$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa File: 7c62399b-5fa5-4a29-9b29-65771416f2a5.roa (raw, json) Hash identifier: 7VVDZzqgotBCOZlEG4jtoZJrRGodP9lR8Kh84BZOZfA= Subject key identifier: 99:38:2C:F4:40:01:11:D9:85:81:FA:8D:03:35:B4:A9:B4:64:62:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BA379B40D7FB43D8E0406E052869246B9E3890A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa Signing time: Mon 10 Mar 2025 15:01:40 +0000 ROA not before: Mon 10 Mar 2025 15:01:40 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.29.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a3:79:b4:0d:7f:b4:3d:8e:04:06:e0:52:86:92:46:b9:e3:89:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:01:40 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:79:77:1e:34:a6:f2:af:53:98:39:1b:88:85: b2:49:4d:80:da:9c:3a:8e:fa:e3:28:d1:21:f6:00: d5:56:bd:c6:a6:f6:fa:09:50:36:5f:cf:48:48:41: bf:ae:e4:8a:d1:21:de:eb:ba:c5:72:3a:51:15:48: a8:69:8e:a2:40:50:74:48:91:9d:7f:fa:6e:77:6a: 04:bf:fb:90:4f:b7:91:33:ff:29:a6:b0:52:d0:ca: 7a:6c:8d:a6:8f:12:ae:4f:48:84:b9:eb:71:a0:14: 0b:21:b9:d9:3c:da:dd:1e:4c:60:b5:57:e5:9d:bc: 53:58:f3:9f:cb:e1:06:8c:57:22:15:d4:05:fa:dc: 84:2f:85:55:ab:1a:23:12:da:bc:6f:9b:d4:29:f8: ef:f3:d5:88:5d:ef:d5:8f:5b:19:e7:b7:95:c0:2d: 82:fd:f4:ef:ef:7e:fc:ab:d9:a3:74:34:38:eb:88: ab:6d:8e:58:09:3d:c1:47:d4:33:ba:4f:23:c7:f9: b2:aa:d4:10:56:c1:bd:67:d3:0e:b9:fb:5f:74:35: 58:7a:40:ef:d7:b1:cd:4a:88:db:ed:83:f3:45:9a: 15:aa:70:4f:e9:ff:ea:03:b2:4f:3d:9c:48:4e:a4: d6:29:78:b1:f6:ea:d6:f2:80:d5:4d:2a:21:c7:da: 2d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:38:2C:F4:40:01:11:D9:85:81:FA:8D:03:35:B4:A9:B4:64:62:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:d1:2e:18:d3:bf:d0:46:87:5e:48:7c:d1:1a:6b:c7:4c:11: e1:0a:e2:db:f5:5c:16:0c:4f:4f:f6:a0:8b:4c:8a:78:3e:11: 1f:b8:52:c1:f0:61:ab:cc:22:63:65:cc:73:05:69:63:57:c9: 51:21:89:c4:a2:aa:32:00:92:06:08:56:1d:c9:4e:c0:cc:f4: d5:5d:ab:9f:b5:8c:73:de:30:a3:aa:13:ca:e2:a0:e5:a8:11: b7:43:16:23:97:d6:31:15:20:37:cb:0f:85:5c:d6:58:12:ec: 3e:95:39:cc:c5:96:8f:8d:79:a6:3c:76:75:94:af:dd:cc:12: 76:5f:d8:94:aa:ac:5c:58:65:db:da:81:64:8c:b1:df:f0:55: 58:5e:8a:f7:7a:2a:fb:31:2f:17:ef:13:b9:b2:c0:84:ab:57: ac:ea:51:f3:d9:fc:87:71:a1:70:d6:fc:55:a8:1c:73:d9:42: a5:fd:de:8b:c2:ea:c2:4d:36:be:08:07:5f:d1:17:c0:5f:b4: ff:5d:84:25:8a:d7:a3:0d:db:da:0c:8c:36:2b:2b:c7:f2:5c: fc:85:06:6b:7b:97:ae:74:5f:7f:55:52:07:72:93:3a:2a:2e: 45:bb:74:3d:fd:eb:c1:cb:90:96:d8:22:12:18:14:28:ef:77: c4:91:7f:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa6N5tA1/tD2OBAbgUoaSRrnjiQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUwMTQwWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzkzY2I0MTcyMzI0YjA4MTc5MGQyYTVkMDg5MjAxZmRm MTE1Y2Y1YWJmNDI0MDIxZmI5YzJmNGJmNWJmOWMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNeXceNKbyr1OYORuIhbJJTYDanDqO+uMo0SH2ANVWvcam 9voJUDZfz0hIQb+u5IrRId7rusVyOlEVSKhpjqJAUHRIkZ1/+m53agS/+5BPt5Ez /ymmsFLQynpsjaaPEq5PSIS563GgFAshudk82t0eTGC1V+WdvFNY85/L4QaMVyIV 1AX63IQvhVWrGiMS2rxvm9Qp+O/z1Yhd79WPWxnnt5XALYL99O/vfvyr2aN0NDjr iKttjlgJPcFH1DO6TyPH+bKq1BBWwb1n0w65+190NVh6QO/Xsc1KiNvtg/NFmhWq cE/p/+oDsk89nEhOpNYpeLH26tbygNVNKiHH2i0hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmTgs9EABEdmFgfqNAzW0qbRkYpUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjNjIzOTliLTVmYTUtNGEyOS05YjI5LTY1NzcxNDE2ZjJhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHTANBgkqhkiG9w0BAQsFAAOCAQEAU9EuGNO/0EaHXkh80Rprx0wR4Qri 2/VcFgxPT/agi0yKeD4RH7hSwfBhq8wiY2XMcwVpY1fJUSGJxKKqMgCSBghWHclO wMz01V2rn7WMc94wo6oTyuKg5agRt0MWI5fWMRUgN8sPhVzWWBLsPpU5zMWWj415 pjx2dZSv3cwSdl/YlKqsXFhl29qBZIyx3/BVWF6K93oq+zEvF+8TubLAhKtXrOpR 89n8h3GhcNb8Vagcc9lCpf3ei8Lqwk02vggHX9EXwF+0/12EJYrXow3b2gyMNisr x/Jc/IUGa3uXrnRff1VSB3KTOiouRbt0Pf3rwcuQltgiEhgUKO93xJF/Gw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:29 2025 by rpki-client