$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69a2a1b0-dc51-4592-b1c3-c557a6a8ae27.roa File: 69a2a1b0-dc51-4592-b1c3-c557a6a8ae27.roa (raw, json) Hash identifier: Jv3W8yq2w7p28OUhp2iNWHJOcKQbdp1zJKYFqvKp7Vo= Subject key identifier: C7:95:36:BE:11:55:F4:98:9B:9E:24:78:B4:55:B1:3C:2E:EE:3F:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B4ECAC1EB56B115FFA985EE7D62B83AEADE0CBF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69a2a1b0-dc51-4592-b1c3-c557a6a8ae27.roa Signing time: Wed 19 Mar 2025 00:20:12 +0000 ROA not before: Wed 19 Mar 2025 00:20:12 +0000 ROA not after: Wed 23 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4e:ca:c1:eb:56:b1:15:ff:a9:85:ee:7d:62:b8:3a:ea:de:0c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 19 00:20:12 2025 GMT Not After : Apr 23 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5c:5f:2e:96:39:1c:0b:b5:05:0b:ec:04:ed: ed:6a:0b:81:4a:d9:f7:99:f5:ba:14:0c:3c:4f:a4: 06:c7:62:3d:aa:ad:1c:59:c5:02:69:79:66:92:b2: 9c:ff:88:af:5e:5d:fe:5a:96:26:33:61:9f:6d:b8: 94:9c:3b:4c:00:22:69:1b:90:ab:58:67:0f:54:db: f5:65:8b:4a:89:a8:13:de:38:f8:16:a3:ce:2a:0d: e7:51:06:18:a4:72:50:fd:73:7f:00:42:cc:f3:34: 6c:f5:2e:55:d9:79:61:4e:ff:08:97:0e:92:ae:59: fd:2c:7e:5d:c6:55:63:3e:ce:d7:ec:89:a6:28:96: 79:a4:16:3d:c5:25:e4:cc:40:07:55:1a:d3:31:d7: 47:17:c2:d8:e3:05:a6:fe:f7:8d:5e:70:c3:96:56: b9:fd:18:03:95:b8:62:cd:34:9f:14:9c:8e:bb:64: 92:93:74:5b:55:f0:41:3c:bf:18:80:6f:eb:ca:47: 6a:c5:3f:9f:de:38:2e:31:b9:4b:b4:52:af:24:15: 96:28:63:9f:22:c6:1d:4a:98:3c:44:86:b1:e4:69: e4:17:fd:de:af:b1:72:8f:41:4f:ee:b4:64:c4:75: a8:e3:e7:b3:18:56:71:12:0c:84:39:ea:a1:ae:1b: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:95:36:BE:11:55:F4:98:9B:9E:24:78:B4:55:B1:3C:2E:EE:3F:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69a2a1b0-dc51-4592-b1c3-c557a6a8ae27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.192.0/20 Signature Algorithm: sha256WithRSAEncryption b9:ab:81:b3:72:07:f1:94:51:2a:7e:f7:7f:6e:95:14:21:d9: 5c:62:d6:01:8d:c3:23:45:8f:8c:a3:af:c4:7b:9f:e3:0d:9c: 13:4d:be:20:42:27:75:84:43:af:09:ab:f9:cc:78:5c:1f:39: 4c:4e:4d:d3:60:5c:12:35:95:4f:3a:d6:2b:ba:b0:4c:42:13: 5f:57:ce:63:02:d8:f4:b2:c0:64:a6:df:bb:04:b0:49:ce:38: 56:b2:d7:e2:d4:52:86:8f:23:61:82:d8:1a:06:d3:ff:da:54: 3a:0f:6d:07:40:43:8b:b2:76:99:85:bb:64:1e:01:c2:29:db: c4:71:4c:e7:87:aa:54:02:43:ff:a0:fb:68:f0:9f:c6:4b:86: 96:7c:83:be:5b:07:e7:86:93:d1:09:51:c1:57:fc:70:99:54: 82:03:bc:9d:e3:db:09:63:b8:38:56:0b:e9:31:93:10:f1:72: a4:f6:16:c3:81:ba:2d:a7:a5:e6:40:d5:27:53:60:50:53:6f: 53:a0:0f:00:19:05:c5:66:72:ef:55:7e:07:ca:5f:7c:aa:ba: c3:c2:70:e6:cd:fd:8d:fe:8d:9b:c3:75:b3:b0:03:f0:63:07: 89:e8:be:63:d7:f4:f8:aa:7b:e3:ec:67:50:7d:80:93:1f:1b: 4c:0b:bd:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO07KwetWsRX/qYXufWK4OureDL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE5MDAyMDEyWhcNMjUwNDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODE5MzRkMmRjOWMzYjNhOTllNWZmMDc1YmFkYzgyYjM1 MmNmZGE0M2NiN2NjYjc4ZmZmMGQzNTA1YWVmMmEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqXF8uljkcC7UFC+wE7e1qC4FK2feZ9boUDDxPpAbHYj2q rRxZxQJpeWaSspz/iK9eXf5aliYzYZ9tuJScO0wAImkbkKtYZw9U2/Vli0qJqBPe OPgWo84qDedRBhikclD9c38AQszzNGz1LlXZeWFO/wiXDpKuWf0sfl3GVWM+ztfs iaYolnmkFj3FJeTMQAdVGtMx10cXwtjjBab+941ecMOWVrn9GAOVuGLNNJ8UnI67 ZJKTdFtV8EE8vxiAb+vKR2rFP5/eOC4xuUu0Uq8kFZYoY58ixh1KmDxEhrHkaeQX /d6vsXKPQU/utGTEdajj57MYVnESDIQ56qGuG+YvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx5U2vhFV9JibniR4tFWxPC7uP1AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5YTJhMWIwLWRjNTEtNDU5Mi1iMWMzLWM1NTdhNmE4YWUyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SMAwDQYJKoZIhvcNAQELBQADggEBALmrgbNyB/GUUSp+939ulRQh2Vxi 1gGNwyNFj4yjr8R7n+MNnBNNviBCJ3WEQ68Jq/nMeFwfOUxOTdNgXBI1lU861iu6 sExCE19XzmMC2PSywGSm37sEsEnOOFay1+LUUoaPI2GC2BoG0//aVDoPbQdAQ4uy dpmFu2QeAcIp28RxTOeHqlQCQ/+g+2jwn8ZLhpZ8g75bB+eGk9EJUcFX/HCZVIID vJ3j2wljuDhWC+kxkxDxcqT2FsOBui2npeZA1SdTYFBTb1OgDwAZBcVmcu9VfgfK X3yqusPCcObN/Y3+jZvDdbOwA/BjB4novmPX9Piqe+PsZ1B9gJMfG0wLvS8= -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:00 2025 by rpki-client