15 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 131.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:0d:9c:a9:c4:fd:06:52:54:8c:38:7b:03:bc:f5:d3:a0:34:47:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 11 00:02:39 2025 GMT Not After : Apr 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6a:a1:de:82:57:8b:ea:b6:54:84:6e:f1:ef: 71:a0:6f:4e:20:79:7d:5e:72:40:07:f3:6b:af:fc: 48:03:3b:9a:36:c5:67:69:7c:db:a0:7b:a6:68:70: eb:70:2b:be:b1:16:dc:6b:85:f0:6f:bd:cd:bd:5a: 6f:32:14:1e:b9:8b:e8:65:21:6f:37:73:5b:13:3d: 9c:07:33:10:15:49:3c:ee:0c:f8:d9:e6:1a:4b:d1: 0b:57:2f:55:9f:d2:8c:d5:cb:c5:2a:a1:a1:75:b4: b5:2b:ec:15:5b:4e:fc:00:44:fe:a5:0f:15:9f:2a: f4:93:d9:23:98:49:43:40:b2:02:b9:b5:b3:a1:93: 51:81:60:dc:bc:93:a3:53:a7:d4:29:88:92:ee:b7: c6:97:26:b4:ee:e1:8c:9e:ea:db:e3:61:04:3c:8c: f6:e0:ee:08:9c:8c:f9:10:9a:38:53:20:f7:13:f9: 3f:37:2e:f2:4f:0c:f3:ee:81:85:84:59:ee:7f:ec: 8c:f7:14:77:ac:07:5f:8b:4c:e6:c2:ce:a0:5e:6b: 48:56:4d:aa:25:48:0a:fa:16:8b:3c:2c:11:78:31: 12:6a:11:3a:79:24:c6:db:2f:0a:fc:af:c0:76:89: e0:58:f1:7b:da:4e:ba:49:ff:9c:d1:9c:88:12:80: 18:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:77:26:CB:34:7D:83:54:34:69:95:1B:E9:67:A4:8C:5D:A0:02:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:04:97:84:91:bc:d0:7d:91:f5:d3:79:dd:d9:a3:99:4e:ce: 0c:b7:9f:b2:0c:b1:ae:0c:15:de:a6:c0:26:55:dd:ee:95:b1: 23:86:c3:b2:e9:cf:f0:46:b1:24:34:0f:b0:f7:f7:40:4c:97: c6:44:1a:4a:60:0a:fd:75:50:a9:cd:8a:d6:9d:8a:fe:53:59: fa:84:19:15:2a:88:19:dc:df:25:aa:62:13:84:8a:f6:22:b2: 1a:21:7d:2d:09:a0:b8:81:ec:9e:af:a6:5d:6c:26:06:5d:bc: 23:9f:92:db:c2:96:d9:8b:42:ab:94:c3:d9:ff:c8:eb:8a:ad: 82:07:35:ed:85:23:1f:28:1e:bf:f5:6e:44:f4:cd:a7:43:10: 68:09:f6:d2:aa:09:a2:ee:d1:56:a6:b9:90:3e:13:97:fb:ca: 2a:6b:08:04:ee:2c:ae:38:88:c9:ca:73:c2:28:2c:73:9f:5c: f5:aa:ad:bd:d0:1f:cc:30:e8:99:52:3d:d8:77:c0:94:f3:01: e9:4f:0c:c0:70:33:a1:4b:c8:d5:2d:ec:55:96:8c:5f:1f:55: 4a:34:e6:0f:65:49:c3:b4:38:e4:43:99:49:fe:c5:d3:c6:37: d9:7d:fd:0b:f3:7b:f5:26:98:42:bb:ca:4c:cf:eb:75:d7:a3: 2b:9c:be:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDA2cqcT9BlJUjDh7A7z106A0RwQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzExMDAwMjM5WhcNMjUwNDE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTA5YThiMTUxYmY1NTlkYjMxYzkzYWFjZWIzMzAwYzNk YWYzNGVlNTA5NGUwNWFkMzBkZmU3ZWE3NmY0NjIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClaqHegleL6rZUhG7x73Ggb04geX1eckAH82uv/EgDO5o2 xWdpfNuge6ZocOtwK76xFtxrhfBvvc29Wm8yFB65i+hlIW83c1sTPZwHMxAVSTzu DPjZ5hpL0QtXL1Wf0ozVy8UqoaF1tLUr7BVbTvwARP6lDxWfKvST2SOYSUNAsgK5 tbOhk1GBYNy8k6NTp9QpiJLut8aXJrTu4Yye6tvjYQQ8jPbg7gicjPkQmjhTIPcT +T83LvJPDPPugYWEWe5/7Iz3FHesB1+LTObCzqBea0hWTaolSAr6Fos8LBF4MRJq ETp5JMbbLwr8r8B2ieBY8XvaTrpJ/5zRnIgSgBgVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcXcmyzR9g1Q0aZUb6WekjF2gAhgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3YTk1YjJkLWIzOTAtNDU0ZC1iN2ZlLTYxZjBiZTdlMTNhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCDfzANBgkqhkiG9w0BAQsFAAOCAQEAUASXhJG80H2R9dN53dmjmU7ODLef sgyxrgwV3qbAJlXd7pWxI4bDsunP8EaxJDQPsPf3QEyXxkQaSmAK/XVQqc2K1p2K /lNZ+oQZFSqIGdzfJapiE4SK9iKyGiF9LQmguIHsnq+mXWwmBl28I5+S28KW2YtC q5TD2f/I64qtggc17YUjHygev/VuRPTNp0MQaAn20qoJou7RVqa5kD4Tl/vKKmsI BO4srjiIycpzwigsc59c9aqtvdAfzDDomVI92HfAlPMB6U8MwHAzoUvI1S3sVZaM Xx9VSjTmD2VJw7Q45EOZSf7F08Y32X39C/N79SaYQrvKTM/rddejK5y+Cw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:27:17 2025 by rpki-client