$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa File: f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa (raw, json) Hash identifier: ozBrDPc3DRHubLF5JcD3eCHKPY79TcmQYHGpsRJ1Wv8= Subject key identifier: 95:10:C4:DB:51:10:53:4D:83:8C:CE:4D:11:79:75:A5:72:18:B2:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D0C95532228194A9CB9EC13BB473881CA714A0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa Signing time: Mon 17 Feb 2025 16:41:15 +0000 ROA not before: Mon 17 Feb 2025 16:41:15 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0c:95:53:22:28:19:4a:9c:b9:ec:13:bb:47:38:81:ca:71:4a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 16:41:15 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:2f:9b:1c:af:5b:47:da:78:d4:36:b3:06: 0b:26:d7:c4:b4:69:ee:b2:f4:58:af:99:cb:6f:81: ed:5a:61:55:41:f5:8d:e8:53:9b:02:85:21:37:b5: b4:fc:3f:4a:d7:ba:5e:56:83:02:23:a9:6d:e5:eb: f6:78:87:75:94:22:f9:cf:6a:b4:04:63:7d:67:8a: 56:0f:26:07:ff:d0:2e:f7:07:aa:cb:56:41:2b:cc: 8a:3a:6f:7e:25:9e:08:43:a0:6c:1f:ff:29:27:2f: 61:f4:89:77:ca:12:cf:3b:ef:f9:94:8b:c9:11:94: a0:8f:c0:e9:c5:7c:cf:26:d7:47:a4:be:8c:61:49: d1:50:aa:61:30:18:ae:80:d9:65:9b:4f:e9:2e:84: 8b:dc:e9:23:6f:92:5c:c9:ab:5c:d2:1e:6c:82:04: 8f:f2:ce:bf:03:47:6a:78:8a:ca:ab:cd:78:ed:6a: 6b:66:3d:e7:0f:5c:08:87:f0:8a:a9:0f:e2:39:8c: 79:04:65:40:d4:62:f5:f1:8a:46:df:0c:ac:cd:61: 88:86:12:cd:af:bb:fd:27:0c:22:a3:14:c1:8c:23: 50:4f:47:8a:ac:b1:1b:72:d0:bc:77:63:da:1c:a3: c1:4b:87:42:c0:58:a8:e7:b6:9f:17:c9:e0:d4:28: 23:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:10:C4:DB:51:10:53:4D:83:8C:CE:4D:11:79:75:A5:72:18:B2:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.114.0/24 Signature Algorithm: sha256WithRSAEncryption c5:65:69:c3:1c:c6:78:e3:6d:fa:d5:09:28:47:e7:0f:a5:53: 54:24:79:42:b2:f5:2c:46:86:dc:9b:1d:81:1e:e6:7c:d3:de: 80:09:e0:f1:b9:88:d8:a2:53:bb:55:c6:20:34:06:f7:2f:30: 0b:46:59:5b:48:09:87:be:17:50:97:43:8e:52:93:bf:15:7e: 90:52:4f:58:85:7d:c2:aa:63:08:6d:c9:2f:46:7b:0f:05:4a: cd:b3:06:27:d8:71:d2:e5:ed:1b:59:ec:28:8f:ea:43:36:1c: ce:c7:c1:98:3b:eb:97:5e:5a:69:f2:07:f9:95:27:bb:9c:7a: 42:c2:ef:89:1b:ce:48:90:d6:4e:3f:9a:2a:dd:f2:96:2e:d8: e0:a0:0c:e7:9f:9b:2e:30:73:90:82:72:33:f4:df:9f:34:a9: 66:91:e7:bd:09:67:26:f9:88:65:52:64:a0:19:55:77:a7:f7: fe:1f:6f:d1:f2:66:0c:bf:6f:55:4b:8c:4e:ac:92:72:f4:4d: 53:ae:d6:c3:9b:61:1d:a3:92:1d:e3:93:32:49:33:36:bd:c8: c3:f1:17:2a:0e:fa:2c:95:b7:72:cc:ce:17:7b:89:1d:e8:46: 2a:b5:61:e6:9f:f1:1e:b6:1e:fc:6d:2c:0e:ff:63:23:6c:0b: 47:ce:4c:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTQyVUyIoGUqcuewTu0c4gcpxSgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTY0MTE1WhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODYxYTBjOGViZTdjYmJiZTllZmNkNDA5NmUyYjk0MDFm MzcyMDllYzNkOWFmNDgwZmEzMzQxMDRmMWZjZmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4/C+bHK9bR9p41DazBgsm18S0ae6y9Fivmctvge1aYVVB 9Y3oU5sChSE3tbT8P0rXul5WgwIjqW3l6/Z4h3WUIvnParQEY31nilYPJgf/0C73 B6rLVkErzIo6b34lnghDoGwf/yknL2H0iXfKEs877/mUi8kRlKCPwOnFfM8m10ek voxhSdFQqmEwGK6A2WWbT+kuhIvc6SNvklzJq1zSHmyCBI/yzr8DR2p4isqrzXjt amtmPecPXAiH8IqpD+I5jHkEZUDUYvXxikbfDKzNYYiGEs2vu/0nDCKjFMGMI1BP R4qssRty0Lx3Y9oco8FLh0LAWKjntp8XyeDUKCM3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlRDE21EQU02DjM5NEXl1pXIYskswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyN2I4ZTM0LWNkMjEtNGQyNC04ZWFhLTQ5YTAxZTJmYTc3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HIwDQYJKoZIhvcNAQELBQADggEBAMVlacMcxnjjbfrVCShH5w+lU1Qk eUKy9SxGhtybHYEe5nzT3oAJ4PG5iNiiU7tVxiA0BvcvMAtGWVtICYe+F1CXQ45S k78VfpBST1iFfcKqYwhtyS9Gew8FSs2zBifYcdLl7RtZ7CiP6kM2HM7HwZg765de WmnyB/mVJ7ucekLC74kbzkiQ1k4/mird8pYu2OCgDOefmy4wc5CCcjP03580qWaR 570JZyb5iGVSZKAZVXen9/4fb9HyZgy/b1VLjE6sknL0TVOu1sObYR2jkh3jkzJJ Mza9yMPxFyoO+iyVt3LMzhd7iR3oRiq1Yeaf8R62HvxtLA7/YyNsC0fOTDw= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:18 2025 by rpki-client