$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa File: e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa (raw, json) Hash identifier: 38dJw0WzC5dv3b+D4c25C0G0GR/lvQfy48V9s0FOHGk= Subject key identifier: 74:EB:84:8F:79:59:A2:F7:5F:1B:4C:26:55:3F:3E:CC:9D:3F:A8:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46852EA1CD0063E8FC260DC2A86950503E6C1215 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa Signing time: Mon 17 Mar 2025 15:10:16 +0000 ROA not before: Mon 17 Mar 2025 15:10:16 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:85:2e:a1:cd:00:63:e8:fc:26:0d:c2:a8:69:50:50:3e:6c:12:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 17 15:10:16 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:ba:02:58:0d:40:b1:9a:14:2c:ff:9f:b1: 95:a6:17:61:72:e6:29:45:60:24:b6:3a:aa:2b:f1: c7:8b:b2:c6:70:21:d0:a7:ee:90:3b:7e:f9:2c:81: ec:af:e1:cd:39:60:64:7c:cb:5d:4c:99:4c:5a:a6: e4:9d:4c:48:24:cf:1d:75:d5:5b:88:ab:c1:0a:7f: 1d:47:96:a8:a7:6d:7b:40:df:ec:00:a4:c8:64:c6: 78:27:3b:4d:88:8c:d4:0b:10:b2:68:79:2a:23:03: 92:10:2d:59:af:f0:16:68:bd:09:af:46:83:83:e5: a2:8a:42:2c:8a:f2:6e:d1:05:16:e3:9a:73:cb:8a: a2:20:a8:52:2a:51:4a:a5:04:11:b1:f1:37:37:a0: 34:bb:4a:7f:63:d2:df:91:4b:86:7b:b7:d0:16:5d: 08:2d:21:0d:b7:0c:62:3f:b7:ec:2a:0c:b0:73:8b: e0:69:75:c6:3c:a3:37:3a:ff:aa:e6:eb:f8:ae:d1: 1e:73:d8:75:f3:92:d8:07:c1:fd:e0:5b:6c:96:61: 2f:32:f7:44:25:24:e5:4b:73:41:2a:a1:dc:71:ec: 1c:55:8a:16:60:0f:d5:20:65:ef:ca:30:67:25:a0: 76:da:b3:0d:29:d7:a4:aa:51:fb:25:b1:bf:dd:50: 2c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:EB:84:8F:79:59:A2:F7:5F:1B:4C:26:55:3F:3E:CC:9D:3F:A8:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.125.0/24 Signature Algorithm: sha256WithRSAEncryption 82:94:1d:cc:1f:b8:03:88:6d:2f:91:9f:70:0d:d5:28:ac:59: 87:43:0f:2b:90:09:2d:0e:e5:df:af:40:e2:a5:e0:ec:00:b2: 56:73:49:bc:8c:0b:cc:c9:e5:93:a8:80:ac:98:49:29:57:ba: e6:4a:0e:6f:df:95:00:d7:20:c8:b0:9e:12:0c:24:ef:96:12: e2:1d:ea:54:82:e9:97:da:c7:f9:84:11:48:57:b1:c7:be:02: 66:47:ec:00:65:d2:5b:d8:81:98:aa:99:e4:42:48:2d:28:3d: a2:c7:a2:15:0a:24:14:c3:a2:78:4f:13:75:d5:0d:8a:ef:14: db:13:7a:4d:ac:18:41:2a:45:cf:49:8d:ab:a5:89:54:cf:2c: 3e:a3:08:59:51:ad:b1:62:41:fb:af:46:81:ac:b7:18:65:98: 0d:f8:b5:5b:52:64:2f:0c:47:2c:04:f4:b8:b8:2d:69:8f:db: e6:4b:84:6a:00:11:9e:ec:ba:c5:b0:9b:f7:9c:7e:ee:95:1f: 5c:fe:c6:42:75:1b:38:4d:d3:04:40:8f:38:2f:fa:0f:9f:6d: be:93:7d:6f:f4:92:c2:46:95:e1:cb:46:36:ef:a6:97:3d:6e: 2b:47:83:58:fd:c0:4b:92:58:4a:98:7e:83:ba:89:4d:76:3a: 91:6a:65:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURoUuoc0AY+j8Jg3CqGlQUD5sEhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE3MTUxMDE2WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzgyZGVlODgzZWIxZDFlZGMzOWQwMDQ5OGI4MzJjNjMy OGE4Y2VlOTQ1YTg5MjI2YjM0M2M3MDdhZTViYjEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrYroCWA1AsZoULP+fsZWmF2Fy5ilFYCS2Oqor8ceLssZw IdCn7pA7fvksgeyv4c05YGR8y11MmUxapuSdTEgkzx111VuIq8EKfx1HlqinbXtA 3+wApMhkxngnO02IjNQLELJoeSojA5IQLVmv8BZovQmvRoOD5aKKQiyK8m7RBRbj mnPLiqIgqFIqUUqlBBGx8Tc3oDS7Sn9j0t+RS4Z7t9AWXQgtIQ23DGI/t+wqDLBz i+BpdcY8ozc6/6rm6/iu0R5z2HXzktgHwf3gW2yWYS8y90QlJOVLc0Eqodxx7BxV ihZgD9UgZe/KMGcloHbasw0p16SqUfslsb/dUCw7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdOuEj3lZovdfG0wmVT8+zJ0/qAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwNjc3YzY4LTM2ODEtNGUzYy1iNjNhLWUyZGZkZDVlMDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/H0wDQYJKoZIhvcNAQELBQADggEBAIKUHcwfuAOIbS+Rn3AN1SisWYdD DyuQCS0O5d+vQOKl4OwAslZzSbyMC8zJ5ZOogKyYSSlXuuZKDm/flQDXIMiwnhIM JO+WEuId6lSC6Zfax/mEEUhXsce+AmZH7ABl0lvYgZiqmeRCSC0oPaLHohUKJBTD onhPE3XVDYrvFNsTek2sGEEqRc9JjauliVTPLD6jCFlRrbFiQfuvRoGstxhlmA34 tVtSZC8MRywE9Li4LWmP2+ZLhGoAEZ7susWwm/ecfu6VH1z+xkJ1GzhN0wRAjzgv +g+fbb6TfW/0ksJGleHLRjbvppc9bitHg1j9wEuSWEqYfoO6iU12OpFqZco= -----END CERTIFICATE-----Generated at Fri Apr 4 23:44:13 2025 by rpki-client