$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa File: aceae2b8-bb86-419b-a042-74b95a9ac220.roa (raw, json) Hash identifier: YBtBaXJuQ41y3co2EBScGTcr/KUJ4TQ5aMXXFNHGwZA= Subject key identifier: B3:03:08:9A:36:78:13:FE:60:62:0E:77:5B:5B:55:57:76:64:7A:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F27EEF767AC0DA96685488525B610DB821761BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa Signing time: Fri 07 Mar 2025 00:01:25 +0000 ROA not before: Fri 07 Mar 2025 00:01:25 +0000 ROA not after: Fri 11 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.186.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:27:ee:f7:67:ac:0d:a9:66:85:48:85:25:b6:10:db:82:17:61:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 7 00:01:25 2025 GMT Not After : Apr 11 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:99:11:b5:5a:84:3e:2e:e6:b7:20:04:97: 0a:7b:cf:19:52:cd:4a:1f:92:d3:6b:d1:bb:92:76: 60:d1:5e:6f:b1:54:49:da:53:74:39:eb:2c:d3:c6: b2:f3:4c:62:27:7c:40:6f:de:b1:25:44:49:ed:27: 73:da:ab:df:18:b7:56:6a:50:20:97:e3:2e:7e:b3: 92:1d:e3:bd:4b:61:92:38:86:f2:d9:d4:12:94:90: 46:f4:59:c1:7e:09:79:c8:c9:4e:9d:fb:24:bb:dd: 58:7a:e2:1a:31:0d:1b:94:d9:5e:36:04:f1:bc:66: 07:97:b4:42:08:d3:82:1f:e5:0a:c7:80:de:e1:a8: 22:22:0b:28:70:d8:c7:cd:74:b4:dc:53:b2:70:b8: 97:d0:5a:1f:07:16:d2:e8:ed:be:09:2a:41:85:19: 59:48:6a:2e:7f:04:54:91:94:df:33:12:15:e1:3f: 5c:7f:04:a9:66:61:46:83:81:b2:a8:5a:44:54:5f: f7:ff:aa:9d:0e:15:be:e9:e3:3d:d3:e2:ad:0c:9c: 48:61:fc:36:ec:53:61:ba:a2:d4:77:c4:6e:e5:4c: 91:52:5a:97:2c:e0:1f:eb:49:46:75:2c:d6:c3:48: d2:7b:35:34:1a:29:33:06:0e:8d:4b:cc:6f:dd:af: 60:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:03:08:9A:36:78:13:FE:60:62:0E:77:5B:5B:55:57:76:64:7A:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aceae2b8-bb86-419b-a042-74b95a9ac220.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.186.128.0/17 Signature Algorithm: sha256WithRSAEncryption 75:fe:dd:96:52:6d:ff:52:c0:bb:f5:05:6c:c6:02:b9:a3:6b: cd:a4:5d:43:56:d1:2e:5e:0b:f5:17:7f:0d:48:79:a0:5b:84: 52:cc:40:dd:c5:09:e4:58:bf:3e:a6:8f:30:f2:17:e1:57:c4: 3b:d5:69:04:12:04:70:12:5d:2d:88:1e:01:f2:07:f0:aa:1c: 8a:4c:d1:c8:68:6a:28:14:e6:80:f6:a7:0e:0f:c3:49:5a:c6: cc:b4:c2:e0:9c:a1:a9:eb:ad:bd:8f:4d:09:79:9b:c0:71:0b: 77:f3:76:1f:9a:95:12:48:7a:90:d6:c6:46:69:de:c1:51:b0: ad:d3:98:10:97:55:32:e4:90:cb:3d:d6:2f:e7:14:3d:ee:0c: 32:e0:c9:7c:69:27:f0:85:1b:ea:95:0b:d7:38:a3:04:b0:d7: 79:55:e0:6d:c4:bd:7a:3f:ee:ef:f5:15:b5:aa:43:7e:cd:37: a8:1d:40:d5:1b:22:4c:c8:86:e9:22:72:48:8c:cd:33:51:a9: 54:e2:ee:bb:a3:b7:6f:2d:f2:6e:1a:1d:4a:83:6d:c9:ea:41: 58:af:c5:b9:b4:8f:44:36:30:b8:ea:38:d3:43:c6:d1:f9:3b: fd:a8:43:1f:96:28:48:c5:52:1b:07:ff:a2:66:c7:9a:33:74: 27:00:52:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULyfu92esDalmhUiFJbYQ24IXYb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzA3MDAwMTI1WhcNMjUwNDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGMyZjc5YTI0MmQ3Y2RlMzU1Njg3OGY3ZjI2OTBmM2Fm ODIxZjdjZTdmNzA5YjQ0NjIzNjlkYjUxMzkzOGNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+k5kRtVqEPi7mtyAElwp7zxlSzUofktNr0buSdmDRXm+x VEnaU3Q56yzTxrLzTGInfEBv3rElREntJ3Paq98Yt1ZqUCCX4y5+s5Id471LYZI4 hvLZ1BKUkEb0WcF+CXnIyU6d+yS73Vh64hoxDRuU2V42BPG8ZgeXtEII04If5QrH gN7hqCIiCyhw2MfNdLTcU7JwuJfQWh8HFtLo7b4JKkGFGVlIai5/BFSRlN8zEhXh P1x/BKlmYUaDgbKoWkRUX/f/qp0OFb7p4z3T4q0MnEhh/DbsU2G6otR3xG7lTJFS Wpcs4B/rSUZ1LNbDSNJ7NTQaKTMGDo1LzG/dr2BLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUswMImjZ4E/5gYg53W1tVV3ZkepgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWFlMmI4LWJiODYtNDE5Yi1hMDQyLTc0Yjk1YTlhYzIyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeCuoAwDQYJKoZIhvcNAQELBQADggEBAHX+3ZZSbf9SwLv1BWzGArmja82k XUNW0S5eC/UXfw1IeaBbhFLMQN3FCeRYvz6mjzDyF+FXxDvVaQQSBHASXS2IHgHy B/CqHIpM0choaigU5oD2pw4Pw0laxsy0wuCcoanrrb2PTQl5m8BxC3fzdh+alRJI epDWxkZp3sFRsK3TmBCXVTLkkMs91i/nFD3uDDLgyXxpJ/CFG+qVC9c4owSw13lV 4G3EvXo/7u/1FbWqQ37NN6gdQNUbIkzIhukickiMzTNRqVTi7rujt28t8m4aHUqD bcnqQVivxbm0j0Q2MLjqONNDxtH5O/2oQx+WKEjFUhsH/6Jmx5ozdCcAUnc= -----END CERTIFICATE-----Generated at Thu Mar 13 23:27:32 2025 by rpki-client