$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa File: 972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa (raw, json) Hash identifier: QEC/DzQl7IpIjvnVZ40yVwIYom+yHaJ/yqbZ+zWgmn0= Subject key identifier: A9:CF:73:9F:80:CB:9E:75:CD:27:2B:3B:9A:E1:99:A6:56:9F:EF:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B198151FEFE8EBE904CDCF961E88F784F03E71A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa Signing time: Sat 08 Mar 2025 00:22:01 +0000 ROA not before: Sat 08 Mar 2025 00:22:01 +0000 ROA not after: Sat 12 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:19:81:51:fe:fe:8e:be:90:4c:dc:f9:61:e8:8f:78:4f:03:e7:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 8 00:22:01 2025 GMT Not After : Apr 12 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:9c:93:89:cf:4d:f3:93:08:ed:b9:f2:80: b2:47:45:29:89:93:4a:8b:89:f0:fc:96:6c:27:d6: dc:06:79:1b:a6:65:27:ed:45:5b:73:86:08:e6:34: 83:b8:36:f1:c9:e8:9e:5d:c3:21:fd:62:e9:d6:19: 4c:4b:ff:60:61:84:1e:88:66:19:b0:4d:c1:63:a1: bc:ec:38:16:8d:fb:79:a4:fe:dd:88:37:15:ff:8f: 32:4d:56:07:0e:d3:5b:bb:5e:f8:f2:4e:16:cc:ca: 1c:cc:53:34:54:bc:c2:84:1c:11:c5:60:f5:02:93: fe:05:88:6a:89:7b:4c:ca:3d:3a:82:0f:3a:fe:24: c4:56:ed:11:cb:b7:78:5c:79:3f:52:7a:b5:e9:63: 4c:73:8e:04:f5:c8:03:33:26:ac:89:7a:47:6a:2f: d8:3a:2c:56:6d:79:3f:ff:89:7a:77:47:51:51:29: 8b:c5:6b:d8:25:42:f5:16:7c:bb:db:79:7d:82:0e: 27:cc:02:fa:74:08:14:ea:d8:57:c0:c0:c9:5b:49: e6:21:f5:fa:51:da:33:b3:4a:29:55:36:99:71:e4: 2a:ea:23:bd:79:46:72:d9:bd:cc:58:9e:86:f6:ac: d8:4a:90:d7:d4:52:81:ca:df:10:0e:4c:97:8b:57: e9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CF:73:9F:80:CB:9E:75:CD:27:2B:3B:9A:E1:99:A6:56:9F:EF:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:a3:b5:ad:7d:79:ae:df:a0:bd:50:d2:98:9d:91:74:35:cb: 16:93:0b:98:a6:d1:9d:b2:3d:a1:92:a6:b3:79:f0:38:14:30: 64:b2:7b:71:66:ed:5c:d1:9b:81:3b:e1:e6:5d:15:04:8e:ff: 31:94:48:d9:e9:e1:a2:e1:52:ac:d9:01:2d:f0:80:3d:be:8a: 93:89:8d:12:e4:59:c0:8d:2d:98:07:e1:62:90:81:28:bf:ca: 18:e5:01:10:26:b1:90:0c:1d:f1:bd:2e:09:a4:60:8c:b2:c3: cb:1c:d5:30:ce:c6:ea:dc:50:7e:ab:f7:0f:07:50:08:f1:b8: e0:bf:9a:65:8f:d2:d9:48:c2:e1:ca:0d:d8:7d:a5:e6:84:09: 00:37:9f:41:45:1b:2f:be:a8:a0:b6:b1:36:9a:7e:bf:13:76: 92:52:41:e5:fd:32:00:b3:83:91:85:28:71:8e:3c:69:e7:f1: 23:5a:01:fd:b0:ba:d8:47:dd:ce:e0:48:fc:1a:fa:be:d0:03: 9e:42:5a:8f:82:d8:f3:de:7a:24:32:4a:37:9b:48:0c:0f:39: e9:da:b6:c3:ef:e5:6f:cf:86:c1:11:e7:00:91:35:c4:f8:0d: 2c:2a:a9:0b:04:a3:ad:37:d4:1f:ea:f2:bb:59:75:8c:fa:92: f0:b8:23:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKxmBUf7+jr6QTNz5YeiPeE8D5xowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzA4MDAyMjAxWhcNMjUwNDEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzU0YWVhMDZhMmM1Mzg3NjgxODA3ZGMwOTE5MjhlZjVh MGU5ZDE1YmMxN2MwNDJiNmJlYWU5OGJiMjNiOTI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9tJyTic9N85MI7bnygLJHRSmJk0qLifD8lmwn1twGeRum ZSftRVtzhgjmNIO4NvHJ6J5dwyH9YunWGUxL/2BhhB6IZhmwTcFjobzsOBaN+3mk /t2INxX/jzJNVgcO01u7XvjyThbMyhzMUzRUvMKEHBHFYPUCk/4FiGqJe0zKPTqC Dzr+JMRW7RHLt3hceT9SerXpY0xzjgT1yAMzJqyJekdqL9g6LFZteT//iXp3R1FR KYvFa9glQvUWfLvbeX2CDifMAvp0CBTq2FfAwMlbSeYh9fpR2jOzSilVNplx5Crq I715RnLZvcxYnob2rNhKkNfUUoHK3xAOTJeLV+lbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqc9zn4DLnnXNJys7muGZplaf794wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3MmI4M2ViLWQ0OTYtNDJjZS05YzAxLThmZmIyMWFjMTlkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo7zANBgkqhkiG9w0BAQsFAAOCAQEAy6O1rX15rt+gvVDSmJ2RdDXLFpML mKbRnbI9oZKms3nwOBQwZLJ7cWbtXNGbgTvh5l0VBI7/MZRI2enhouFSrNkBLfCA Pb6Kk4mNEuRZwI0tmAfhYpCBKL/KGOUBECaxkAwd8b0uCaRgjLLDyxzVMM7G6txQ fqv3DwdQCPG44L+aZY/S2UjC4coN2H2l5oQJADefQUUbL76ooLaxNpp+vxN2klJB 5f0yALODkYUocY48aefxI1oB/bC62EfdzuBI/Br6vtADnkJaj4LY8956JDJKN5tI DA856dq2w+/lb8+GwRHnAJE1xPgNLCqpCwSjrTfUH+ryu1l1jPqS8LgjaQ== -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:15 2025 by rpki-client