$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa File: 552b517a-5218-4ed2-a892-21426274eafb.roa (raw, json) Hash identifier: 0OvSXwj+wUSim9h95zKeNmleO1FJOE8mEIOs0jBLhXY= Subject key identifier: 33:3A:73:0C:46:67:37:0F:AF:64:89:AC:A4:48:04:79:3C:5A:47:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16DBC0AE0FAFBC409B18724CA89E0CB8BE5C7816 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa Signing time: Fri 28 Mar 2025 17:32:04 +0000 ROA not before: Fri 28 Mar 2025 17:32:04 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 69.210.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:db:c0:ae:0f:af:bc:40:9b:18:72:4c:a8:9e:0c:b8:be:5c:78:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:32:04 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:28:17:34:b9:6b:98:a1:4b:79:fd:c7:4f:23: d0:2f:b3:84:47:d9:08:02:27:92:70:cf:b2:d7:70: f5:73:4e:5a:0b:a9:61:37:2e:5c:78:b9:04:56:bb: 0b:7b:56:7b:e2:e3:18:d2:91:38:e6:6a:b0:ea:ef: e9:a0:72:23:c9:74:4a:11:17:40:b4:04:20:20:e7: 6e:ec:90:8e:97:1a:fc:cd:9c:29:27:f4:57:f4:13: 1e:4a:12:4b:71:72:7f:fe:84:3c:de:74:dc:32:b7: 00:36:c8:f2:f3:6a:95:9b:47:95:7d:30:f6:3f:c0: 35:f6:44:c1:26:8d:e0:4b:a7:34:82:c5:56:8b:7c: b3:2e:44:7a:87:66:36:76:fe:47:80:1c:a1:15:87: b0:28:8b:a2:af:8e:c0:d6:3e:eb:a6:e1:31:4a:2d: 1d:01:b6:3f:9a:22:dc:a0:a2:74:08:95:aa:29:9d: 46:a4:37:a2:66:5d:10:9c:2b:b8:38:40:f3:a3:36: e3:bc:60:42:ed:ea:f7:12:06:ff:2d:49:ce:c2:f1: 6d:bf:59:11:38:05:5a:b6:a6:91:1c:fa:07:fe:4b: a1:75:86:1c:c1:fc:18:64:b4:66:19:87:71:71:a3: e7:61:44:29:06:6a:a8:ae:ee:07:33:92:82:d4:e3: eb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3A:73:0C:46:67:37:0F:AF:64:89:AC:A4:48:04:79:3C:5A:47:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.210.64.0/18 Signature Algorithm: sha256WithRSAEncryption 31:64:15:88:d9:14:5c:54:ba:b0:a2:d6:94:de:cf:a2:36:3d: a4:22:94:6a:ad:cf:ef:96:44:8b:d9:75:e7:18:a3:6a:ec:47: 29:ad:c6:bd:11:9b:0d:2c:98:d4:4f:78:a0:90:18:8c:cb:e8: 8a:22:20:2a:c8:97:74:e1:f1:b5:55:89:de:2f:8d:fe:f3:bb: 39:94:45:48:97:d1:65:56:90:db:74:5e:11:70:44:96:47:89: 7f:3a:25:95:c0:e7:b8:78:ce:68:b3:b8:c9:08:6f:3e:ab:60: 61:ed:1f:9c:68:ba:61:b4:b3:4a:7b:1e:d7:39:7f:ad:7e:c0: b6:79:17:10:19:80:e7:99:04:7b:88:c8:f8:5b:90:87:3a:51: 0d:d8:cf:47:ed:d3:6e:58:fc:e3:16:eb:4a:7c:a6:d2:ec:85: f0:d2:f8:43:bd:c8:5d:b0:ae:d7:7a:ec:cc:79:b7:86:31:03: 3d:fe:1c:74:c8:fc:3e:e0:8d:b5:bb:b2:9b:18:b8:9c:1a:55: 99:9e:98:c0:f5:f8:3d:47:d5:a9:69:7c:f5:d1:b5:2b:b0:48: 4c:2c:92:39:c9:a0:a7:e2:50:d7:00:20:20:0c:92:95:79:64: 79:5a:a5:6f:56:34:0f:dc:33:24:ab:93:59:35:a7:83:5f:8d: ec:f8:ee:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFtvArg+vvECbGHJMqJ4MuL5ceBYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTczMjA0WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWI2ZTY2NTljNDUzYmFhMWZkMmE0YjE5ZDdhNTIzZGRh NWE2Njk1ZmVlNzAwMTM0MjJjZDlkOWY2NjhmMzhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+KBc0uWuYoUt5/cdPI9Avs4RH2QgCJ5Jwz7LXcPVzTloL qWE3Llx4uQRWuwt7Vnvi4xjSkTjmarDq7+mgciPJdEoRF0C0BCAg527skI6XGvzN nCkn9Ff0Ex5KEktxcn/+hDzedNwytwA2yPLzapWbR5V9MPY/wDX2RMEmjeBLpzSC xVaLfLMuRHqHZjZ2/keAHKEVh7Aoi6KvjsDWPuum4TFKLR0Btj+aItygonQIlaop nUakN6JmXRCcK7g4QPOjNuO8YELt6vcSBv8tSc7C8W2/WRE4BVq2ppEc+gf+S6F1 hhzB/BhktGYZh3Fxo+dhRCkGaqiu7gczkoLU4+uFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMzpzDEZnNw+vZImspEgEeTxaR8QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1MmI1MTdhLTUyMTgtNGVkMi1hODkyLTIxNDI2Mjc0ZWFmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZF0kAwDQYJKoZIhvcNAQELBQADggEBADFkFYjZFFxUurCi1pTez6I2PaQi lGqtz++WRIvZdecYo2rsRymtxr0Rmw0smNRPeKCQGIzL6IoiICrIl3Th8bVVid4v jf7zuzmURUiX0WVWkNt0XhFwRJZHiX86JZXA57h4zmizuMkIbz6rYGHtH5xoumG0 s0p7Htc5f61+wLZ5FxAZgOeZBHuIyPhbkIc6UQ3Yz0ft025Y/OMW60p8ptLshfDS +EO9yF2wrtd67Mx5t4YxAz3+HHTI/D7gjbW7spsYuJwaVZmemMD1+D1H1alpfPXR tSuwSEwskjnJoKfiUNcAICAMkpV5ZHlapW9WNA/cMySrk1k1p4Nfjez47tY= -----END CERTIFICATE-----Generated at Fri Apr 11 23:33:38 2025 by rpki-client