$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa File: 6c512c1b-f3e3-4cc4-adf7-022feda26799.roa (raw, json) Hash identifier: BLQzKgfmWFMLBKaTsJ5abGtoo96y7ictdb/0g3k8a9Y= Subject key identifier: FE:F3:79:DF:E9:C7:63:9A:21:54:B0:2F:20:A9:36:57:CF:AE:F4:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0644B6B86970AE85F4765A43287C27B54AA1B189 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa Signing time: Mon 10 Mar 2025 15:20:23 +0000 ROA not before: Mon 10 Mar 2025 15:20:23 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 79.73.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:44:b6:b8:69:70:ae:85:f4:76:5a:43:28:7c:27:b5:4a:a1:b1:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:20:23 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:66:92:04:dc:f7:bb:ca:cb:52:12:29:87:4e: 40:e8:be:e4:37:82:01:79:bd:a9:03:21:48:72:77: d7:a1:c3:54:99:1d:aa:16:f1:c5:47:ba:27:86:ab: 88:2b:f8:81:0a:b4:d5:d0:b8:49:99:e4:9e:db:48: 1c:63:bd:d3:df:85:b0:f1:84:01:ac:9a:8c:a7:5d: 19:89:2a:1c:26:5a:93:8f:b4:85:9c:7b:17:07:74: a7:10:e5:ae:1b:b9:b7:ed:eb:32:f7:d3:2d:e4:aa: 0e:8c:68:78:2b:6b:af:7d:b7:78:07:0a:45:42:3f: 77:01:c0:62:f1:86:29:bd:57:45:c8:60:d4:01:ff: a7:30:e0:fc:6e:ef:dd:c2:53:68:31:6e:0b:1b:1f: 47:e6:15:ec:0b:61:c3:07:ea:c4:83:ae:8e:ac:3e: ef:38:b1:28:1b:45:ad:93:2e:e9:d2:47:f1:63:87: 80:f2:19:1f:26:17:4d:ed:7d:2a:31:96:63:4a:e0: 34:d4:d4:7f:ab:65:37:56:a5:fe:8e:71:f7:c2:76: 37:57:78:0c:1e:fb:40:b2:25:01:d4:4b:b8:c3:0c: 50:d2:00:1f:dd:96:cf:c9:a7:83:df:d4:11:18:6f: d9:c1:df:5d:5b:36:5b:bb:3b:0c:d7:7b:98:fe:14: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F3:79:DF:E9:C7:63:9A:21:54:B0:2F:20:A9:36:57:CF:AE:F4:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c512c1b-f3e3-4cc4-adf7-022feda26799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.73.0.0/18 Signature Algorithm: sha256WithRSAEncryption 8d:29:88:04:34:f8:a3:85:25:c3:e8:dd:ce:2d:4c:d3:ef:6e: ef:24:a1:2d:59:cd:3f:f3:c7:1a:7a:16:bd:23:2b:85:6a:9b: f9:cd:b6:ce:ec:0d:44:4e:78:bb:48:52:99:71:e9:e2:16:94: 18:4c:78:a4:28:85:a0:63:ad:24:77:99:73:8b:fb:58:bb:27: d7:d8:5c:ee:bc:39:74:15:12:ea:ee:cd:be:7f:6c:9b:ff:60: 5c:b0:22:c1:16:da:e3:55:84:87:78:be:8e:06:7f:2a:6b:64: c4:e7:7a:cd:22:b8:86:3f:a5:1b:19:05:6d:97:22:92:bb:f6: 83:91:57:b8:f3:6e:89:63:e3:d8:e1:1f:e6:bd:54:62:e0:c4: 8e:6c:15:16:33:18:7e:70:bb:27:a9:ed:0b:7f:8d:c7:f5:b8: de:ad:e2:71:71:ef:46:ce:6a:cd:ff:09:60:91:fd:f3:59:ad: dc:c5:ac:3e:c8:ce:ca:ae:64:6c:34:0f:73:bd:aa:2c:0a:88: ab:11:bb:88:50:b8:91:aa:af:fd:6a:3f:a4:68:21:16:0e:41: 26:a5:af:f2:41:19:e4:f2:d4:6d:93:e7:b9:5e:93:00:a3:b3: f2:e6:2d:e2:7c:2a:70:3d:05:72:15:71:b9:f3:97:31:4a:bf: 4e:27:59:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBkS2uGlwroX0dlpDKHwntUqhsYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUyMDIzWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2FkNjE0MWE2NTgwNzYzZmY3MzE5ZGQ5NzcwMDkxMTBm ODYzMzU1ZGI0MDVhMTM5NGUyNzZjMTg4ODRlMTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrZpIE3Pe7ystSEimHTkDovuQ3ggF5vakDIUhyd9ehw1SZ HaoW8cVHuieGq4gr+IEKtNXQuEmZ5J7bSBxjvdPfhbDxhAGsmoynXRmJKhwmWpOP tIWcexcHdKcQ5a4bubft6zL30y3kqg6MaHgra699t3gHCkVCP3cBwGLxhim9V0XI YNQB/6cw4Pxu793CU2gxbgsbH0fmFewLYcMH6sSDro6sPu84sSgbRa2TLunSR/Fj h4DyGR8mF03tfSoxlmNK4DTU1H+rZTdWpf6OcffCdjdXeAwe+0CyJQHUS7jDDFDS AB/dls/Jp4Pf1BEYb9nB311bNlu7OwzXe5j+FCunAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/vN53+nHY5ohVLAvIKk2V8+u9A4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjNTEyYzFiLWYzZTMtNGNjNC1hZGY3LTAyMmZlZGEyNjc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZPSQAwDQYJKoZIhvcNAQELBQADggEBAI0piAQ0+KOFJcPo3c4tTNPvbu8k oS1ZzT/zxxp6Fr0jK4Vqm/nNts7sDUROeLtIUplx6eIWlBhMeKQohaBjrSR3mXOL +1i7J9fYXO68OXQVEuruzb5/bJv/YFywIsEW2uNVhId4vo4GfyprZMTnes0iuIY/ pRsZBW2XIpK79oORV7jzbolj49jhH+a9VGLgxI5sFRYzGH5wuyep7Qt/jcf1uN6t 4nFx70bOas3/CWCR/fNZrdzFrD7IzsquZGw0D3O9qiwKiKsRu4hQuJGqr/1qP6Ro IRYOQSalr/JBGeTy1G2T57lekwCjs/LmLeJ8KnA9BXIVcbnzlzFKv04nWX8= -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:30 2025 by rpki-client