$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa File: 2753f989-5094-40f6-9952-e005b9c4f0d6.roa (raw, json) Hash identifier: JB5z7MFg/GDgZk4kYqWS3TCgEER5Dnl90eIaoNfdwGA= Subject key identifier: 8F:07:EE:E6:F9:5C:B4:79:DD:88:5D:95:13:5E:E4:F6:E9:32:FB:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13CEE36ADC1D1CD260AC194B4DB79FFCC4A8597E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa Signing time: Tue 18 Mar 2025 00:21:11 +0000 ROA not before: Tue 18 Mar 2025 00:21:11 +0000 ROA not after: Tue 22 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.192.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 12 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ce:e3:6a:dc:1d:1c:d2:60:ac:19:4b:4d:b7:9f:fc:c4:a8:59:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 18 00:21:11 2025 GMT Not After : Apr 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dd:5b:e5:c8:6a:cc:93:97:2f:22:15:cd:2c: 01:d2:aa:0e:ed:ec:4d:86:2b:b5:81:17:31:f8:ac: ea:4a:e3:a3:7a:49:f5:2e:43:e1:7c:ee:d4:1a:a3: 47:5b:77:6b:9f:a4:9a:d4:13:c6:9c:26:d7:ac:fd: bb:5f:69:a7:3e:51:62:aa:fa:d4:d6:25:61:0a:b2: e7:50:e9:5d:db:79:18:64:11:98:c2:d2:77:bd:88: 2e:d3:b3:3c:e8:fb:db:a2:e6:e4:4e:67:1e:fe:a8: b3:00:9e:8b:ac:ee:b4:78:17:a9:ab:04:49:a2:12: b8:b2:30:63:4c:34:ba:40:f1:10:2a:57:d8:e3:06: 77:58:e4:62:9d:5b:54:7a:ac:52:8a:8f:b2:ab:c4: ab:aa:b3:bd:eb:a2:82:a0:b8:ce:30:47:79:05:54: ed:55:8d:d2:22:09:7e:52:3b:4c:9a:9f:4a:d8:e7: 13:ad:a8:93:33:ba:23:56:bb:88:12:0a:57:75:26: 29:1b:88:0b:af:6f:b2:bb:92:3e:2e:8a:d0:2e:86: 89:25:76:07:ba:25:85:f2:33:b0:1b:4e:6f:e6:10: ce:28:65:f2:09:e1:70:76:20:77:58:86:88:56:22: 15:97:7a:b9:93:22:8c:cc:c5:d3:23:a4:2c:56:e1: eb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:07:EE:E6:F9:5C:B4:79:DD:88:5D:95:13:5E:E4:F6:E9:32:FB:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/11 Signature Algorithm: sha256WithRSAEncryption 8b:42:9e:0e:02:b1:01:4a:be:fb:be:31:2e:24:35:a5:61:cd: 8f:c6:48:a4:3c:34:c0:f2:55:0d:cd:b5:94:01:2c:65:79:22: 75:3b:5a:be:88:29:d8:fe:58:82:ea:bf:77:ab:c5:1a:5b:ed: e4:d3:51:b5:5a:16:fc:a4:57:f0:b6:4c:64:1c:89:e2:a4:80: 2e:fd:f0:7b:9d:7b:94:94:48:0e:fe:5a:88:07:57:b9:db:59: 0c:77:61:f9:af:00:aa:1b:87:06:68:79:85:24:d0:67:f1:74: 23:40:e9:48:46:47:9a:93:6d:4b:fb:02:78:3e:72:2f:14:b6: 38:07:98:6c:34:ea:71:8c:ff:4f:6c:78:78:43:ab:c6:69:b9: 6e:fb:86:e9:7d:52:39:88:88:f4:09:8c:1f:a9:80:f0:84:89: f7:0d:b0:75:87:62:79:bd:9f:73:f3:1e:22:74:54:f4:04:a0: 87:bf:53:e5:39:fe:42:dc:5b:fb:ec:30:f6:9b:d9:57:d0:70: 42:62:55:9e:99:02:b2:f6:8c:59:f2:f5:9d:57:ac:eb:4e:82: 9d:c2:c8:fb:f1:77:65:b2:6b:3c:5a:0e:6c:19:53:9e:56:ff: 2a:cd:6a:12:b7:d1:96:8e:2c:b3:7f:35:dd:3c:95:66:c7:58: 1b:db:51:40 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE87jatwdHNJgrBlLTbef/MSoWX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE4MDAyMTExWhcNMjUwNDIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjVhODcxYWEwNTY2MGI1ZTgxOTIwNmI2OGQwZjJiOTFk MThmOThiMWVmMmM4ZTlkZDNjNzIxNGI3MzU2ZWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR3VvlyGrMk5cvIhXNLAHSqg7t7E2GK7WBFzH4rOpK46N6 SfUuQ+F87tQao0dbd2ufpJrUE8acJtes/btfaac+UWKq+tTWJWEKsudQ6V3beRhk EZjC0ne9iC7Tszzo+9ui5uROZx7+qLMAnous7rR4F6mrBEmiEriyMGNMNLpA8RAq V9jjBndY5GKdW1R6rFKKj7KrxKuqs73rooKguM4wR3kFVO1VjdIiCX5SO0yan0rY 5xOtqJMzuiNWu4gSCld1JikbiAuvb7K7kj4uitAuhokldge6JYXyM7AbTm/mEM4o ZfIJ4XB2IHdYhohWIhWXermTIozMxdMjpCxW4euRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjwfu5vlctHndiF2VE17k9uky+/kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3NTNmOTg5LTUwOTQtNDBmNi05OTUyLWUwMDViOWM0ZjBkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUswDANBgkqhkiG9w0BAQsFAAOCAQEAi0KeDgKxAUq++74xLiQ1pWHNj8ZI pDw0wPJVDc21lAEsZXkidTtavogp2P5Yguq/d6vFGlvt5NNRtVoW/KRX8LZMZByJ 4qSALv3we517lJRIDv5aiAdXudtZDHdh+a8AqhuHBmh5hSTQZ/F0I0DpSEZHmpNt S/sCeD5yLxS2OAeYbDTqcYz/T2x4eEOrxmm5bvuG6X1SOYiI9AmMH6mA8ISJ9w2w dYdieb2fc/MeInRU9ASgh79T5Tn+Qtxb++ww9pvZV9BwQmJVnpkCsvaMWfL1nVes 606CncLI+/F3ZbJrPFoObBlTnlb/Ks1qErfRlo4ss3813TyVZsdYG9tRQA== -----END CERTIFICATE-----Generated at Fri Apr 11 12:31:38 2025 by rpki-client