$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa File: fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa (raw, json) Hash identifier: 5B+Swmm8ayB2hd95YYF6RqvBOLHtFfIw14o9ATIDblY= Subject key identifier: 38:09:E1:57:3A:3F:77:0F:C0:58:8C:B2:D8:E8:B0:B4:2D:E2:CB:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 015B9D64CE752F469E7B61DF42FA75B1D2C9424A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa Signing time: Mon 17 Feb 2025 16:31:14 +0000 ROA not before: Mon 17 Feb 2025 16:31:14 +0000 ROA not after: Mon 24 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:5b:9d:64:ce:75:2f:46:9e:7b:61:df:42:fa:75:b1:d2:c9:42:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 16:31:14 2025 GMT Not After : Mar 24 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d0:b4:ff:e9:40:9f:23:20:13:7a:6b:2e:39: 86:4a:99:ae:93:fd:2a:ef:07:f8:37:cd:a4:93:5b: a2:f3:b2:48:d5:a9:1c:c2:5c:db:72:b5:3f:26:f9: d3:ab:4f:67:c9:bd:db:02:9f:c4:ce:03:d2:a8:35: 7b:5e:21:f6:a5:7c:bc:01:64:fd:e7:f4:67:4d:4e: 22:2c:7b:3f:3c:5a:9a:ca:9d:be:6c:46:a8:98:ff: 49:95:cc:a2:4a:ba:13:24:13:7a:0e:b2:a4:c8:ab: bd:8e:55:c7:41:33:32:be:bb:78:ba:82:f9:da:74: 35:ce:bc:a9:3e:90:6e:7d:61:1f:54:cf:fc:34:22: 23:46:94:f8:74:82:9c:ba:b3:10:18:0b:c9:86:6a: 91:1b:3f:e1:98:04:61:15:95:42:14:a4:5c:e4:2e: a7:0f:60:fd:a5:b4:29:c0:d8:fd:2c:0e:41:42:67: 24:07:bd:6d:46:5f:3d:d6:58:77:e0:9a:e6:05:ef: 06:51:a8:bd:58:f6:70:cc:5e:34:76:fc:b3:4d:05: 0f:40:37:9f:7f:fd:da:47:7b:ce:57:3c:30:b8:72: 17:e5:9b:1f:3d:09:08:ec:d9:3d:6d:20:fe:84:57: d6:a6:09:33:cc:f1:63:a4:72:f0:e5:7f:b5:0d:c3: 2a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:09:E1:57:3A:3F:77:0F:C0:58:8C:B2:D8:E8:B0:B4:2D:E2:CB:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.69.0/24 Signature Algorithm: sha256WithRSAEncryption ba:34:22:17:1f:16:85:51:fc:2b:8c:1c:c4:1c:9b:23:bc:8d: 88:aa:cc:8c:7e:4d:11:38:98:d8:17:a8:5d:df:d3:e9:a2:19: aa:8a:d8:82:5c:63:a1:08:5c:d9:a3:f5:8c:43:b0:62:4e:7e: 3b:7b:82:7b:3f:48:da:fa:9f:19:06:4d:46:58:9e:2d:30:2f: a7:99:fa:4d:a9:fa:60:58:f3:99:e3:f7:2c:5b:59:fc:b0:3a: f2:90:75:75:2b:cf:03:63:e1:64:96:6f:c4:38:50:4a:3a:df: 89:9c:5f:ae:4b:1c:45:0a:7a:76:65:83:80:6c:4a:06:57:2c: 99:7e:1e:16:7e:36:67:f0:87:2d:07:06:b0:4e:e9:1a:99:28: 4d:3e:a7:bd:b2:68:25:ed:8e:23:ab:9a:81:a3:92:3b:53:f4: 39:ec:3b:00:00:d5:ec:47:b6:a0:c0:92:9b:16:c9:a3:0b:dc: 51:40:8a:b8:f6:18:c6:4a:35:92:69:19:01:93:e0:57:e3:20: ae:f6:9c:fc:2a:4b:8d:db:3e:1b:37:ad:ef:29:f6:83:23:62: 19:33:45:bd:b1:e3:ba:22:24:51:6b:8c:b5:ff:e8:17:48:1b: 54:ca:c3:d1:54:ef:52:79:d0:f2:e1:49:eb:e4:18:76:85:64: c6:8d:a4:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAVudZM51L0aee2HfQvp1sdLJQkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE3MTYzMTE0WhcNMjUwMzI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmQ2OTcyMDI4OGVkOTEyNzAwNTNhMzkyNjVjZDZiZGY0 MjA5YWFjYmFjZGQzYWQ1YzE1YjE5MzY4MzA0MWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDw0LT/6UCfIyATemsuOYZKma6T/SrvB/g3zaSTW6LzskjV qRzCXNtytT8m+dOrT2fJvdsCn8TOA9KoNXteIfalfLwBZP3n9GdNTiIsez88WprK nb5sRqiY/0mVzKJKuhMkE3oOsqTIq72OVcdBMzK+u3i6gvnadDXOvKk+kG59YR9U z/w0IiNGlPh0gpy6sxAYC8mGapEbP+GYBGEVlUIUpFzkLqcPYP2ltCnA2P0sDkFC ZyQHvW1GXz3WWHfgmuYF7wZRqL1Y9nDMXjR2/LNNBQ9AN59//dpHe85XPDC4chfl mx89CQjs2T1tIP6EV9amCTPM8WOkcvDlf7UNwyqvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOAnhVzo/dw/AWIyy2OiwtC3iy4wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZDQ5YmNkLTIyNGYtNGE4Yi05M2QyLTgwZGMxN2NkZDg0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EUwDQYJKoZIhvcNAQELBQADggEBALo0IhcfFoVR/CuMHMQcmyO8jYiq zIx+TRE4mNgXqF3f0+miGaqK2IJcY6EIXNmj9YxDsGJOfjt7gns/SNr6nxkGTUZY ni0wL6eZ+k2p+mBY85nj9yxbWfywOvKQdXUrzwNj4WSWb8Q4UEo634mcX65LHEUK enZlg4BsSgZXLJl+HhZ+Nmfwhy0HBrBO6RqZKE0+p72yaCXtjiOrmoGjkjtT9Dns OwAA1exHtqDAkpsWyaML3FFAirj2GMZKNZJpGQGT4FfjIK72nPwqS43bPhs3re8p 9oMjYhkzRb2x47oiJFFrjLX/6BdIG1TKw9FU71J50PLhSevkGHaFZMaNpME= -----END CERTIFICATE-----Generated at Thu Mar 13 23:31:55 2025 by rpki-client