$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f542397a-2664-4186-9a24-a87ab5343f33.roa File: f542397a-2664-4186-9a24-a87ab5343f33.roa (raw, json) Hash identifier: wER1lPlQAFC3SvKlJqCJ0cbBEiy0tpmEpyELjX1vrm8= Subject key identifier: 75:C6:2E:B0:CA:8F:9A:F0:DC:41:1A:EB:75:91:78:DA:38:0B:19:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38A1DB9AD82D31AF0C20FB3487EB35C808C0D295 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f542397a-2664-4186-9a24-a87ab5343f33.roa Signing time: Wed 12 Mar 2025 00:02:21 +0000 ROA not before: Wed 12 Mar 2025 00:02:21 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a1:db:9a:d8:2d:31:af:0c:20:fb:34:87:eb:35:c8:08:c0:d2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:02:21 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6f:cb:cb:94:f9:40:3a:b0:14:86:9d:4f:0d: bb:20:9e:fb:d5:62:e3:a5:fc:00:ba:d3:a2:7e:f6: c9:30:7c:c2:54:e4:e9:87:e0:df:4c:cc:31:5d:7e: 96:47:cd:62:48:5a:4b:71:13:1a:cd:e9:10:87:f5: b0:9d:c9:45:13:00:a7:38:0a:7d:9e:a3:96:a9:11: 30:94:47:63:ea:3a:86:be:58:3a:34:9d:06:9b:77: b6:10:03:24:4c:d2:cf:7b:46:cb:2d:7a:17:27:aa: 93:bf:4a:3e:17:2e:ad:69:89:1c:55:c3:37:cd:18: 9e:84:ff:4d:08:34:45:54:31:01:1c:f8:be:ea:43: 70:aa:f8:20:33:34:d1:35:62:86:21:0d:ba:28:c4: ea:b8:34:ba:30:ed:f4:ec:c2:c8:92:b9:34:e5:3c: 64:bf:83:8c:ce:15:8a:9b:1b:58:5e:23:f4:48:55: 66:13:cf:31:3e:15:54:ec:08:c9:7a:2b:d5:46:e9: ac:b4:fc:67:42:ed:50:a6:e9:99:88:b1:4c:ab:be: d7:b9:67:e2:26:5e:36:0c:dc:fd:65:eb:77:1f:88: 45:d4:be:41:4a:28:5a:a6:b7:42:3b:1f:d5:9a:b7: 43:44:2f:83:53:78:e5:db:3e:71:ae:87:0e:4b:59: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C6:2E:B0:CA:8F:9A:F0:DC:41:1A:EB:75:91:78:DA:38:0B:19:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f542397a-2664-4186-9a24-a87ab5343f33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:bc:58:ce:9e:30:e2:b3:29:16:a8:ba:15:49:d5:1f:9d:50: ca:7b:a5:e0:86:e3:76:c3:9e:4d:60:aa:92:a0:78:ba:07:be: b8:f4:10:79:b3:a7:2a:42:64:f7:53:c7:8c:11:86:88:89:b3: 18:15:d5:c2:33:3c:80:c2:19:be:84:39:e0:08:e4:6b:2f:fa: d8:62:14:bd:7b:d8:4f:05:67:59:94:33:db:7c:f6:62:f1:bf: bc:d1:4a:2f:85:b3:6f:9c:59:f2:d4:4c:9f:e6:54:3c:23:c3: ae:9c:8c:09:ad:4d:86:82:81:76:d7:0a:e4:31:a4:b4:75:f5: 4a:06:1f:ad:81:ac:fe:46:3a:23:57:38:40:1f:e2:96:e7:62: 39:c8:78:ec:47:d5:08:3e:07:52:5d:fb:13:2a:6f:71:7f:cc: eb:c0:76:23:87:16:da:25:b5:29:4a:14:ff:d3:c6:f6:e8:2a: 93:1a:01:7e:66:d1:7e:41:fb:82:ec:6a:dd:63:e4:f6:33:bb: f3:70:c3:36:7b:8c:18:77:1e:e7:8d:6f:40:0b:ea:00:78:50: 97:ba:7b:fb:b1:1b:a6:32:00:26:d7:2b:7f:2c:67:da:5b:ad: 69:c5:90:84:c9:4f:0c:08:ed:cf:c3:44:2d:b4:f6:71:72:66: b9:9a:33:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOKHbmtgtMa8MIPs0h+s1yAjA0pUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAwMjIxWhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTA2ZTYwMzZiMGE5ZjgxNmU4MThhMGIyMTc5YjdhOWUx NjQ0ZmRjZmE1NDMyOWY4NWYzMjQyMDBlZTUwMDVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrb8vLlPlAOrAUhp1PDbsgnvvVYuOl/AC606J+9skwfMJU 5OmH4N9MzDFdfpZHzWJIWktxExrN6RCH9bCdyUUTAKc4Cn2eo5apETCUR2PqOoa+ WDo0nQabd7YQAyRM0s97RsstehcnqpO/Sj4XLq1piRxVwzfNGJ6E/00INEVUMQEc +L7qQ3Cq+CAzNNE1YoYhDbooxOq4NLow7fTswsiSuTTlPGS/g4zOFYqbG1heI/RI VWYTzzE+FVTsCMl6K9VG6ay0/GdC7VCm6ZmIsUyrvte5Z+ImXjYM3P1l63cfiEXU vkFKKFqmt0I7H9Wat0NEL4NTeOXbPnGuhw5LWRxFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdcYusMqPmvDcQRrrdZF42jgLGRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1NDIzOTdhLTI2NjQtNDE4Ni05YTI0LWE4N2FiNTM0M2YzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCUDANBgkqhkiG9w0BAQsFAAOCAQEAX7xYzp4w4rMpFqi6FUnVH51Qynul 4IbjdsOeTWCqkqB4uge+uPQQebOnKkJk91PHjBGGiImzGBXVwjM8gMIZvoQ54Ajk ay/62GIUvXvYTwVnWZQz23z2YvG/vNFKL4Wzb5xZ8tRMn+ZUPCPDrpyMCa1NhoKB dtcK5DGktHX1SgYfrYGs/kY6I1c4QB/iludiOch47EfVCD4HUl37EypvcX/M68B2 I4cW2iW1KUoU/9PG9ugqkxoBfmbRfkH7guxq3WPk9jO783DDNnuMGHce541vQAvq AHhQl7p7+7EbpjIAJtcrfyxn2lutacWQhMlPDAjtz8NELbT2cXJmuZoziw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:05 2025 by rpki-client