$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa File: c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa (raw, json) Hash identifier: jvnzz59N624cUxuzgIBem4GGqxQNTWZKIFWKY68py48= Subject key identifier: 6F:23:41:2C:A3:EF:1B:DA:B6:D9:B5:DD:D7:14:85:B9:E8:4F:FA:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 313C151EE0B9B60063C5716016CF379C2F61FDBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa Signing time: Tue 18 Feb 2025 15:10:14 +0000 ROA not before: Tue 18 Feb 2025 15:10:14 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3c:15:1e:e0:b9:b6:00:63:c5:71:60:16:cf:37:9c:2f:61:fd:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:10:14 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:38:6b:b0:7e:84:29:30:a0:90:79:44:bd: 6a:5a:a2:fe:43:1a:5f:0f:39:1f:9a:5f:89:52:ec: 58:be:a2:c0:2f:4c:29:66:e4:43:9a:3b:0b:9f:75: b9:02:57:60:0a:5e:da:dd:d4:7f:a7:9b:e7:e9:5a: e7:bc:61:9c:e5:44:eb:3b:82:7c:50:0f:b5:0c:cd: 81:5e:83:2c:2f:ff:14:57:8e:50:49:36:e2:2f:1f: a0:6e:10:ed:be:f6:55:0e:98:65:1d:9e:f4:a9:27: 5c:d1:12:06:6d:a6:2f:63:c8:ea:73:e4:d2:61:5d: 46:b8:69:0d:b2:30:05:84:cf:1d:d0:08:00:6d:e6: c8:e2:ce:3b:23:33:7b:f0:1c:40:3b:85:35:88:89: 9a:66:a4:0d:0a:fa:52:29:07:b3:56:28:37:43:5d: 5c:e1:d1:bb:b4:2b:b5:3e:aa:3e:4f:42:fb:7d:2b: f1:d2:0f:6b:f8:e3:63:97:91:07:d9:ee:e5:03:0c: 35:f0:88:3a:68:f4:e0:d4:90:54:d8:0c:0b:ac:d8: c2:bd:16:6a:9f:6c:62:aa:d1:30:51:56:2b:74:8c: df:a1:1d:eb:c6:80:2b:57:4a:ce:db:a0:22:ac:0c: 8f:73:33:0b:0a:11:af:1f:a0:1f:be:10:4f:68:32: 11:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:23:41:2C:A3:EF:1B:DA:B6:D9:B5:DD:D7:14:85:B9:E8:4F:FA:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 71:cc:42:e6:c8:b2:46:a8:c2:b6:76:3b:06:86:27:d4:73:ed: bf:41:3c:ce:a7:41:13:ba:a4:b7:32:0e:0c:ce:08:20:56:a2: cf:1b:cc:09:61:74:bf:3b:71:4c:65:8f:be:0f:2c:fc:08:62: 88:fb:23:b7:d4:98:fb:37:c8:d0:3e:e7:75:04:cf:84:86:9f: 79:d6:d7:67:7e:b6:d5:a4:56:c1:6e:10:b8:2b:2a:93:10:84: b7:60:53:3c:d4:39:33:e7:a0:5a:15:9c:8b:8d:2e:7b:ca:aa: c2:7c:07:b6:8a:a9:61:b0:2f:87:4d:80:f4:57:54:61:9f:36: 08:1f:9c:a9:32:44:56:1a:0c:c5:ca:71:c5:6a:ae:88:cd:a8: ae:84:a7:0e:d8:b5:92:ee:cf:36:c0:a6:20:1b:71:10:e0:04: fc:02:ab:07:d2:18:0c:bf:f6:e6:93:ba:13:41:da:04:f4:84: c5:f3:a4:7c:03:41:52:38:3d:4d:21:72:73:2a:f3:8e:f4:2d: 16:63:09:72:08:88:95:7c:88:cf:e8:83:98:4e:13:cc:45:f3: 6f:88:66:d9:66:21:e3:3a:e4:d9:56:d6:03:17:8b:b8:ca:d8: c8:ce:7f:e8:b0:fc:00:f7:fe:87:cc:c6:0c:dd:28:ce:18:56: b2:5b:52:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMTwVHuC5tgBjxXFgFs83nC9h/bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTUxMDE0WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDgyZmRjNDQ3MzA5MzA1ZjQ1YmZkYmVhOGM0Yzc2YzY3 MzVlZjk2ZWQ0OGY3NjM2NDNlYjhlMzVkZGJiNjU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/wjhrsH6EKTCgkHlEvWpaov5DGl8POR+aX4lS7Fi+osAv TClm5EOaOwufdbkCV2AKXtrd1H+nm+fpWue8YZzlROs7gnxQD7UMzYFegywv/xRX jlBJNuIvH6BuEO2+9lUOmGUdnvSpJ1zREgZtpi9jyOpz5NJhXUa4aQ2yMAWEzx3Q CABt5sjizjsjM3vwHEA7hTWIiZpmpA0K+lIpB7NWKDdDXVzh0bu0K7U+qj5PQvt9 K/HSD2v442OXkQfZ7uUDDDXwiDpo9ODUkFTYDAus2MK9FmqfbGKq0TBRVit0jN+h HevGgCtXSs7boCKsDI9zMwsKEa8foB++EE9oMhEzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbyNBLKPvG9q22bXd1xSFuehP+kEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMWU3ZjdjLWM3YzQtNGNiNC04MDUzLTUyYTcxYTg0YTJhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVFAkAwDQYJKoZIhvcNAQELBQADggEBAHHMQubIskaowrZ2OwaGJ9Rz7b9B PM6nQRO6pLcyDgzOCCBWos8bzAlhdL87cUxlj74PLPwIYoj7I7fUmPs3yNA+53UE z4SGn3nW12d+ttWkVsFuELgrKpMQhLdgUzzUOTPnoFoVnIuNLnvKqsJ8B7aKqWGw L4dNgPRXVGGfNggfnKkyRFYaDMXKccVqrojNqK6Epw7YtZLuzzbApiAbcRDgBPwC qwfSGAy/9uaTuhNB2gT0hMXzpHwDQVI4PU0hcnMq8470LRZjCXIIiJV8iM/og5hO E8xF82+IZtlmIeM65NlW1gMXi7jK2MjOf+iw/AD3/ofMxgzdKM4YVrJbUsM= -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:20 2025 by rpki-client