$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa File: 815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa (raw, json) Hash identifier: z1GcOyq0h6l+jk+WSMtHXNmUKMlo6R/04suV5TpUyH4= Subject key identifier: 51:F3:CE:B9:4F:A4:72:84:87:8C:3A:80:B8:57:E0:FF:19:40:C4:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66B2483A7DD49536640BE4B1AE07AB810F3F5474 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa Signing time: Mon 17 Feb 2025 16:10:53 +0000 ROA not before: Mon 17 Feb 2025 16:10:53 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b2:48:3a:7d:d4:95:36:64:0b:e4:b1:ae:07:ab:81:0f:3f:54:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 16:10:53 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9c:d1:86:b4:4f:30:8c:9f:6d:f9:de:b2:2e: dd:b0:5a:41:f5:3a:0e:71:54:43:d6:d1:df:95:ea: 04:86:d4:cb:01:05:5d:02:e5:0f:2e:6d:67:f6:d4: bc:c2:48:07:68:97:40:1a:67:c6:a4:a3:6e:93:e0: ec:46:33:a2:89:ea:fb:4f:2f:e9:73:7d:de:33:fe: 5c:7f:aa:4a:7d:22:1f:9e:e7:93:c5:89:4c:23:8d: 4b:9b:51:c9:7d:78:79:8d:35:40:17:66:1a:4e:52: 23:de:a4:93:7f:97:c8:91:59:93:f7:c6:72:6a:95: 34:90:c6:5b:86:59:dc:ca:ec:38:f2:6a:4f:11:a1: ab:ff:9d:19:32:79:e7:43:07:97:f4:86:0f:98:88: b9:28:7d:7d:ac:fb:7d:b9:f1:2f:a2:7c:20:50:29: e0:a2:62:40:04:d4:4d:72:ee:b9:a4:69:32:9d:0e: a3:90:5c:35:52:62:7c:1e:ea:16:47:3a:81:0a:70: c7:f7:f2:c5:dd:42:f0:6d:2a:bd:f4:58:89:a3:f6: 0b:83:49:a5:d4:4e:0f:64:00:12:a1:7c:17:21:08: 82:0c:04:d6:f8:21:dc:77:a9:55:56:8c:90:54:c7: 14:70:89:28:88:0e:b1:d6:fb:ba:07:9e:67:17:ff: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F3:CE:B9:4F:A4:72:84:87:8C:3A:80:B8:57:E0:FF:19:40:C4:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:80:34:78:56:f6:47:f9:46:ce:03:e2:14:37:23:80:79:6b: 70:70:76:9f:2f:7e:7d:9b:a0:4a:29:23:a0:5e:36:b9:cc:da: 7a:ab:2e:62:9f:2a:bb:b1:2c:ec:48:ef:45:a7:bb:06:06:82: 3f:48:80:ec:6b:b1:c4:19:9c:7e:43:61:3d:50:45:02:5a:2d: e0:7b:c8:cf:9d:42:5d:17:e7:f3:ca:20:74:44:7d:80:dc:99: eb:ee:c2:c9:06:86:52:cf:ad:b1:5e:05:15:92:63:53:94:ea: c8:76:9c:0d:ba:b5:d3:76:3b:c8:4c:91:87:23:4c:28:e4:67: 4d:3e:01:4d:28:7e:ca:ce:bc:5d:37:9d:4e:b1:24:82:69:b7: fe:65:a1:b1:57:03:7c:ff:42:b4:91:2d:32:90:d8:40:d7:70: be:78:d5:50:df:4d:d3:03:48:0d:8c:da:c9:04:c1:c4:77:e9: 88:1e:4e:83:51:f6:c0:b2:23:f0:55:68:6f:da:56:ce:ba:e2: 2d:66:c9:fb:5c:7e:f5:48:1d:f9:cf:4d:72:78:8e:9f:2d:ec: 09:62:77:d8:77:d0:5f:22:71:56:c1:01:79:3a:46:52:2f:1d: 3f:6b:a5:0b:1b:b6:7a:1f:e2:04:f0:e4:f3:1c:19:4d:a9:fc: ab:69:3a:27 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZrJIOn3UlTZkC+SxrgergQ8/VHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTYxMDUzWhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YmI2MzczYTZjYzI4NDNmNzcxMWI3ZDgxMDhlY2IyNmYz NjZiZjhmZTk4Mjg3MTFjN2MwYWU0ZjYxMTE5NjRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRnNGGtE8wjJ9t+d6yLt2wWkH1Og5xVEPW0d+V6gSG1MsB BV0C5Q8ubWf21LzCSAdol0AaZ8ako26T4OxGM6KJ6vtPL+lzfd4z/lx/qkp9Ih+e 55PFiUwjjUubUcl9eHmNNUAXZhpOUiPepJN/l8iRWZP3xnJqlTSQxluGWdzK7Djy ak8Roav/nRkyeedDB5f0hg+YiLkofX2s+3258S+ifCBQKeCiYkAE1E1y7rmkaTKd DqOQXDVSYnwe6hZHOoEKcMf38sXdQvBtKr30WImj9guDSaXUTg9kABKhfBchCIIM BNb4Idx3qVVWjJBUxxRwiSiIDrHW+7oHnmcX/wPNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUfPOuU+kcoSHjDqAuFfg/xlAxMYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNTk2NGVkLTk3MjItNGNjMC05OGM0LWYxZDBlYjUyMWY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ZjANBgkqhkiG9w0BAQsFAAOCAQEAKoA0eFb2R/lGzgPiFDcjgHlrcHB2 ny9+fZugSikjoF42uczaeqsuYp8qu7Es7EjvRae7BgaCP0iA7GuxxBmcfkNhPVBF Alot4HvIz51CXRfn88ogdER9gNyZ6+7CyQaGUs+tsV4FFZJjU5TqyHacDbq103Y7 yEyRhyNMKORnTT4BTSh+ys68XTedTrEkgmm3/mWhsVcDfP9CtJEtMpDYQNdwvnjV UN9N0wNIDYzayQTBxHfpiB5Og1H2wLIj8FVob9pWzrriLWbJ+1x+9Ugd+c9NcniO ny3sCWJ32HfQXyJxVsEBeTpGUi8dP2ulCxu2eh/iBPDk8xwZTan8q2k6Jw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:34:13 2025 by rpki-client