$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a908559-3835-4924-b5fe-d49c9ed9c2f0.roa File: 6a908559-3835-4924-b5fe-d49c9ed9c2f0.roa (raw, json) Hash identifier: 9za0QXurn1yJ/rnHTnDpb5KKKoDJef9KaInduF+olgE= Subject key identifier: 8B:2B:10:9B:B7:1C:4D:A5:2F:19:78:39:64:1D:C1:6A:5D:CB:DB:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3333EF33390273466BCE201AA8C800D8D37DF3C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a908559-3835-4924-b5fe-d49c9ed9c2f0.roa Signing time: Mon 31 Mar 2025 15:31:45 +0000 ROA not before: Mon 31 Mar 2025 15:31:45 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.178.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:33:ef:33:39:02:73:46:6b:ce:20:1a:a8:c8:00:d8:d3:7d:f3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:31:45 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:7f:80:4e:0b:88:25:9d:66:5c:23:b6:2e: 11:38:46:82:0e:82:fa:5b:97:21:81:2f:49:66:3f: bd:51:f6:96:78:d1:a0:f9:49:0e:13:8c:7c:97:47: 91:f7:7f:3c:82:90:e1:2a:20:cc:ef:d1:3c:25:dd: 69:73:8f:02:5d:e8:f0:36:37:ff:b6:60:3c:3c:ba: c7:cc:d8:26:28:8b:eb:b8:ed:2f:3a:26:08:46:47: 78:df:bb:ba:57:32:01:77:ff:30:24:8d:47:9a:3a: af:7a:7b:a6:d6:09:24:cd:20:d7:4a:05:b2:73:41: 29:ba:00:ae:a1:41:b3:c6:28:cd:97:fa:d8:18:a7: 5e:94:56:84:0b:c7:49:ab:e3:9d:e4:b3:54:9f:a1: 8a:df:f5:04:d0:ad:9f:e2:07:fd:8f:ce:71:ff:af: ef:7c:4b:65:8a:af:3f:f4:2d:75:29:c0:7a:64:eb: 3a:1a:a1:71:33:98:a5:e0:c4:db:ba:61:87:30:cf: 6d:fe:95:46:59:21:d2:6b:f8:5c:c9:a4:21:20:dd: 14:1d:c1:72:69:10:25:f6:74:c9:ac:7a:e3:14:b8: 33:e3:a9:0b:e3:70:c1:48:aa:90:84:94:ad:42:b2: 55:78:74:a8:b9:c7:6c:58:9f:75:88:ff:be:4d:1b: b8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2B:10:9B:B7:1C:4D:A5:2F:19:78:39:64:1D:C1:6A:5D:CB:DB:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a908559-3835-4924-b5fe-d49c9ed9c2f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.178.0.0/15 Signature Algorithm: sha256WithRSAEncryption 59:19:c6:eb:61:3a:b8:1d:82:2e:47:8b:ed:02:7d:f5:3e:44: 11:1b:97:6b:16:aa:61:16:f3:96:6e:f6:e3:b6:e0:0d:f3:1d: da:92:67:bf:86:2b:27:af:67:6d:b0:7b:e8:22:aa:cc:d2:c2: 0d:9c:ce:1c:0e:1f:29:df:a2:8e:a7:80:8b:e0:04:2c:65:80: a6:2f:4f:48:eb:35:fb:cc:79:9f:bf:91:6c:dd:d1:26:c4:e7: 35:6c:44:c3:cc:db:ad:46:52:d7:29:bd:d4:e7:55:a1:44:f8: ed:b5:f9:bf:a6:8f:bd:7a:79:9a:63:48:cc:c4:2c:c9:77:0b: b4:e4:7c:b9:4c:26:81:58:c7:42:27:33:38:05:99:ca:2d:2e: 37:96:37:27:81:bd:24:90:66:21:f3:39:c3:9e:b3:92:3b:52: 16:40:0c:a8:c9:79:50:c9:6b:c7:a8:17:00:79:29:a5:c0:9d: 2e:a7:da:db:64:51:94:c1:11:13:3b:84:75:dd:d5:a3:13:25: a0:dd:ef:6e:b6:1f:cd:1a:fb:98:2a:b5:d1:37:b2:e5:00:dd: 76:86:bd:49:62:24:81:3a:c6:6e:f7:4b:46:4d:28:b5:17:80: db:55:ef:7a:93:fc:50:ae:d8:8d:f0:53:4f:6b:1c:69:3a:61: 3f:30:09:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMzPvMzkCc0ZrziAaqMgA2NN988AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMTQ1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDA4MTIyOTUwNGY0MTk4MmFmOTkzOTNhOTlmODJiNGY4 MmU4M2VkOGUyMTQ0YjJkNzllYzU4YjVkZWNkMTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPMX+ATguIJZ1mXCO2LhE4RoIOgvpblyGBL0lmP71R9pZ4 0aD5SQ4TjHyXR5H3fzyCkOEqIMzv0Twl3WlzjwJd6PA2N/+2YDw8usfM2CYoi+u4 7S86JghGR3jfu7pXMgF3/zAkjUeaOq96e6bWCSTNINdKBbJzQSm6AK6hQbPGKM2X +tgYp16UVoQLx0mr453ks1SfoYrf9QTQrZ/iB/2PznH/r+98S2WKrz/0LXUpwHpk 6zoaoXEzmKXgxNu6YYcwz23+lUZZIdJr+FzJpCEg3RQdwXJpECX2dMmseuMUuDPj qQvjcMFIqpCElK1CslV4dKi5x2xYn3WI/75NG7jnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiysQm7ccTaUvGXg5ZB3Bal3L2zowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhOTA4NTU5LTM4MzUtNDkyNC1iNWZlLWQ0OWM5ZWQ5YzJmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEosjANBgkqhkiG9w0BAQsFAAOCAQEAWRnG62E6uB2CLkeL7QJ99T5EERuX axaqYRbzlm7247bgDfMd2pJnv4YrJ69nbbB76CKqzNLCDZzOHA4fKd+ijqeAi+AE LGWApi9PSOs1+8x5n7+RbN3RJsTnNWxEw8zbrUZS1ym91OdVoUT47bX5v6aPvXp5 mmNIzMQsyXcLtOR8uUwmgVjHQiczOAWZyi0uN5Y3J4G9JJBmIfM5w56zkjtSFkAM qMl5UMlrx6gXAHkppcCdLqfa22RRlMEREzuEdd3VoxMloN3vbrYfzRr7mCq10Tey 5QDddoa9SWIkgTrGbvdLRk0otReA21XvepP8UK7YjfBTT2scaTphPzAJbw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:38 2025 by rpki-client