$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa264b3d-8132-4f1a-9f40-817238e6d836.roa File: aa264b3d-8132-4f1a-9f40-817238e6d836.roa (raw, json) Hash identifier: DCsofM9IiXdi6IXm2VU7ZQQq57J9yC5fPBeCLgT3Wo0= Subject key identifier: B8:4D:96:B6:6D:E2:68:E2:24:56:41:51:EC:E1:67:38:6B:2C:E4:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71EFA6D7106A5A4B3A019E3DEBF62FAED90F6C7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa264b3d-8132-4f1a-9f40-817238e6d836.roa Signing time: Mon 10 Mar 2025 15:00:31 +0000 ROA not before: Mon 10 Mar 2025 15:00:31 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.250.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ef:a6:d7:10:6a:5a:4b:3a:01:9e:3d:eb:f6:2f:ae:d9:0f:6c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:00:31 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:d8:0b:b0:13:7e:64:e1:86:34:d9:f6:a7: ba:5d:b9:5c:14:fb:7b:73:f5:66:a6:4a:61:5c:01: 96:78:79:b9:d2:c4:a4:08:1a:c1:7a:fa:01:eb:85: 8d:2f:c6:d3:56:a6:87:79:30:ca:35:46:b4:4f:08: 2a:30:ee:fe:ed:e1:2a:06:35:3a:01:dd:89:cb:7a: 2d:32:86:3e:58:6d:6c:43:29:d0:de:5d:15:f2:75: 43:0e:0f:53:c1:d3:23:c8:f1:3f:68:dd:f2:46:f7: 69:be:32:27:da:3e:58:92:de:9e:3f:44:a5:fe:41: 97:f5:e1:cd:02:8e:1b:37:4e:3f:7e:5b:5f:43:5e: a5:1b:78:47:fa:f4:f1:ef:fd:ad:4d:7c:fa:ba:c9: c7:00:34:25:ab:a4:f2:30:9e:4e:42:3b:37:d8:1b: 52:85:0c:71:90:21:ae:29:c3:72:78:9f:6e:31:26: 57:0d:70:63:54:03:cd:54:b6:59:7c:78:3f:3c:b3: 8a:75:c6:ad:80:a7:14:31:35:29:05:5e:ea:c5:72: cc:70:fa:5c:a8:22:32:ea:92:d0:5e:cd:f5:85:a2: 15:d2:33:0c:e9:9c:8a:28:f8:75:03:71:16:b2:ff: cd:c0:75:72:1f:65:fa:68:0c:16:f6:56:6a:44:10: 0c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4D:96:B6:6D:E2:68:E2:24:56:41:51:EC:E1:67:38:6B:2C:E4:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa264b3d-8132-4f1a-9f40-817238e6d836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.250.0.0/17 Signature Algorithm: sha256WithRSAEncryption 6a:c6:da:2e:e7:0b:ae:b1:80:5f:5d:0b:b8:f2:f9:ad:d7:30: 4f:f1:69:86:dd:4a:78:bb:23:6b:23:59:9c:ab:59:7a:c2:71: ca:64:74:aa:03:53:2c:b5:91:14:39:08:3c:cf:49:58:8f:e7: 6e:4a:cd:b4:2e:c8:45:dc:cc:ba:ec:a7:e5:fa:f9:16:92:e6: 6a:38:7e:5d:15:1d:8c:96:78:9e:64:35:df:02:cb:a4:ef:2c: fb:f4:c9:4d:6d:99:1b:b8:12:de:78:03:7e:fc:b6:48:bb:e7: d3:e7:d0:29:a8:1e:0c:4f:92:3e:dc:87:a4:c3:f9:13:7a:8a: 78:05:49:e3:bd:a9:4b:2a:f5:f7:62:ef:18:a3:a0:8d:af:2b: 79:1c:be:9d:3b:d5:66:84:5c:bb:9a:9b:ba:36:40:8e:ef:00: a8:bc:fc:79:c8:41:22:70:dc:4d:e1:38:bb:1a:a1:d9:60:da: 77:79:f4:d8:b2:03:39:8d:1d:a6:ee:03:29:e7:7d:ee:1b:8c: 00:61:a8:a4:d4:00:40:be:85:20:b4:73:4a:1f:14:d2:79:a8: cd:16:1f:ba:7a:be:47:cb:cd:5a:0d:24:75:e0:00:83:25:ae: ea:6f:c0:08:6f:8c:bf:b8:67:f2:c0:11:69:26:c1:7f:b2:1c: d8:34:75:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUce+m1xBqWks6AZ496/YvrtkPbH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUwMDMxWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTZjNmMyMGQyY2Q5ZDZhZTMxNTZmMDk3ZGNkMDZlNTkw NGJhYTFiOTFhNTZlYjY0MTkwOTkxYmI3YWQ3ZjRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClDNgLsBN+ZOGGNNn2p7pduVwU+3tz9WamSmFcAZZ4ebnS xKQIGsF6+gHrhY0vxtNWpod5MMo1RrRPCCow7v7t4SoGNToB3YnLei0yhj5YbWxD KdDeXRXydUMOD1PB0yPI8T9o3fJG92m+MifaPliS3p4/RKX+QZf14c0Cjhs3Tj9+ W19DXqUbeEf69PHv/a1NfPq6yccANCWrpPIwnk5COzfYG1KFDHGQIa4pw3J4n24x JlcNcGNUA81Utll8eD88s4p1xq2ApxQxNSkFXurFcsxw+lyoIjLqktBezfWFohXS MwzpnIoo+HUDcRay/83AdXIfZfpoDBb2VmpEEAw3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuE2Wtm3iaOIkVkFR7OFnOGss5CMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhMjY0YjNkLTgxMzItNGYxYS05ZjQwLTgxNzIzOGU2ZDgzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX+gAwDQYJKoZIhvcNAQELBQADggEBAGrG2i7nC66xgF9dC7jy+a3XME/x aYbdSni7I2sjWZyrWXrCccpkdKoDUyy1kRQ5CDzPSViP525KzbQuyEXczLrsp+X6 +RaS5mo4fl0VHYyWeJ5kNd8Cy6TvLPv0yU1tmRu4Et54A378tki759Pn0CmoHgxP kj7ch6TD+RN6ingFSeO9qUsq9fdi7xijoI2vK3kcvp071WaEXLuam7o2QI7vAKi8 /HnIQSJw3E3hOLsaodlg2nd59NiyAzmNHabuAynnfe4bjABhqKTUAEC+hSC0c0of FNJ5qM0WH7p6vkfLzVoNJHXgAIMlrupvwAhvjL+4Z/LAEWkmwX+yHNg0dSs= -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:08 2025 by rpki-client