$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa File: 9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa (raw, json) Hash identifier: 8wbUTvV/QpT+bAJy4ltwsJ/9lLPuNOk61ZNIBkSZ3ZA= Subject key identifier: 8E:9B:38:9D:45:6D:9E:2C:1A:B5:16:FB:60:70:6D:26:24:70:6C:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 773A8869EBE358030470CB09D0B3177A47A10472 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa Signing time: Wed 12 Mar 2025 00:21:40 +0000 ROA not before: Wed 12 Mar 2025 00:21:40 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3a:88:69:eb:e3:58:03:04:70:cb:09:d0:b3:17:7a:47:a1:04:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:21:40 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a5:d2:a8:d3:c5:09:a9:7b:d7:25:48:7d:f7: 89:0a:dc:40:cb:ce:95:4a:17:81:7a:45:91:2b:cf: dd:97:47:82:e0:0f:16:aa:39:26:fa:27:98:a7:0d: 6d:cf:dd:a9:c2:fa:bd:85:b9:49:4b:c0:e4:90:87: ca:18:89:a6:0f:89:d3:2b:de:72:1b:fa:a7:d8:ab: 8b:c6:90:70:9c:bb:3d:9f:6f:75:61:1b:b5:a7:59: 0f:da:5a:71:9b:e2:bc:57:dc:0f:60:27:9c:42:ef: 59:62:12:ed:6c:66:6d:7d:7a:27:c5:35:48:50:66: 3b:81:03:74:dd:36:5e:cf:e4:d0:ce:7e:cd:3b:12: 26:1e:be:4c:52:17:f0:92:77:a2:7a:d2:de:53:23: 86:5a:8e:cf:1f:1f:b4:9b:d3:aa:96:74:7e:7d:6f: 6f:18:d4:06:e1:5e:84:02:ab:90:a3:87:41:3a:fc: 5d:10:ea:92:c3:d8:e2:b2:3c:7e:58:b4:10:d3:9e: 8f:f0:bf:83:05:ad:46:83:cb:16:22:99:75:21:c9: fb:96:33:70:4a:fc:16:51:b8:c2:48:00:73:87:35: 20:8d:3f:09:f5:66:a5:0f:59:02:58:98:4f:19:b4: 8b:68:23:35:53:a0:7a:d1:36:38:83:fd:c7:d0:b9: 3c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9B:38:9D:45:6D:9E:2C:1A:B5:16:FB:60:70:6D:26:24:70:6C:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:8b:2c:83:63:a8:58:48:7b:08:97:db:de:02:86:ee:b0:ea: 6e:20:ab:73:03:4e:bc:ed:be:88:9f:c6:96:30:ca:63:fa:c0: f0:13:1e:be:b3:b0:d1:77:6b:f8:50:d4:c1:42:6c:a7:7c:0b: ae:0c:3d:8f:ca:d5:60:f8:29:b7:fb:b1:cd:3d:a9:cc:cf:0d: 34:42:b1:2a:de:5c:1b:e9:0f:cd:db:2d:6c:01:35:f7:40:1a: c8:57:d0:82:ce:d5:5f:73:87:93:5c:5c:92:fc:81:64:b5:63: 7f:70:9a:98:5c:7a:b8:32:17:44:4c:7b:dd:67:17:30:74:d0: 4c:2c:6d:88:83:2c:5d:aa:bd:37:ba:42:56:23:b2:db:27:4f: 21:7f:12:53:f8:3e:fa:d5:76:e1:61:68:2e:ac:43:06:56:ab: f5:68:78:49:08:7d:72:f8:94:31:99:e5:e9:c8:54:c1:c1:6b: 33:5d:b6:4a:5c:c9:89:88:0f:7f:f1:ef:3d:cd:e0:62:fd:5a: f8:ba:bc:44:84:03:c0:85:03:61:1d:5d:b3:28:e5:20:e7:86: 5c:da:b4:05:78:47:cd:40:dc:7b:1a:4f:51:fc:25:a2:76:bb: 81:87:24:c1:b2:37:65:18:8d:1b:19:4e:02:8a:6c:25:57:c6: f1:2d:9f:66 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdzqIaevjWAMEcMsJ0LMXekehBHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAyMTQwWhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGI5MDcxZmQ5NTQzODZjZWU1OWQyMGMwMWUwZjk5MmIw Y2ZjNGJmZjA4ZjEwN2RiN2M4YzIyOGYxNGUzYTM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDpdKo08UJqXvXJUh994kK3EDLzpVKF4F6RZErz92XR4Lg DxaqOSb6J5inDW3P3anC+r2FuUlLwOSQh8oYiaYPidMr3nIb+qfYq4vGkHCcuz2f b3VhG7WnWQ/aWnGb4rxX3A9gJ5xC71liEu1sZm19eifFNUhQZjuBA3TdNl7P5NDO fs07EiYevkxSF/CSd6J60t5TI4Zajs8fH7Sb06qWdH59b28Y1AbhXoQCq5Cjh0E6 /F0Q6pLD2OKyPH5YtBDTno/wv4MFrUaDyxYimXUhyfuWM3BK/BZRuMJIAHOHNSCN Pwn1ZqUPWQJYmE8ZtItoIzVToHrRNjiD/cfQuTxRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjps4nUVtniwatRb7YHBtJiRwbOAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllNzhjNjA2LWYyZjEtNDFmNS1iM2ViLWI1YjEwMzU2OTdmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCo8TANBgkqhkiG9w0BAQsFAAOCAQEAEossg2OoWEh7CJfb3gKG7rDqbiCr cwNOvO2+iJ/GljDKY/rA8BMevrOw0Xdr+FDUwUJsp3wLrgw9j8rVYPgpt/uxzT2p zM8NNEKxKt5cG+kPzdstbAE190AayFfQgs7VX3OHk1xckvyBZLVjf3CamFx6uDIX REx73WcXMHTQTCxtiIMsXaq9N7pCViOy2ydPIX8SU/g++tV24WFoLqxDBlar9Wh4 SQh9cviUMZnl6chUwcFrM122SlzJiYgPf/HvPc3gYv1a+Lq8RIQDwIUDYR1dsyjl IOeGXNq0BXhHzUDcexpPUfwlona7gYckwbI3ZRiNGxlOAopsJVfG8S2fZg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:10 2025 by rpki-client