$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa File: 61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa (raw, json) Hash identifier: awla6dBRMR/Sbn98nPtWyGjGegprE/rIw6SH1sfAt48= Subject key identifier: 7C:7A:83:62:79:0F:44:77:7E:F0:62:3E:BF:9D:38:53:B7:AD:BA:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 730B0B2C5F2ADF978574D99179727CA2073C7703 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa Signing time: Sat 22 Mar 2025 00:01:08 +0000 ROA not before: Sat 22 Mar 2025 00:01:08 +0000 ROA not after: Sat 26 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.131.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0b:0b:2c:5f:2a:df:97:85:74:d9:91:79:72:7c:a2:07:3c:77:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 22 00:01:08 2025 GMT Not After : Apr 26 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:37:81:6b:92:59:ea:89:aa:ae:89:7c:95: 58:e7:8a:4c:cb:70:a5:8e:76:ae:04:b0:a0:13:4c: b4:7f:2c:30:92:6d:1e:4c:8e:d8:ac:27:2c:33:c4: 5a:c3:23:6d:f8:c7:d5:45:15:47:19:79:ec:97:8a: d7:f2:29:c2:4c:34:79:8c:b6:b6:c3:bd:d2:b0:2b: 66:15:28:1d:82:e8:79:13:47:2b:19:29:1c:78:36: 4d:b2:56:6a:45:7b:ae:f1:8f:6b:03:b3:40:e4:62: ae:03:52:44:57:66:98:a1:de:b0:93:43:97:a2:4f: 46:f5:08:d9:be:13:18:52:19:70:d1:a9:92:3b:d7: 02:b0:c0:fb:77:ca:7e:98:61:9c:d8:29:19:6f:8b: 7e:1c:e2:6a:e2:8e:09:a1:95:dc:8c:d5:5e:1a:4e: bf:c8:1b:c1:04:7d:3c:6d:60:65:13:37:52:5a:0a: 39:34:11:4d:4f:2c:b0:93:4b:79:24:0b:5f:cd:94: 31:a0:5d:65:8c:9c:6b:98:0d:d3:6d:15:25:c6:46: de:f1:74:e4:81:83:b3:39:d1:82:6f:23:ab:87:af: e3:14:dc:54:82:db:5e:00:e2:dd:5c:48:ec:bd:46: 3b:0b:37:6b:0e:3a:04:37:40:01:22:bc:0c:e9:69: 5d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7A:83:62:79:0F:44:77:7E:F0:62:3E:BF:9D:38:53:B7:AD:BA:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.131.128.0/17 Signature Algorithm: sha256WithRSAEncryption ac:fe:22:5e:ac:47:b5:67:e1:cb:98:5d:3d:e3:6c:eb:8e:6d: eb:22:51:4c:32:28:9a:f3:95:de:97:1e:f0:43:98:57:b8:33: 88:f9:a1:f9:c7:39:18:2e:51:1b:09:7b:3a:84:62:8f:f9:66: 2d:7a:52:fd:04:3a:86:56:2a:5b:86:d9:b7:76:01:f4:9e:2b: 69:91:54:b2:d0:d0:fb:de:2b:ee:6a:e9:59:69:39:36:52:69: ca:e6:da:03:18:95:4e:fd:a2:ed:93:57:23:94:f9:5c:c5:08: 1e:a1:a7:76:4f:f6:3f:c0:bd:63:bb:df:46:8c:1d:1a:d1:86: 91:75:3b:77:02:c0:6a:b2:21:89:00:21:8c:f4:c2:83:ec:39: 10:6d:a6:d4:88:e3:db:bd:2d:b4:56:84:03:eb:ff:a2:1b:ea: d7:73:83:13:df:0b:eb:78:89:cd:57:66:c9:13:29:53:c8:7e: 3f:ff:0a:43:fb:3e:8d:71:8b:98:c5:32:e3:47:93:bb:29:9d: 8b:7e:9e:9d:14:4d:49:ee:cf:dd:e7:c9:0b:19:03:45:24:f4: 9f:ae:bc:b1:94:3e:fc:e9:d5:41:30:5c:f7:ba:1c:d8:a5:a6: 3e:a9:00:74:31:5e:0a:e1:61:75:15:7f:83:72:14:65:94:d4: 45:0e:3b:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcwsLLF8q35eFdNmReXJ8ogc8dwMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIyMDAwMTA4WhcNMjUwNDI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjA4M2NjZWJiYTVkZDgzNzIzMGFmY2EwNzhhZjgwZTcy NGRmMTI4ZDRkZGM0MTFhZjllMzA3MWVmZWZkZGE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDtTeBa5JZ6omqrol8lVjnikzLcKWOdq4EsKATTLR/LDCS bR5MjtisJywzxFrDI234x9VFFUcZeeyXitfyKcJMNHmMtrbDvdKwK2YVKB2C6HkT RysZKRx4Nk2yVmpFe67xj2sDs0DkYq4DUkRXZpih3rCTQ5eiT0b1CNm+ExhSGXDR qZI71wKwwPt3yn6YYZzYKRlvi34c4mrijgmhldyM1V4aTr/IG8EEfTxtYGUTN1Ja Cjk0EU1PLLCTS3kkC1/NlDGgXWWMnGuYDdNtFSXGRt7xdOSBg7M50YJvI6uHr+MU 3FSC214A4t1cSOy9RjsLN2sOOgQ3QAEivAzpaV2rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfHqDYnkPRHd+8GI+v504U7etukMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNjMwYTQ1LTVjZTYtNGFhYS1iYTNiLWI0NjgyYmM4N2VkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdAg4AwDQYJKoZIhvcNAQELBQADggEBAKz+Il6sR7Vn4cuYXT3jbOuObesi UUwyKJrzld6XHvBDmFe4M4j5ofnHORguURsJezqEYo/5Zi16Uv0EOoZWKluG2bd2 AfSeK2mRVLLQ0PveK+5q6VlpOTZSacrm2gMYlU79ou2TVyOU+VzFCB6hp3ZP9j/A vWO730aMHRrRhpF1O3cCwGqyIYkAIYz0woPsORBtptSI49u9LbRWhAPr/6Ib6tdz gxPfC+t4ic1XZskTKVPIfj//CkP7Po1xi5jFMuNHk7spnYt+np0UTUnuz93nyQsZ A0Uk9J+uvLGUPvzp1UEwXPe6HNilpj6pAHQxXgrhYXUVf4NyFGWU1EUOO5Q= -----END CERTIFICATE-----Generated at Sat Apr 5 11:14:03 2025 by rpki-client