$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json) Hash identifier: 2Lmu6WJTQjPtj9dOIJtf8Pr1/VNcrv0z5Du9bCNSEeI= Subject key identifier: F9:01:FD:BF:3B:62:6B:39:1F:55:91:4C:5E:66:A9:11:0D:CC:59:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E4DDC93E363B8B664BEAC304E1929D33FFA1CC8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa Signing time: Mon 10 Mar 2025 15:10:18 +0000 ROA not before: Mon 10 Mar 2025 15:10:18 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4d:dc:93:e3:63:b8:b6:64:be:ac:30:4e:19:29:d3:3f:fa:1c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:10:18 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:1e:17:93:16:1a:ea:4e:8d:de:6e:cb:c4: ad:85:bd:20:df:c4:86:7e:e4:92:66:53:e9:34:2d: a6:f4:7d:53:3c:2b:b6:93:41:cd:f7:13:28:a4:2f: d8:f8:14:f1:14:3c:60:42:1d:4c:aa:61:ec:42:22: d6:6c:3a:f7:e2:2a:95:66:3f:9a:6a:6b:37:af:0d: 9e:85:1a:3e:dc:86:31:ff:c8:96:db:fc:2c:f5:11: 40:61:37:15:86:12:8d:1b:ba:cf:b8:55:bb:e5:dc: a6:0d:ea:f6:5c:5c:51:d1:5a:e4:f4:86:e8:0f:1d: 16:9c:e9:fb:b6:13:2e:84:aa:4c:85:5a:28:fa:db: 91:0e:18:f6:ab:e1:6d:40:95:4f:ab:bc:a5:00:0e: b4:07:68:ed:56:91:ce:eb:0a:79:5c:0d:b5:31:4a: d5:3e:71:22:8b:13:fb:f9:06:8d:be:ad:5e:a5:82: f9:9f:00:c4:77:63:f1:45:70:b1:bd:76:dd:96:60: 32:bc:03:54:ed:ab:d5:1f:4d:77:2e:18:98:08:da: e1:fa:77:99:77:08:3b:d8:c0:33:42:81:c7:e3:11: 09:cb:7b:2f:19:82:29:bd:28:c3:a6:5e:0f:73:52: 49:49:1b:48:ba:44:50:d7:c7:cc:00:4c:70:63:34: 33:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:01:FD:BF:3B:62:6B:39:1F:55:91:4C:5E:66:A9:11:0D:CC:59:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:ec:79:4f:be:4d:7a:04:56:4a:63:90:98:5f:67:15:13:60: cc:17:2e:3f:f6:b1:4c:65:79:02:e7:ab:20:95:5a:63:48:16: 83:0b:cb:81:88:bc:25:f1:a8:80:2b:d0:a8:74:58:20:57:b2: d9:d9:7b:f8:d3:6a:93:11:e6:1e:e9:c2:8d:7a:49:aa:ce:ba: c4:67:8b:bf:78:f3:7c:52:1d:34:ce:27:82:3b:ad:ea:5e:da: 1a:85:02:83:3c:e2:34:a5:f7:4b:83:f5:f8:18:19:82:7b:39: 99:66:c8:05:0b:01:40:0a:04:5e:46:40:15:bf:b1:0c:f0:83: 91:3f:8b:85:f3:87:54:36:93:47:cb:77:96:01:c2:f6:cd:f9: f4:fe:41:a3:f7:8c:10:05:e4:a2:e4:11:46:8d:28:cb:10:b3: b3:68:7b:e1:e1:f0:93:17:1a:df:82:08:ab:0d:39:33:e1:1c: 63:7c:17:a0:74:13:23:a5:21:16:43:e5:2b:4b:58:78:b9:67: 43:f6:d9:62:fb:9b:27:c0:eb:9f:c7:a1:4d:c5:3c:9e:e5:6e: 6f:16:a6:35:83:58:8b:2f:cb:93:f3:79:02:0e:f7:94:80:91: a0:37:07:24:46:2a:b2:2d:0b:7d:8d:2a:97:2c:37:fe:6d:c9: cb:be:5c:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbk3ck+NjuLZkvqwwThkp0z/6HMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUxMDE4WhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDU3ODY5MTQzNWE5N2UzZGI1ZTIzYzg2ZGNlYmQyMTk1 Njg5MTRmYjQ1OGE4NWU5ZTE5ZWZmZmMzMTliMjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5xh4XkxYa6k6N3m7LxK2FvSDfxIZ+5JJmU+k0Lab0fVM8 K7aTQc33EyikL9j4FPEUPGBCHUyqYexCItZsOvfiKpVmP5pqazevDZ6FGj7chjH/ yJbb/Cz1EUBhNxWGEo0bus+4Vbvl3KYN6vZcXFHRWuT0hugPHRac6fu2Ey6EqkyF Wij625EOGPar4W1AlU+rvKUADrQHaO1Wkc7rCnlcDbUxStU+cSKLE/v5Bo2+rV6l gvmfAMR3Y/FFcLG9dt2WYDK8A1Ttq9UfTXcuGJgI2uH6d5l3CDvYwDNCgcfjEQnL ey8Zgim9KMOmXg9zUklJG0i6RFDXx8wATHBjNDMPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+QH9vztiazkfVZFMXmapEQ3MWTEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5OTgwMWViLTJhZDYtNDhlYS04ODI3LTBmMmFkYTA3YjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKTANBgkqhkiG9w0BAQsFAAOCAQEAq+x5T75NegRWSmOQmF9nFRNgzBcu P/axTGV5AuerIJVaY0gWgwvLgYi8JfGogCvQqHRYIFey2dl7+NNqkxHmHunCjXpJ qs66xGeLv3jzfFIdNM4ngjut6l7aGoUCgzziNKX3S4P1+BgZgns5mWbIBQsBQAoE XkZAFb+xDPCDkT+LhfOHVDaTR8t3lgHC9s359P5Bo/eMEAXkouQRRo0oyxCzs2h7 4eHwkxca34IIqw05M+EcY3wXoHQTI6UhFkPlK0tYeLlnQ/bZYvubJ8Drn8ehTcU8 nuVubxamNYNYiy/Lk/N5Ag73lICRoDcHJEYqsi0LfY0qlyw3/m3Jy75cJQ== -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:33 2025 by rpki-client