$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa File: d92cf84d-536c-4213-86c8-c97fdb4209dc.roa (raw, json) Hash identifier: jmTSZqDW/fBBcHaSTZ/TMgXsLrqPdwTu5yo1GaEM9N8= Subject key identifier: 3E:52:6C:20:85:C5:9A:89:9A:D3:64:18:2B:2A:A4:97:66:34:1E:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 786C9987631B9C68CBDFAD35458CCF369F4A970F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa Signing time: Mon 31 Mar 2025 15:31:47 +0000 ROA not before: Mon 31 Mar 2025 15:31:47 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6c:99:87:63:1b:9c:68:cb:df:ad:35:45:8c:cf:36:9f:4a:97:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:31:47 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:3a:94:a6:af:81:c4:bc:dd:1e:1e:c0:01: fc:32:ad:af:69:6f:44:f2:4e:51:51:e3:db:12:23: f9:9c:5b:b6:9b:bf:4c:a3:dd:d8:48:62:34:5c:07: 09:52:23:34:f4:40:0f:06:f7:f9:f2:a0:47:54:60: de:c5:5a:02:8a:39:63:66:e1:ab:5e:b8:3f:7a:2f: cc:dc:36:46:56:ef:c1:51:6f:ce:f6:4e:0b:f1:7a: fb:33:ee:94:d0:df:b2:09:bd:f6:e3:46:3c:e8:92: ec:ad:28:a1:21:27:90:ec:c0:15:0f:3f:70:eb:40: b5:02:de:a3:b8:4e:28:7b:44:2c:2e:c5:9d:6a:f8: 15:b2:3e:e2:11:ce:58:19:e3:2c:15:78:3b:19:d1: 11:56:29:2a:c9:6f:97:12:c2:62:97:01:b3:ec:a3: 95:39:45:09:52:6f:fe:a6:fe:33:89:09:ff:3f:8f: 4e:94:ae:75:27:f3:4a:ea:ff:4a:6b:fd:1c:91:00: 80:65:df:63:e5:1b:4f:fe:3c:c0:8d:c5:db:e7:a1: 98:9f:96:95:39:30:7a:5f:3d:1c:50:9d:a7:c2:bd: d3:8a:4c:56:70:e1:1a:d8:a6:dd:a7:60:25:22:24: 66:7e:19:60:cd:ff:21:ce:27:71:b7:af:bb:79:f4: 09:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:52:6C:20:85:C5:9A:89:9A:D3:64:18:2B:2A:A4:97:66:34:1E:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 51:ed:7a:36:bd:26:1f:1d:56:0f:41:43:c7:0f:bc:1d:a7:3e: 3b:63:65:b7:fe:d8:26:d5:bd:2a:ba:a4:75:b4:2d:37:7b:3b: 3a:98:b0:8b:a9:7e:e4:a3:0d:cf:82:be:11:0e:04:c1:76:9b: ef:0c:35:7e:2e:a1:c7:da:07:e6:aa:6a:5d:fc:8b:ab:a8:a9: 5d:94:66:75:49:22:d0:cf:46:69:6d:d3:5d:06:e4:d6:0d:29: 9d:70:41:db:87:e0:a1:b8:e2:00:f8:f9:a7:9a:01:fd:fc:e0: 18:55:1d:42:27:70:54:b7:3f:71:4a:d3:31:07:29:be:e7:a2: 33:1b:ab:9d:3e:ba:31:0f:d2:4a:3a:da:13:a8:7b:a7:47:f4: 7c:4b:ef:45:76:60:35:f5:45:a2:01:77:fd:8d:bc:87:01:f8: 03:c7:f6:40:2f:12:c4:6f:fc:94:e6:8f:bb:7f:28:9f:e9:17: f3:44:00:70:e2:ac:4f:88:8d:46:bf:61:73:19:4e:6b:08:a7: 0a:60:b5:0d:3f:f2:00:ca:ba:0a:fc:a4:6e:7b:d8:92:6f:a9: b5:f8:67:19:7e:c6:87:32:c2:81:a3:e8:47:b9:ff:ae:6f:7f: 5b:bf:07:22:e7:f6:36:73:11:c2:db:f6:ee:b1:3f:76:6e:30: 30:98:7c:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeGyZh2MbnGjL3601RYzPNp9Klw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMTQ3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTQyMmMyODBmZTBiY2U2YzQ5NjY2ZjIyMzQ3YmMzZTQw MTVmZmU3MTNlOTY5OTQyNjhkN2FmMWU3YjBjZWMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAVTqUpq+BxLzdHh7AAfwyra9pb0TyTlFR49sSI/mcW7ab v0yj3dhIYjRcBwlSIzT0QA8G9/nyoEdUYN7FWgKKOWNm4ateuD96L8zcNkZW78FR b872Tgvxevsz7pTQ37IJvfbjRjzokuytKKEhJ5DswBUPP3DrQLUC3qO4Tih7RCwu xZ1q+BWyPuIRzlgZ4ywVeDsZ0RFWKSrJb5cSwmKXAbPso5U5RQlSb/6m/jOJCf8/ j06UrnUn80rq/0pr/RyRAIBl32PlG0/+PMCNxdvnoZiflpU5MHpfPRxQnafCvdOK TFZw4RrYpt2nYCUiJGZ+GWDN/yHOJ3G3r7t59An/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPlJsIIXFmoma02QYKyqkl2Y0HhgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5MmNmODRkLTUzNmMtNDIxMy04NmM4LWM5N2ZkYjQyMDlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAUe16Nr0mHx1WD0FDxw+8Hac+O2Nl t/7YJtW9KrqkdbQtN3s7Opiwi6l+5KMNz4K+EQ4EwXab7ww1fi6hx9oH5qpqXfyL q6ipXZRmdUki0M9GaW3TXQbk1g0pnXBB24fgobjiAPj5p5oB/fzgGFUdQidwVLc/ cUrTMQcpvueiMxurnT66MQ/SSjraE6h7p0f0fEvvRXZgNfVFogF3/Y28hwH4A8f2 QC8SxG/8lOaPu38on+kX80QAcOKsT4iNRr9hcxlOawinCmC1DT/yAMq6CvykbnvY km+ptfhnGX7GhzLCgaPoR7n/rm9/W78HIuf2NnMRwtv27rE/dm4wMJh8ug== -----END CERTIFICATE-----Generated at Sat Apr 5 12:32:09 2025 by rpki-client