$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa File: e4274e13-b3eb-47ca-8f50-e130d402b187.roa (raw, json) Hash identifier: O1UyePNwkGp2rQB+2+REWB1IDMFk4/UZPvVbnOFugvs= Subject key identifier: B3:15:B5:FF:1A:35:44:B4:02:B5:72:71:1F:49:D3:73:8A:B8:2E:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5EA3F2509AEC8AB603896230CFE45203EF8549B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa Signing time: Mon 17 Feb 2025 16:20:16 +0000 ROA not before: Mon 17 Feb 2025 16:20:16 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.167.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a3:f2:50:9a:ec:8a:b6:03:89:62:30:cf:e4:52:03:ef:85:49:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 16:20:16 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b7:86:2c:25:8b:46:32:54:6f:8c:92:9e:9d: ff:c5:cb:80:e5:43:f6:fb:c0:7c:85:fd:f3:19:95: 2c:51:8c:ce:2e:80:0a:9c:86:ac:16:f4:db:f8:bc: 32:5a:a8:d4:38:51:d7:77:a2:df:80:a4:e8:38:7a: b2:0d:30:c5:17:94:cc:b5:02:e0:2f:d3:38:29:8c: 60:66:a3:c3:ce:10:33:5d:72:0d:2b:ba:62:4f:d1: d0:a0:72:fc:7b:fa:99:0b:b0:78:d3:e8:32:71:ff: b7:8f:c8:fc:4f:13:5c:78:da:d1:d4:6d:87:e6:4c: 22:59:f8:67:54:fb:a0:9d:65:2f:b9:d2:ba:95:ae: b2:fd:7e:14:ba:6b:e2:b6:eb:24:0b:77:79:0c:7a: 3b:02:7a:fb:55:81:5c:ce:c4:a0:d6:93:3d:eb:0c: 7c:bb:e7:c8:49:5d:f8:b1:8d:8e:cb:ad:01:27:b3: 9a:58:3f:d4:b0:6c:3f:38:77:7b:5d:a1:81:1c:20: b2:2a:5c:9f:07:a2:25:a3:0f:da:d5:a7:e0:e3:5b: 63:b1:68:6c:d1:db:19:c7:2e:a5:09:30:d4:6b:59: a2:f6:ce:f6:d0:13:b0:88:3e:eb:18:1a:32:99:91: f9:e1:0a:96:bf:ce:01:95:ad:37:b5:40:a4:68:97: 60:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:15:B5:FF:1A:35:44:B4:02:B5:72:71:1F:49:D3:73:8A:B8:2E:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4274e13-b3eb-47ca-8f50-e130d402b187.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption c6:24:88:eb:1b:df:d9:fb:8a:ba:d9:03:3d:63:6e:98:f2:ca: 21:92:fc:86:34:ff:b3:50:b7:9e:0f:64:30:bd:8a:b2:77:31: d8:f8:9a:d7:d1:67:20:57:4c:1f:36:e6:f7:08:2c:49:6f:99: 29:9b:2b:b6:fb:eb:b7:10:e6:83:aa:e3:37:67:30:d5:8b:95: 1f:4d:fa:d8:1d:d6:1e:3a:a1:e2:56:9c:71:27:27:53:30:22: 1b:8f:a2:16:89:36:9d:34:74:e8:a3:94:f9:78:a2:ec:7a:99: 17:ba:07:dd:41:9f:49:15:a6:56:33:ca:36:38:af:bc:90:7b: a3:e7:f9:7d:3c:09:36:51:8d:b5:d5:07:41:b3:17:9a:48:d0: a5:ef:2e:34:8b:ba:19:51:4a:e9:29:3a:d0:01:dc:25:7b:b7: fa:7c:c7:56:3e:0f:5a:7a:d1:4b:a7:ee:ac:c4:2c:ac:43:79: 31:4b:fe:3a:05:d6:74:5b:da:27:ab:29:05:4a:31:a0:06:3e: bf:3f:75:3b:94:03:00:a7:43:8a:b3:11:2a:09:1a:1c:d6:c9: 95:5f:41:c4:9c:1e:ca:bd:1c:4a:c7:78:eb:d5:45:16:6c:51: 8b:27:35:bd:ca:75:40:a7:29:4f:f5:fd:fd:54:ad:34:73:2e: a9:a7:95:d6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXqPyUJrsirYDiWIwz+RSA++FSbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTYyMDE2WhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2I2ZmNmZjFlMTY2MjUxOGE2NmNhOGJmYmE2ODRiYTg5 MzkxMTliY2QxYzYyNDI3N2Y0ZDE3NzY4NGRhMDUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyt4YsJYtGMlRvjJKenf/Fy4DlQ/b7wHyF/fMZlSxRjM4u gAqchqwW9Nv4vDJaqNQ4Udd3ot+ApOg4erINMMUXlMy1AuAv0zgpjGBmo8POEDNd cg0rumJP0dCgcvx7+pkLsHjT6DJx/7ePyPxPE1x42tHUbYfmTCJZ+GdU+6CdZS+5 0rqVrrL9fhS6a+K26yQLd3kMejsCevtVgVzOxKDWkz3rDHy758hJXfixjY7LrQEn s5pYP9SwbD84d3tdoYEcILIqXJ8HoiWjD9rVp+DjW2OxaGzR2xnHLqUJMNRrWaL2 zvbQE7CIPusYGjKZkfnhCpa/zgGVrTe1QKRol2CbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsxW1/xo1RLQCtXJxH0nTc4q4LjEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0Mjc0ZTEzLWIzZWItNDdjYS04ZjUwLWUxMzBkNDAyYjE4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pzANBgkqhkiG9w0BAQsFAAOCAQEAxiSI6xvf2fuKutkDPWNumPLKIZL8 hjT/s1C3ng9kML2Ksncx2Pia19FnIFdMHzbm9wgsSW+ZKZsrtvvrtxDmg6rjN2cw 1YuVH0362B3WHjqh4laccScnUzAiG4+iFok2nTR06KOU+Xii7HqZF7oH3UGfSRWm VjPKNjivvJB7o+f5fTwJNlGNtdUHQbMXmkjQpe8uNIu6GVFK6Sk60AHcJXu3+nzH Vj4PWnrRS6furMQsrEN5MUv+OgXWdFvaJ6spBUoxoAY+vz91O5QDAKdDirMRKgka HNbJlV9BxJweyr0cSsd469VFFmxRiyc1vcp1QKcpT/X9/VStNHMuqaeV1g== -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:26 2025 by rpki-client