$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa File: 811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa (raw, json) Hash identifier: AUkC3vK8qU0pU10PCBTsQsiSMGlb+jXGV1ToIqoYJhE= Subject key identifier: 5B:8E:F4:75:44:4D:A9:15:E2:B3:86:AA:DB:87:81:62:60:60:DE:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05B2D6DE42FE7A5BD7EA854BCD364ADFC0431294 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa Signing time: Wed 12 Mar 2025 00:11:03 +0000 ROA not before: Wed 12 Mar 2025 00:11:03 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.92.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b2:d6:de:42:fe:7a:5b:d7:ea:85:4b:cd:36:4a:df:c0:43:12:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:11:03 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a3:c2:c3:31:ef:86:3a:ee:79:f6:5d:a3:37: d0:cb:42:01:17:c6:94:60:00:ae:da:e4:0e:99:07: 5c:43:63:3c:e0:33:a3:77:4d:99:80:82:5b:c9:68: 24:b8:d5:92:66:bb:f8:36:cf:f9:07:fb:ef:7f:ac: 4e:3b:24:ae:04:74:97:7d:fe:9b:f9:10:2b:e9:0f: a4:37:dc:1b:cc:55:28:42:b1:cc:28:a6:bb:b0:6d: 44:9c:4c:62:ff:c9:90:90:73:ee:2b:b6:6b:be:61: f7:f8:f7:3f:23:35:c2:5c:c2:40:89:1d:79:35:f9: 22:90:6b:17:0b:52:95:95:69:bc:7c:8c:b5:24:1c: 91:74:39:25:c2:a1:e2:61:3e:84:32:c3:3b:85:81: 5d:09:b4:af:45:40:d3:5d:65:9d:c0:0c:40:53:fb: ad:17:37:dc:06:a2:c6:6b:94:60:ae:12:80:b8:4d: 3e:31:61:3a:85:bd:31:01:81:86:81:9f:3a:1e:b5: 6f:d0:90:fc:38:2a:1b:28:4e:f0:1e:cd:dd:61:19: 47:08:b0:32:a2:77:32:3e:e1:aa:54:1b:62:15:f8: c1:30:52:79:0c:a1:70:4f:91:75:7f:80:02:7c:0d: 54:ba:95:6c:fd:da:ac:2a:f0:e8:0d:07:41:e3:2b: 31:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8E:F4:75:44:4D:A9:15:E2:B3:86:AA:DB:87:81:62:60:60:DE:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.92.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:3e:37:a4:85:f3:ae:85:c9:ce:aa:c9:d1:6d:0a:a6:37:e9: 07:37:cf:87:99:e5:8b:d9:a0:1b:48:05:ff:22:14:1b:ef:ad: 02:53:6e:a9:41:6b:3f:bd:2f:31:5c:9a:29:23:44:cb:86:bf: e1:1b:e5:5a:38:f5:9a:18:85:31:ec:12:e6:ce:0b:14:4b:eb: bf:70:a7:24:58:66:1c:77:40:c3:77:59:86:21:8a:62:60:5d: 2f:de:53:c8:59:a7:8e:85:fe:8a:de:66:25:f2:24:88:37:42: 0b:4c:8a:ab:74:00:fb:41:5b:24:7c:a0:49:98:47:45:10:ab: 18:f8:32:42:78:66:99:cb:d3:48:8f:92:6e:02:59:f2:a3:a0: 1c:57:34:7a:c0:02:a9:51:0f:df:f3:58:02:6c:f2:06:93:28: 80:5c:7f:ad:5a:f9:e2:cb:7b:9f:4c:f3:04:b0:a6:9c:45:d6: 73:df:62:d2:32:e5:57:17:72:df:ee:83:07:f5:b4:ce:bc:1d: 38:64:59:f5:f6:cb:81:e2:fb:26:af:97:d3:44:dc:66:57:62: a0:99:a1:9e:ac:16:e4:d8:90:9c:d1:31:2b:bd:d1:48:98:0c: 92:2e:9f:b8:78:6e:4d:e5:12:ac:16:38:77:d7:f4:d2:18:42: e7:4e:ec:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBbLW3kL+elvX6oVLzTZK38BDEpQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAxMTAzWhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZThkZDMyNzUxNDE2ZDIxMjAxNDgzNWUwZDFiMjE4ZDM0 YTM3OGY1YjZiMmY0NWVlZGY3ZmZmZDVlZTM2MzhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjo8LDMe+GOu559l2jN9DLQgEXxpRgAK7a5A6ZB1xDYzzg M6N3TZmAglvJaCS41ZJmu/g2z/kH++9/rE47JK4EdJd9/pv5ECvpD6Q33BvMVShC scwopruwbUScTGL/yZCQc+4rtmu+Yff49z8jNcJcwkCJHXk1+SKQaxcLUpWVabx8 jLUkHJF0OSXCoeJhPoQywzuFgV0JtK9FQNNdZZ3ADEBT+60XN9wGosZrlGCuEoC4 TT4xYTqFvTEBgYaBnzoetW/QkPw4KhsoTvAezd1hGUcIsDKidzI+4apUG2IV+MEw UnkMoXBPkXV/gAJ8DVS6lWz92qwq8OgNB0HjKzE/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUW470dURNqRXis4aq24eBYmBg3uMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxMWZjYTEzLWI0MGEtNGZiMS1iYzdjLTZjNTk5NjM3ZmQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXDANBgkqhkiG9w0BAQsFAAOCAQEAgz43pIXzroXJzqrJ0W0KpjfpBzfP h5nli9mgG0gF/yIUG++tAlNuqUFrP70vMVyaKSNEy4a/4RvlWjj1mhiFMewS5s4L FEvrv3CnJFhmHHdAw3dZhiGKYmBdL95TyFmnjoX+it5mJfIkiDdCC0yKq3QA+0Fb JHygSZhHRRCrGPgyQnhmmcvTSI+SbgJZ8qOgHFc0esACqVEP3/NYAmzyBpMogFx/ rVr54st7n0zzBLCmnEXWc99i0jLlVxdy3+6DB/W0zrwdOGRZ9fbLgeL7Jq+X00Tc ZldioJmhnqwW5NiQnNExK73RSJgMki6fuHhuTeUSrBY4d9f00hhC507sNQ== -----END CERTIFICATE-----Generated at Thu Mar 13 23:45:07 2025 by rpki-client