$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa File: 9e093b29-3153-49c7-bbdd-9089a1389778.roa (raw, json) Hash identifier: GIQq9DtyTP4c2jsXjEUVqGQVlUJJH93qGqOe2i1ZSuw= Subject key identifier: F5:AD:6E:88:35:C7:D4:00:FF:A5:48:41:F8:3C:8E:4B:FF:B4:92:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C53F4BE993CA50957AE5390910E8AD7A82C1C3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa Signing time: Fri 14 Mar 2025 00:02:01 +0000 ROA not before: Fri 14 Mar 2025 00:02:01 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.169.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:53:f4:be:99:3c:a5:09:57:ae:53:90:91:0e:8a:d7:a8:2c:1c:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 00:02:01 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:0e:79:02:f8:7a:53:77:e1:79:22:26:76: b5:cb:78:e0:93:b7:87:ab:9a:49:5f:b4:98:2f:54: 18:a1:58:d6:da:61:69:fd:0b:46:4a:03:c5:5c:61: 15:a6:42:87:94:2d:04:85:36:77:32:a3:dc:5a:2c: 1f:32:89:30:19:f0:67:e2:43:df:b1:e7:79:58:f3: 4e:c4:5c:4b:6c:65:97:3a:d0:85:f4:a1:6b:85:b2: e3:d7:65:e1:ff:73:da:3a:2e:d6:81:4e:db:55:07: c7:19:d1:9f:c4:4e:71:4d:64:39:55:fe:28:4a:53: e4:31:38:c1:29:2d:75:be:f7:09:05:4e:b8:83:d4: 38:c0:c8:e4:56:25:79:1f:14:0c:bd:36:58:e8:e0: 10:18:08:22:39:11:27:69:5b:af:8d:d0:61:f4:f9: 2d:7b:67:24:4c:71:e0:67:c1:9d:a8:c0:92:5d:12: 57:be:72:45:b5:b0:75:60:6b:2c:18:d0:3f:2a:8c: ad:ae:a9:c8:6c:e3:7c:8e:91:58:c8:79:96:29:84: c4:8d:5b:3b:88:05:50:35:9d:a3:93:02:79:bb:ee: a5:fc:41:a2:74:1e:47:74:73:c0:74:49:37:3b:14: 03:aa:5d:e0:e7:bb:06:90:ac:cd:98:fc:38:40:78: 7c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AD:6E:88:35:C7:D4:00:FF:A5:48:41:F8:3C:8E:4B:FF:B4:92:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:31:7d:49:6e:d0:c2:a5:90:d8:9b:07:38:b3:cc:d8:e4:f9: a9:14:d1:4a:2e:b2:e3:23:ff:8f:ba:fa:db:80:6e:c1:47:a9: 34:80:d1:cd:13:c6:1e:2c:0b:ac:71:6b:e3:37:94:42:8c:6b: a4:23:fc:a4:3b:48:a2:1e:2f:7e:5f:c5:54:46:31:f4:c7:cf: 74:e9:b6:c0:80:fe:84:a6:04:e7:65:c5:27:fc:30:de:76:05: 4c:c5:35:84:b2:91:04:ee:d1:7e:9d:7e:7b:91:4d:87:45:ce: e7:2a:84:54:50:52:a5:2a:d2:a3:1a:7b:fb:da:26:0a:8d:21: 74:07:e8:74:e7:d9:b5:c3:ce:87:ec:58:c6:d9:f7:9f:b0:3e: 55:b7:07:ab:bd:27:4c:99:06:fc:2e:29:38:f8:7f:5c:6c:2a: e3:cb:06:4d:e0:58:92:b9:5d:51:d9:f1:63:d8:f0:fc:c6:ac: 7a:35:67:50:fc:9a:90:a2:70:5a:de:af:9a:09:af:76:8b:0e: a4:6e:a3:10:04:6d:41:c4:3b:c5:37:08:45:d6:2e:55:43:68: 3a:2c:f5:ee:67:f3:07:44:c5:56:d8:ab:b7:8e:9b:d0:c9:f4: 64:1e:2f:72:49:0b:96:ef:ba:ac:5b:5d:94:00:1b:79:55:12: ab:1f:b6:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULFP0vpk8pQlXrlOQkQ6K16gsHD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDAwMjAxWhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjA2NzRmNWRhOTE3YjdlOTI2ZjYwZDQ5MTY4NmI3ZGIw ZmE5YTk5NzUwMDZkOTI2MGIxZGQ3Y2JmNTliYzRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/qQ55Avh6U3fheSImdrXLeOCTt4ermklftJgvVBihWNba YWn9C0ZKA8VcYRWmQoeULQSFNncyo9xaLB8yiTAZ8GfiQ9+x53lY807EXEtsZZc6 0IX0oWuFsuPXZeH/c9o6LtaBTttVB8cZ0Z/ETnFNZDlV/ihKU+QxOMEpLXW+9wkF TriD1DjAyORWJXkfFAy9Nljo4BAYCCI5ESdpW6+N0GH0+S17ZyRMceBnwZ2owJJd Ele+ckW1sHVgaywY0D8qjK2uqchs43yOkVjIeZYphMSNWzuIBVA1naOTAnm77qX8 QaJ0Hkd0c8B0STc7FAOqXeDnuwaQrM2Y/DhAeHx9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9a1uiDXH1AD/pUhB+DyOS/+0kvMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMDkzYjI5LTMxNTMtNDljNy1iYmRkLTkwODlhMTM4OTc3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMqTANBgkqhkiG9w0BAQsFAAOCAQEA2DF9SW7QwqWQ2JsHOLPM2OT5qRTR Si6y4yP/j7r624BuwUepNIDRzRPGHiwLrHFr4zeUQoxrpCP8pDtIoh4vfl/FVEYx 9MfPdOm2wID+hKYE52XFJ/ww3nYFTMU1hLKRBO7Rfp1+e5FNh0XO5yqEVFBSpSrS oxp7+9omCo0hdAfodOfZtcPOh+xYxtn3n7A+VbcHq70nTJkG/C4pOPh/XGwq48sG TeBYkrldUdnxY9jw/MasejVnUPyakKJwWt6vmgmvdosOpG6jEARtQcQ7xTcIRdYu VUNoOiz17mfzB0TFVtirt46b0Mn0ZB4vckkLlu+6rFtdlAAbeVUSqx+2xg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:08 2025 by rpki-client