$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8983ed-f974-40d9-a655-88644fc75ec2.roa File: 6c8983ed-f974-40d9-a655-88644fc75ec2.roa (raw, json) Hash identifier: WifxYCO/omWnlp66G0znD0TacQ9E3V/JOmiWDOQQobw= Subject key identifier: 68:FB:B5:5E:84:BA:CD:96:57:08:DF:67:D3:A6:B3:A3:B8:9E:4D:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2215DAD407F0D4CC61C25B65A73A91E640DE5D22 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8983ed-f974-40d9-a655-88644fc75ec2.roa Signing time: Sat 15 Mar 2025 00:01:02 +0000 ROA not before: Sat 15 Mar 2025 00:01:02 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.151.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:15:da:d4:07:f0:d4:cc:61:c2:5b:65:a7:3a:91:e6:40:de:5d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 15 00:01:02 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:95:d5:99:f7:37:fd:bb:3e:94:d1:be:4c:53: c0:fd:07:74:40:8f:18:68:2d:c2:81:00:66:86:1b: 3b:cb:65:01:22:5c:5b:22:76:f2:a0:55:ca:77:5b: c7:71:c9:e6:48:4e:e7:9c:4f:b8:d7:8f:b1:20:95: f3:7e:02:81:a6:15:6b:9b:a8:d1:c0:1a:7c:44:88: 11:78:a7:a4:61:fa:0f:7d:ba:8f:81:e9:bb:fd:41: 54:6c:05:b3:6f:bf:11:1c:b7:9a:5a:96:d1:bb:ef: a6:c6:ea:78:56:a1:ad:14:a2:ad:c7:7b:2e:a8:c3: 14:5f:23:6b:e7:aa:e9:16:4b:db:19:3b:f4:47:c5: 56:50:27:1b:0f:42:20:0b:fc:af:bb:c4:f4:6c:9b: b9:16:8a:17:b1:c4:9e:72:45:ba:66:9f:86:8f:9b: ac:8a:a9:af:ff:b5:21:5a:08:30:9a:c9:86:a1:28: 1e:f9:b3:09:66:bf:dc:e8:1a:24:d0:39:64:c5:24: 45:6b:31:ac:b7:af:65:e1:4b:42:07:3b:d6:bf:74: 4c:03:9f:03:49:90:43:c1:e9:23:b8:3b:76:1c:d6: ef:15:10:57:f2:0b:eb:45:6e:86:3e:49:aa:61:05: 2c:9d:c0:cf:3c:02:13:a6:8a:e9:35:7a:07:da:06: 8d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FB:B5:5E:84:BA:CD:96:57:08:DF:67:D3:A6:B3:A3:B8:9E:4D:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8983ed-f974-40d9-a655-88644fc75ec2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.151.64.0/18 Signature Algorithm: sha256WithRSAEncryption 06:c2:49:a6:6a:2a:43:53:1a:a4:50:23:b0:96:74:a4:94:dc: a5:ac:31:e0:f7:1b:ee:31:8d:13:59:69:eb:f8:5f:ac:2b:cd: 86:e4:59:d8:d8:9b:17:05:d8:4c:9a:7b:fe:a0:e1:63:04:65: 17:d4:e3:7a:f8:5c:c9:2a:24:47:9f:94:c3:bf:af:bd:76:45: 1f:65:b0:b8:fb:a5:16:9d:39:21:26:b3:70:2b:30:f3:9a:10: ff:9e:c7:87:8d:8e:ca:0d:d5:d5:a4:63:cc:c8:d6:fe:31:75: ef:02:f9:9b:72:b3:d2:f1:39:fe:f9:c4:cd:e9:6e:72:05:67: d6:da:ce:ce:bf:51:7c:6b:aa:59:e4:11:a6:b1:b0:6a:31:87: e0:ca:85:0f:c2:3d:d5:b5:e9:4c:fa:a8:e4:b2:a3:fb:c3:68: a9:bf:69:9a:84:e8:fb:69:18:c4:9d:b9:b9:ae:13:a7:90:ef: da:63:31:0c:29:39:f9:18:8e:d1:30:a3:a6:7a:dd:73:9b:44: 29:6b:e3:24:b9:08:e5:b6:99:4b:b2:c9:9e:16:81:c9:87:b4: 59:47:01:f7:6d:d7:80:5e:c0:c4:4c:6d:18:32:06:ed:4b:71: 94:f0:3c:91:cb:95:79:14:7a:11:01:46:d8:46:5a:2a:9e:09: 47:7e:31:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIhXa1Afw1MxhwltlpzqR5kDeXSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE1MDAwMTAyWhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWQyMzQ3NzUyYWEzZGU2YTYzOTZkYTA0MDQ3ZDk0YTQw YWM1NzMxNmZmZDkyMjRjOWViYjI5ZDRkM2EyMTg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeldWZ9zf9uz6U0b5MU8D9B3RAjxhoLcKBAGaGGzvLZQEi XFsidvKgVcp3W8dxyeZITuecT7jXj7EglfN+AoGmFWubqNHAGnxEiBF4p6Rh+g99 uo+B6bv9QVRsBbNvvxEct5paltG776bG6nhWoa0Uoq3Hey6owxRfI2vnqukWS9sZ O/RHxVZQJxsPQiAL/K+7xPRsm7kWihexxJ5yRbpmn4aPm6yKqa//tSFaCDCayYah KB75swlmv9zoGiTQOWTFJEVrMay3r2XhS0IHO9a/dEwDnwNJkEPB6SO4O3Yc1u8V EFfyC+tFboY+SaphBSydwM88AhOmiuk1egfaBo1dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaPu1XoS6zZZXCN9n06azo7ieTVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjODk4M2VkLWY5NzQtNDBkOS1hNjU1LTg4NjQ0ZmM3NWVjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbGl0AwDQYJKoZIhvcNAQELBQADggEBAAbCSaZqKkNTGqRQI7CWdKSU3KWs MeD3G+4xjRNZaev4X6wrzYbkWdjYmxcF2Eyae/6g4WMEZRfU43r4XMkqJEeflMO/ r712RR9lsLj7pRadOSEms3ArMPOaEP+ex4eNjsoN1dWkY8zI1v4xde8C+Ztys9Lx Of75xM3pbnIFZ9bazs6/UXxrqlnkEaaxsGoxh+DKhQ/CPdW16Uz6qOSyo/vDaKm/ aZqE6PtpGMSdubmuE6eQ79pjMQwpOfkYjtEwo6Z63XObRClr4yS5COW2mUuyyZ4W gcmHtFlHAfdt14BewMRMbRgyBu1LcZTwPJHLlXkUehEBRthGWiqeCUd+MWU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:15:29 2025 by rpki-client