$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa File: 54e42db5-0b5b-478b-82ca-813f1638abd2.roa (raw, json) Hash identifier: aF+OPqog008uCpWbgzcJFyvbuMMy8tXMHWirR5So+Es= Subject key identifier: 28:92:42:12:06:6D:FC:9A:0F:EF:56:91:6B:46:05:B5:AF:3C:3E:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7407E1A7231F011BC730DA100D446D7CEA534E58 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa Signing time: Tue 18 Feb 2025 15:11:55 +0000 ROA not before: Tue 18 Feb 2025 15:11:55 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.176.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:07:e1:a7:23:1f:01:1b:c7:30:da:10:0d:44:6d:7c:ea:53:4e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:11:55 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:08:b3:09:e6:fd:a4:03:00:99:03:15:45:a6: 9f:03:62:dc:fc:b8:f4:8e:bc:58:42:e1:e4:98:1d: f9:82:83:7a:77:c3:5f:d2:f1:0b:ef:7d:2a:26:85: c3:68:06:8f:b5:26:a7:3b:b5:85:a1:9d:63:c3:7d: de:61:42:e0:f5:ae:36:db:78:1b:4b:df:a4:f6:cf: d6:37:a6:15:14:d5:e9:96:95:f4:ba:ac:b7:83:10: cd:4f:b5:33:51:e1:e3:34:cc:f7:86:20:a5:f0:bd: 2c:07:bb:72:33:38:e4:f6:bc:8c:9c:c6:39:f0:76: 47:20:10:7c:80:62:1e:f4:99:73:0d:d2:54:7c:73: 06:49:0e:43:7c:fc:7f:e4:dd:6c:2a:ec:22:77:cc: 2c:c4:b5:74:60:67:09:43:b9:2e:c9:19:36:40:0c: f9:22:af:79:69:9f:b3:d3:d4:a2:18:2a:07:97:08: 2d:d8:29:b0:ed:0c:34:84:82:93:e5:b9:d7:b8:56: 08:8f:00:4c:8f:ad:07:79:a8:ab:d9:d6:d8:f8:fa: 99:02:c2:a5:96:b9:76:54:90:a0:3f:4d:8a:26:a1: c4:25:21:28:93:cd:e4:7b:98:cd:d8:0a:b6:55:96: 2b:e9:c7:06:6e:0d:3a:33:15:cb:71:3f:b6:e8:5e: e7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:92:42:12:06:6D:FC:9A:0F:EF:56:91:6B:46:05:B5:AF:3C:3E:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.176.0.0/14 Signature Algorithm: sha256WithRSAEncryption 39:a9:45:b5:a0:36:9f:57:fb:ea:f1:ca:fd:50:c3:a8:b7:6c: 31:dc:07:f7:b0:da:ca:80:c8:98:14:ec:8e:21:ea:fb:18:5b: 59:41:79:d6:56:20:38:7e:39:e9:32:12:20:1b:75:b9:8e:53: 8d:7d:4b:25:17:1c:1a:9f:36:75:80:7c:fa:bf:01:86:46:00: 75:19:e4:c1:5f:41:f7:31:5f:72:f7:24:3d:55:13:6e:9a:bf: 3f:05:da:cc:a5:07:a1:aa:32:b8:8e:af:75:81:9e:b0:5c:81: 7e:72:c2:75:59:b9:82:47:33:24:12:cd:e4:44:e8:1d:0d:9b: f5:4b:e4:9a:d4:4a:63:be:b4:d5:64:f0:a3:f3:e5:51:25:56: 10:a7:28:d9:43:08:b5:53:b0:8d:28:e1:c5:8b:3e:9b:aa:b7: a0:34:25:58:3b:2e:aa:37:16:26:84:4c:f4:ec:e3:87:11:d7: fc:0c:3e:90:24:18:50:de:b5:78:11:d2:e6:4d:29:3c:0f:bb: 42:08:f1:b4:7a:10:88:be:ec:c7:9e:01:16:e6:c8:bd:72:5b: 3a:18:b5:d2:56:8b:14:84:38:0c:3c:88:c0:aa:9b:1d:62:ab: fb:17:7a:c5:04:34:b5:5b:2f:47:89:aa:ae:99:9e:7e:23:ef: 59:36:16:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdAfhpyMfARvHMNoQDURtfOpTTlgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTUxMTU1WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzE3MjE1YjNmZWRhYTIzYWIzMDNkMDI4MmE3MWRiZmFk ZmYzMDI1OWRkY2MxNWVkMWM4YTEyY2EzMTYyOWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcCLMJ5v2kAwCZAxVFpp8DYtz8uPSOvFhC4eSYHfmCg3p3 w1/S8QvvfSomhcNoBo+1Jqc7tYWhnWPDfd5hQuD1rjbbeBtL36T2z9Y3phUU1emW lfS6rLeDEM1PtTNR4eM0zPeGIKXwvSwHu3IzOOT2vIycxjnwdkcgEHyAYh70mXMN 0lR8cwZJDkN8/H/k3Wwq7CJ3zCzEtXRgZwlDuS7JGTZADPkir3lpn7PT1KIYKgeX CC3YKbDtDDSEgpPlude4VgiPAEyPrQd5qKvZ1tj4+pkCwqWWuXZUkKA/TYomocQl ISiTzeR7mM3YCrZVlivpxwZuDTozFctxP7boXudDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKJJCEgZt/JoP71aRa0YFta88PtIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZTQyZGI1LTBiNWItNDc4Yi04MmNhLTgxM2YxNjM4YWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBsDANBgkqhkiG9w0BAQsFAAOCAQEAOalFtaA2n1f76vHK/VDDqLdsMdwH 97DayoDImBTsjiHq+xhbWUF51lYgOH456TISIBt1uY5TjX1LJRccGp82dYB8+r8B hkYAdRnkwV9B9zFfcvckPVUTbpq/PwXazKUHoaoyuI6vdYGesFyBfnLCdVm5gkcz JBLN5EToHQ2b9UvkmtRKY7601WTwo/PlUSVWEKco2UMItVOwjSjhxYs+m6q3oDQl WDsuqjcWJoRM9OzjhxHX/Aw+kCQYUN61eBHS5k0pPA+7QgjxtHoQiL7sx54BFubI vXJbOhi10laLFIQ4DDyIwKqbHWKr+xd6xQQ0tVsvR4mqrpmefiPvWTYWQg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:30:10 2025 by rpki-client