$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa File: b30f0045-88bf-4cab-804d-bca257af8bb6.roa (raw, json) Hash identifier: GCs9gf20hRFAPyd+zObDEud75pc8BsFdcBE+izNea0g= Subject key identifier: 04:07:4B:D7:66:DB:4B:70:7F:1D:F4:3A:4E:D6:90:B7:BC:4C:B6:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B6EB2DBEA9D77EDEE17D5F189290FFFC3B2F962 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa Signing time: Fri 04 Apr 2025 00:02:01 +0000 ROA not before: Fri 04 Apr 2025 00:02:01 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.207.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:6e:b2:db:ea:9d:77:ed:ee:17:d5:f1:89:29:0f:ff:c3:b2:f9:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:02:01 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:3e:f0:ef:94:cc:a6:f7:f8:18:2a:9e:47: 36:6b:73:34:a1:cc:14:6b:6e:93:9c:fb:f5:26:ef: 94:9b:d7:f9:1e:d3:93:c4:20:1f:89:c1:c7:75:5d: e4:38:4b:ad:59:39:09:f6:5a:dc:36:d8:71:71:a2: 94:77:4d:86:e1:a1:22:2a:40:d2:be:8e:29:5d:ff: f4:b2:aa:a3:e4:d9:f8:61:fd:6b:6e:d8:4a:44:53: e4:bb:b0:8f:a3:00:cf:19:4c:26:84:8a:40:b4:87: ae:a1:8e:ba:a6:bf:6b:44:1f:2d:b6:ac:57:00:6b: f2:ca:5e:66:c4:f7:48:40:8b:03:71:e3:66:1d:08: 45:7f:d5:d5:5f:53:23:9c:35:e8:87:1b:46:1d:c6: 22:7f:9a:f5:60:d6:aa:cc:d7:06:e0:5b:dc:9c:73: 2a:22:64:bb:88:88:68:b7:cc:29:1f:4c:45:9b:13: b8:10:6d:3a:c8:03:bc:98:29:d1:7c:d9:d5:a5:80: d7:f1:b2:b6:d9:b7:36:ee:15:b4:2b:ba:1b:e3:b6: c5:3a:1e:55:f6:f1:fb:0f:50:5f:45:c9:03:e6:81: 67:4d:0a:10:a6:c8:09:57:b8:cb:70:6c:66:4b:6e: 59:e6:69:e0:c9:8d:5f:f0:e1:00:fc:30:c2:93:b3: 3a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:07:4B:D7:66:DB:4B:70:7F:1D:F4:3A:4E:D6:90:B7:BC:4C:B6:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.207.64.0/19 Signature Algorithm: sha256WithRSAEncryption b1:66:30:6b:f8:24:73:84:0a:6e:c7:4a:8c:25:2d:b3:11:e8: e7:4e:3a:83:35:7c:ad:39:95:69:19:18:4d:dd:03:ba:95:57: a4:d2:1d:33:66:ac:b5:11:ba:c5:4f:92:2f:59:a3:a6:a2:bf: 3e:94:7d:51:30:13:9f:8c:f8:0c:3e:c3:f8:41:aa:d4:35:8a: c1:43:6f:65:55:14:62:99:2c:e6:66:bf:07:f8:33:ce:a5:d3: ee:08:fb:1b:bd:07:2d:18:b9:34:3b:ef:4c:d5:22:7e:02:94: d5:8b:84:fe:63:61:ff:10:6e:ed:c5:4b:9b:a8:db:4e:40:4e: 24:5b:fd:76:f9:27:9e:28:cb:22:8d:4e:75:d3:9d:b8:45:26: 9c:66:4a:16:f7:6d:c6:95:48:7d:6a:da:fb:7f:90:c9:4a:93: 0d:0d:6e:a0:ff:a9:b5:40:90:72:2b:01:82:fd:1b:78:8b:53: 53:47:f6:b3:7c:f5:c4:87:92:61:43:89:22:92:a8:60:d1:31: f6:54:31:b4:b1:09:b5:db:da:b2:93:d4:f5:d8:2a:7d:3d:e9: 29:2d:50:03:39:26:68:36:21:fd:76:4c:4b:e7:05:8e:08:18: c1:bd:3a:97:60:41:5e:9e:19:d2:5c:85:70:67:1d:c5:0a:45: 32:91:14:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW26y2+qdd+3uF9XxiSkP/8Oy+WIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMjAxWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGYwMTVmZmRjZGIzN2UwNzYxNmI3YWM1OWM0MWY4YTM1 YTE1ZTI1YjczYWFiYWU4YmNmYzc5MmI4ZmMxMTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqjj7w75TMpvf4GCqeRzZrczShzBRrbpOc+/Um75Sb1/ke 05PEIB+Jwcd1XeQ4S61ZOQn2Wtw22HFxopR3TYbhoSIqQNK+jild//SyqqPk2fhh /Wtu2EpEU+S7sI+jAM8ZTCaEikC0h66hjrqmv2tEHy22rFcAa/LKXmbE90hAiwNx 42YdCEV/1dVfUyOcNeiHG0YdxiJ/mvVg1qrM1wbgW9yccyoiZLuIiGi3zCkfTEWb E7gQbTrIA7yYKdF82dWlgNfxsrbZtzbuFbQruhvjtsU6HlX28fsPUF9FyQPmgWdN ChCmyAlXuMtwbGZLblnmaeDJjV/w4QD8MMKTszqbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBAdL12bbS3B/HfQ6TtaQt7xMtl8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMGYwMDQ1LTg4YmYtNGNhYi04MDRkLWJjYTI1N2FmOGJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPz0AwDQYJKoZIhvcNAQELBQADggEBALFmMGv4JHOECm7HSowlLbMR6OdO OoM1fK05lWkZGE3dA7qVV6TSHTNmrLURusVPki9Zo6aivz6UfVEwE5+M+Aw+w/hB qtQ1isFDb2VVFGKZLOZmvwf4M86l0+4I+xu9By0YuTQ770zVIn4ClNWLhP5jYf8Q bu3FS5uo205ATiRb/Xb5J54oyyKNTnXTnbhFJpxmShb3bcaVSH1q2vt/kMlKkw0N bqD/qbVAkHIrAYL9G3iLU1NH9rN89cSHkmFDiSKSqGDRMfZUMbSxCbXb2rKT1PXY Kn096SktUAM5Jmg2If12TEvnBY4IGMG9OpdgQV6eGdJchXBnHcUKRTKRFFQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:43 2025 by rpki-client