$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa File: 6e648563-7077-488e-a1d5-b03f10f986ce.roa (raw, json) Hash identifier: 6Sq/SabA5dYf4+4k5aw9YRr2WYGH+AOVFqt2UZyryBI= Subject key identifier: 36:D1:18:85:5B:05:6C:76:75:E8:45:4A:D8:3A:F1:5F:59:42:D7:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10F74C99AFA82EF9CF582FE3C85082D425C39E8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa Signing time: Tue 04 Mar 2025 17:01:05 +0000 ROA not before: Tue 04 Mar 2025 17:01:05 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f7:4c:99:af:a8:2e:f9:cf:58:2f:e3:c8:50:82:d4:25:c3:9e:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 4 17:01:05 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:d6:45:35:53:1c:49:d0:6a:67:c2:f2:8a: 9e:e5:1c:c2:05:f9:29:70:3b:9f:35:3a:99:6b:df: a6:08:d5:61:5c:1c:6e:9b:3e:8f:fc:a6:6b:f4:57: bc:de:d0:a5:18:d0:84:60:93:d8:d2:af:9b:3f:7f: 9e:81:12:d3:47:25:b4:97:c0:ff:50:de:5f:db:93: df:f4:2f:9f:ca:84:37:e0:ed:33:eb:3d:2a:69:46: 31:e4:33:da:91:46:39:c5:f9:f5:17:54:c7:13:40: c2:4b:84:6f:99:42:62:ee:da:68:77:20:8b:25:09: 64:68:1d:f5:cd:ff:e0:dd:50:1f:b9:a1:44:e3:76: 61:11:92:a2:76:19:f6:a5:f2:32:d5:0f:62:d1:3c: 6e:77:25:59:4b:66:3d:54:35:88:3b:95:89:54:fc: 23:2f:13:74:02:e5:f0:2c:a9:64:1d:45:8d:4e:b1: 97:17:e9:53:b7:2c:fc:59:ac:97:56:fd:53:6a:8f: 2f:40:4f:26:ef:81:23:8f:72:33:f1:0a:24:b2:8d: 11:74:77:bc:ba:ff:7d:d1:6f:fd:98:95:61:e5:7e: 1d:5e:e1:b4:71:68:11:5e:73:03:38:cf:ce:7c:c8: 15:70:a1:3f:fd:5d:52:e8:9c:e5:16:2d:2b:4d:10: 5e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D1:18:85:5B:05:6C:76:75:E8:45:4A:D8:3A:F1:5F:59:42:D7:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption cc:db:40:ea:53:df:f7:3c:74:3f:a8:1c:20:e6:83:3c:28:1b: 5d:41:4a:95:bf:b9:c5:6a:ce:83:c2:e9:dd:59:b9:aa:b5:84: 18:b5:98:0d:b6:15:54:e4:6c:49:c6:2f:1e:e2:c7:41:cc:56: aa:10:4a:37:42:d9:90:b2:20:21:a8:3e:d4:dc:0d:8e:6d:7f: 21:d3:f4:11:54:e5:b1:f2:75:3c:46:e7:77:ef:78:38:31:66: bf:82:f7:e5:09:35:f2:55:d9:48:d6:83:3c:29:a7:52:7d:68: 6b:0b:ad:97:22:9f:82:49:4f:71:78:d5:83:94:ed:85:09:54: 57:82:53:09:1f:d3:15:d8:74:22:64:79:7f:71:cc:e1:51:9a: 59:57:83:76:cd:95:6a:6b:d6:2b:44:7d:16:f2:6b:5f:b6:23: 2a:93:33:ec:55:4a:54:a2:5a:af:36:e1:82:36:5a:89:6c:25: 35:c6:dd:44:bf:b4:be:b1:62:83:b9:be:6c:3b:fc:6a:0b:f2: 4f:3f:8f:4c:07:4f:64:1d:67:89:4a:ad:41:a8:5a:a8:35:d9: fc:c2:39:af:b0:ba:e6:9a:b3:da:0c:c0:55:1e:38:ed:20:19: e1:09:06:e8:8d:73:81:0f:4c:30:a9:48:88:71:95:09:76:ae: 7c:f3:7a:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEPdMma+oLvnPWC/jyFCC1CXDno8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzA0MTcwMTA1WhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2M0YjY4Y2E2NjBlMjU3NjJjYzJkNmE1ZGUzN2Y3OGY0 NTAzZjI3MWY4ZGEzMDI1YzQ2ZmRlOTEzYmI2MzFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1HdZFNVMcSdBqZ8Lyip7lHMIF+SlwO581Oplr36YI1WFc HG6bPo/8pmv0V7ze0KUY0IRgk9jSr5s/f56BEtNHJbSXwP9Q3l/bk9/0L5/KhDfg 7TPrPSppRjHkM9qRRjnF+fUXVMcTQMJLhG+ZQmLu2mh3IIslCWRoHfXN/+DdUB+5 oUTjdmERkqJ2Gfal8jLVD2LRPG53JVlLZj1UNYg7lYlU/CMvE3QC5fAsqWQdRY1O sZcX6VO3LPxZrJdW/VNqjy9ATybvgSOPcjPxCiSyjRF0d7y6/33Rb/2YlWHlfh1e 4bRxaBFecwM4z858yBVwoT/9XVLonOUWLStNEF5fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNtEYhVsFbHZ16EVK2DrxX1lC19cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlNjQ4NTYzLTcwNzctNDg4ZS1hMWQ1LWIwM2YxMGY5ODZjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowTANBgkqhkiG9w0BAQsFAAOCAQEAzNtA6lPf9zx0P6gcIOaDPCgbXUFK lb+5xWrOg8Lp3Vm5qrWEGLWYDbYVVORsScYvHuLHQcxWqhBKN0LZkLIgIag+1NwN jm1/IdP0EVTlsfJ1PEbnd+94ODFmv4L35Qk18lXZSNaDPCmnUn1oawutlyKfgklP cXjVg5TthQlUV4JTCR/TFdh0ImR5f3HM4VGaWVeDds2VamvWK0R9FvJrX7YjKpMz 7FVKVKJarzbhgjZaiWwlNcbdRL+0vrFig7m+bDv8agvyTz+PTAdPZB1niUqtQaha qDXZ/MI5r7C65pqz2gzAVR447SAZ4QkG6I1zgQ9MMKlIiHGVCXaufPN6tA== -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:55 2025 by rpki-client