$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa File: e261c24b-13a0-4019-b3b3-0562e86aea2f.roa (raw, json) Hash identifier: rA31iZBYWDpkQGdb1udfvXf8iB1PxpMWeIZT2AlNwF8= Subject key identifier: F0:6F:98:48:A9:B3:79:0E:C9:5E:CA:EA:5E:4A:24:1C:CD:B4:6B:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D7628A0B84CE47124BB26B3DF3BDB1218FE2B0D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa Signing time: Fri 04 Apr 2025 00:11:14 +0000 ROA not before: Fri 04 Apr 2025 00:11:14 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.223.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:76:28:a0:b8:4c:e4:71:24:bb:26:b3:df:3b:db:12:18:fe:2b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:14 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c7:88:72:ef:b4:c2:f2:a5:0e:28:bb:cd:71: 56:18:60:20:e1:b9:3d:a2:2c:fb:b1:94:98:ae:55: 1b:6b:19:95:8e:04:c2:2b:2a:d1:bc:b2:a1:5d:16: 5c:c9:b3:49:2b:8b:72:6f:3a:4b:e7:01:02:9c:ae: aa:ad:f2:9b:d0:aa:11:21:f0:11:3b:29:28:fb:49: 67:40:51:71:6a:ea:5c:b5:76:9f:1d:2e:6c:20:47: f7:f7:e8:2d:dd:db:b3:d6:f3:81:23:4b:8b:a0:e9: 62:7e:89:f6:91:16:a7:76:fd:fd:15:90:26:e2:90: 11:fc:aa:67:5c:86:a5:cb:68:cd:5c:1d:f2:a9:ec: 75:69:56:41:eb:2c:3d:c2:49:16:33:9a:52:85:cc: a1:9b:c5:d3:c3:93:02:de:e1:54:bb:88:72:d5:4e: c9:90:ab:ef:05:ff:73:b5:79:a5:c4:d1:cb:fc:0c: c3:65:08:6a:69:05:a2:a1:ec:ae:10:9f:98:25:a3: d9:75:0b:e2:2e:23:db:28:3b:5c:58:c5:65:a0:88: a3:cc:de:cd:26:68:5e:e5:b7:a2:1e:a4:48:27:a7: fd:cb:df:3b:ef:95:24:5a:4e:ed:3b:eb:1b:7b:88: 7c:0d:cd:4c:45:c0:bc:d1:af:11:91:97:99:f8:f4: 8c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6F:98:48:A9:B3:79:0E:C9:5E:CA:EA:5E:4A:24:1C:CD:B4:6B:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.223.0.0/16 Signature Algorithm: sha256WithRSAEncryption ba:6d:02:8e:53:c0:5a:04:1c:7d:15:08:d2:5f:6a:95:07:77: 0e:6e:c9:c5:f4:0d:8c:40:74:48:a5:0c:40:57:84:5c:42:45: 54:ac:b3:31:9d:6e:ef:60:b0:8a:94:1a:42:29:9f:e6:1a:af: 0c:94:be:ff:ea:f8:5d:96:f6:37:7d:a7:90:f6:a6:4d:58:3c: a0:e1:a9:9d:4d:f7:5e:99:65:ee:e1:69:a6:10:ab:8f:48:2b: 01:65:53:85:98:f7:41:c9:61:c0:52:f4:2d:7d:97:d7:76:52: 7b:70:2c:ec:8b:5d:33:59:02:c3:65:aa:cc:6e:9e:96:14:94: 3c:1a:80:cf:19:d3:95:49:52:5b:96:b9:df:99:fc:c4:83:1f: f6:31:fb:fd:91:bc:3b:16:b6:fe:94:ef:88:8f:26:46:05:bf: 66:a0:57:83:47:f9:d2:2d:8e:5e:e2:1c:14:89:67:be:d9:1a: c7:9a:ab:26:90:2b:e2:5d:fa:6f:e6:81:68:bc:9b:7a:0e:df: df:5f:3a:eb:54:eb:8f:21:b3:35:62:c4:8e:40:ea:28:86:d2: 27:12:ca:7a:ff:2f:b6:9c:af:1e:e3:d8:20:a6:54:80:da:ee: b3:a5:36:e1:aa:f6:5c:6d:ea:b2:a5:9c:5f:c0:fc:16:4a:3a: 99:b0:e4:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULXYooLhM5HEkuyaz3zvbEhj+Kw0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTE0WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTA4YjY1ZmQzNjMzMjMwZjVkODcyYTQ3ZWZjZGVkNTlm NTBmYTg1OTRmMzc5NDk3YTRmYjhiNGU1NmVkNjk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnx4hy77TC8qUOKLvNcVYYYCDhuT2iLPuxlJiuVRtrGZWO BMIrKtG8sqFdFlzJs0kri3JvOkvnAQKcrqqt8pvQqhEh8BE7KSj7SWdAUXFq6ly1 dp8dLmwgR/f36C3d27PW84EjS4ug6WJ+ifaRFqd2/f0VkCbikBH8qmdchqXLaM1c HfKp7HVpVkHrLD3CSRYzmlKFzKGbxdPDkwLe4VS7iHLVTsmQq+8F/3O1eaXE0cv8 DMNlCGppBaKh7K4Qn5glo9l1C+IuI9soO1xYxWWgiKPM3s0maF7lt6IepEgnp/3L 3zvvlSRaTu076xt7iHwNzUxFwLzRrxGRl5n49IxdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8G+YSKmzeQ7JXsrqXkokHM20a0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNjFjMjRiLTEzYTAtNDAxOS1iM2IzLTA1NjJlODZhZWEyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE3zANBgkqhkiG9w0BAQsFAAOCAQEAum0CjlPAWgQcfRUI0l9qlQd3Dm7J xfQNjEB0SKUMQFeEXEJFVKyzMZ1u72CwipQaQimf5hqvDJS+/+r4XZb2N32nkPam TVg8oOGpnU33Xpll7uFpphCrj0grAWVThZj3QclhwFL0LX2X13ZSe3As7ItdM1kC w2WqzG6elhSUPBqAzxnTlUlSW5a535n8xIMf9jH7/ZG8Oxa2/pTviI8mRgW/ZqBX g0f50i2OXuIcFIlnvtkax5qrJpAr4l36b+aBaLybeg7f318661TrjyGzNWLEjkDq KIbSJxLKev8vtpyvHuPYIKZUgNrus6U24ar2XG3qsqWcX8D8Fko6mbDkSg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:47 2025 by rpki-client