$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa File: 75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa (raw, json) Hash identifier: +5cX8qsX7L5Lxogczl7r4HlxwBvLRiiy1Q9exHAuXO4= Subject key identifier: F5:FE:F0:84:B8:21:BA:19:81:49:CD:7E:11:83:E8:6E:F9:6B:6F:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 421C671466C69EC020C0A65EE4B4047FE97647CA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa Signing time: Fri 14 Mar 2025 00:02:00 +0000 ROA not before: Fri 14 Mar 2025 00:02:00 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.15.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:1c:67:14:66:c6:9e:c0:20:c0:a6:5e:e4:b4:04:7f:e9:76:47:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:02:00 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4d:83:2f:32:9a:b7:e9:ae:90:7e:66:e3:5e: 29:9c:f4:2b:1d:24:da:c5:3f:6a:e5:9e:d9:e3:fe: 99:b6:6e:8a:b4:20:0d:81:d9:4d:9a:bd:f0:c7:d3: 03:03:4f:22:36:8b:26:fa:19:81:c4:f6:5c:b2:f1: ed:7c:3a:48:e7:73:8f:79:1c:09:86:b7:81:59:78: ae:01:4f:9e:2e:c7:8e:73:92:3d:34:77:b6:26:1a: 6d:12:04:b6:a3:5c:eb:e5:bf:ce:f7:7a:0e:e8:ae: 64:29:fb:84:c7:a7:4c:f3:e8:bd:02:bd:b1:3b:20: 9a:08:20:7f:2d:86:a8:88:3d:d2:68:b1:91:94:fc: 5b:08:0d:e9:8a:43:3d:50:bc:df:d2:69:9a:e3:18: 96:72:91:47:73:dc:b3:60:cb:78:fc:58:50:dd:59: ab:a7:0d:8d:d4:2f:93:69:47:c2:e1:33:80:5d:fd: 0c:67:5c:76:6e:74:99:73:c2:b9:4a:26:79:56:d5: 0d:fd:31:4b:39:db:ca:ee:f4:ed:94:69:f2:a5:7b: d7:08:ed:09:d0:7d:01:80:aa:90:45:02:e7:75:b6: b3:b2:f9:f4:f3:aa:3e:ee:b5:a1:50:8f:21:d4:01: 85:49:8f:96:33:91:4f:07:d5:f4:fe:54:65:d2:20: 39:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:FE:F0:84:B8:21:BA:19:81:49:CD:7E:11:83:E8:6E:F9:6B:6F:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.15.72.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:94:80:52:e1:91:08:ed:23:83:08:f1:e0:34:5c:0b:c9:db: 5d:4a:fa:3c:f3:5e:51:5a:1d:47:9d:eb:3e:77:72:71:73:10: ad:15:be:df:61:21:e6:d3:89:e7:4d:09:86:8e:0e:1b:95:17: e8:a2:ce:32:b4:6c:92:24:cd:9b:f8:5e:55:25:4d:87:2b:b6: ff:2f:16:81:7b:c8:2a:92:8b:9c:5d:c5:db:4c:2f:df:c5:a4: c2:ae:a8:53:60:fd:2e:d7:8c:f7:19:3b:d2:02:66:aa:a1:8d: 24:a5:64:c0:14:7d:93:79:43:7e:a4:44:fd:1e:87:a6:1a:ea: f1:52:a5:da:e0:ed:51:97:d8:dc:28:bd:b8:dc:a4:ad:ce:39: f5:da:1a:60:4c:65:99:b3:dc:9b:e8:da:35:a8:10:c9:0b:7f: a6:e0:a1:39:04:39:a0:b8:da:79:be:89:b2:9c:71:55:80:83: e1:e5:ec:42:ed:f6:8b:ca:13:85:22:a7:02:5f:67:17:a9:ed: 0e:70:81:39:28:e6:0f:e1:2d:8c:e6:59:53:55:c5:1c:f7:c0: 2a:96:bd:29:0d:b7:8d:08:7c:e5:d9:21:c3:fe:0b:7c:80:b1: a5:15:a4:30:2a:0a:2d:ff:eb:00:c9:97:a5:fa:58:3a:32:c9: c6:4d:05:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQhxnFGbGnsAgwKZe5LQEf+l2R8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDAwMjAwWhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzBmMWVmZWJkOTM2YTY2N2QyYTRlN2U4OTU3YTYxNzll YWY5MzA3MTU2YzI5ZmZjMTcxMDRhYzBiOTE2ZGRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbTYMvMpq36a6QfmbjXimc9CsdJNrFP2rlntnj/pm2boq0 IA2B2U2avfDH0wMDTyI2iyb6GYHE9lyy8e18Okjnc495HAmGt4FZeK4BT54ux45z kj00d7YmGm0SBLajXOvlv873eg7ormQp+4THp0zz6L0CvbE7IJoIIH8thqiIPdJo sZGU/FsIDemKQz1QvN/SaZrjGJZykUdz3LNgy3j8WFDdWaunDY3UL5NpR8LhM4Bd /QxnXHZudJlzwrlKJnlW1Q39MUs528ru9O2UafKle9cI7QnQfQGAqpBFAud1trOy +fTzqj7utaFQjyHUAYVJj5YzkU8H1fT+VGXSIDkPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9f7whLghuhmBSc1+EYPobvlrb8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZDlmY2Y0LTQyMjgtNDlkNS1iZDdiLWQwNDM5MTQxZmI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMD0gwDQYJKoZIhvcNAQELBQADggEBADyUgFLhkQjtI4MI8eA0XAvJ211K +jzzXlFaHUed6z53cnFzEK0Vvt9hIebTiedNCYaODhuVF+iizjK0bJIkzZv4XlUl TYcrtv8vFoF7yCqSi5xdxdtML9/FpMKuqFNg/S7XjPcZO9ICZqqhjSSlZMAUfZN5 Q36kRP0eh6Ya6vFSpdrg7VGX2NwovbjcpK3OOfXaGmBMZZmz3Jvo2jWoEMkLf6bg oTkEOaC42nm+ibKccVWAg+Hl7ELt9ovKE4UipwJfZxep7Q5wgTko5g/hLYzmWVNV xRz3wCqWvSkNt40IfOXZIcP+C3yAsaUVpDAqCi3/6wDJl6X6WDoyycZNBbM= -----END CERTIFICATE-----Generated at Sat Apr 5 13:22:37 2025 by rpki-client