$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef414d28-7d98-4c41-931b-d7958ded262d.roa File: ef414d28-7d98-4c41-931b-d7958ded262d.roa (raw, json) Hash identifier: MoVMQAo5B7Qc5PEShGHXi/MHMmYWO/nf2mzkNsW5ohc= Subject key identifier: D4:00:25:3B:49:F3:EC:F8:F4:72:F8:0B:A1:9E:C4:8E:60:13:29:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D6F444547B384F49F0D64DFC6E7750F7B694B1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef414d28-7d98-4c41-931b-d7958ded262d.roa Signing time: Fri 04 Apr 2025 00:11:03 +0000 ROA not before: Fri 04 Apr 2025 00:11:03 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6f:44:45:47:b3:84:f4:9f:0d:64:df:c6:e7:75:0f:7b:69:4b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:11:03 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:8e:0b:95:7e:d4:ab:50:89:c2:3c:72:bb: 89:97:d0:01:73:56:41:29:2a:9c:48:a3:49:a7:34: 57:cd:e6:09:58:f5:71:33:9a:26:f7:cd:f9:c9:fa: 60:a0:c6:57:bb:ce:39:da:c9:a7:d9:d1:d1:76:a9: 1a:41:93:5e:0b:79:d1:98:e9:6b:ea:ec:41:8c:84: 0e:bb:51:0f:f7:de:cd:c6:42:8a:04:2d:de:66:6c: 6e:e3:b0:6b:cb:89:b9:de:4d:cd:11:0c:db:d8:e5: d4:a5:6d:76:7c:20:e4:6f:ff:95:92:d9:21:85:92: 10:f7:61:c6:93:08:09:eb:cd:8a:d5:0d:23:b0:ab: 28:7b:5a:23:b9:d5:e5:58:d5:18:7e:ea:1e:ba:5a: 45:b4:27:4f:a7:d3:4e:34:cd:06:f5:5a:34:53:a4: 7a:04:0d:e0:e1:94:a4:ed:1a:d2:4c:a6:37:b0:48: 23:08:26:43:2e:60:73:1f:04:d4:92:09:9f:be:fd: e7:aa:ea:a1:c4:1e:4b:91:09:0d:88:00:a8:52:38: 60:15:33:c6:68:a8:33:53:c6:7e:b0:6d:6c:33:76: e1:c9:30:c5:62:f6:92:e9:09:5a:d9:1d:a0:83:e0: 75:ba:83:2f:2e:57:56:d6:71:f2:e5:37:44:bf:04: cc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:00:25:3B:49:F3:EC:F8:F4:72:F8:0B:A1:9E:C4:8E:60:13:29:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef414d28-7d98-4c41-931b-d7958ded262d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:7b:23:d1:9b:b0:b9:1e:e3:aa:0c:75:ad:75:12:d3:09:13: 06:70:a0:72:5a:e6:fa:12:f7:61:0a:4b:8f:df:71:75:51:06: 5c:03:74:97:0a:00:dd:6d:74:6e:85:23:7b:cd:49:21:de:cb: 78:af:b9:0f:61:85:a6:54:36:00:45:73:f5:93:31:70:1b:71: f5:7f:a9:a6:19:f1:6a:fa:55:5b:eb:12:e0:f6:3a:00:40:60: 8b:f5:e0:d3:c6:50:52:04:8b:13:e2:fc:95:15:c1:69:0d:36: 1c:be:3e:e7:30:78:d7:f5:20:6d:4d:7c:b3:1e:05:b2:27:25: 27:1f:74:17:64:b8:12:2e:2f:15:a5:fa:ca:5c:d2:d6:99:35: e3:96:49:0a:d5:98:e8:70:17:6f:0e:4d:33:23:0a:98:c0:59: 60:71:95:d7:d3:9a:85:fc:e0:d5:d3:26:ee:25:81:82:3e:00: 52:00:d6:04:53:e3:e3:df:d9:fa:f7:40:0e:0b:e4:4f:a5:09: b1:b7:68:3e:87:b1:d5:b3:0e:25:cc:4d:76:cf:00:88:0d:c4: 0b:04:a1:1d:2b:94:ed:f1:9e:af:e4:85:39:f8:16:ba:15:19: 33:92:b0:05:d0:c8:68:f1:a0:72:d6:52:f0:2f:2a:2e:24:ed: 74:c2:a8:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXW9ERUezhPSfDWTfxud1D3tpSxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAxMTAzWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODc3YTc0NzY0YTNiZGFkM2RiMWQ2YjY3NTRhYmI4MWYy MTZlMTJjNDRmZTU0NTYzYWIxZDQ5MzE3NDIxMmVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8WI4LlX7Uq1CJwjxyu4mX0AFzVkEpKpxIo0mnNFfN5glY 9XEzmib3zfnJ+mCgxle7zjnayafZ0dF2qRpBk14LedGY6Wvq7EGMhA67UQ/33s3G QooELd5mbG7jsGvLibneTc0RDNvY5dSlbXZ8IORv/5WS2SGFkhD3YcaTCAnrzYrV DSOwqyh7WiO51eVY1Rh+6h66WkW0J0+n0040zQb1WjRTpHoEDeDhlKTtGtJMpjew SCMIJkMuYHMfBNSSCZ++/eeq6qHEHkuRCQ2IAKhSOGAVM8ZoqDNTxn6wbWwzduHJ MMVi9pLpCVrZHaCD4HW6gy8uV1bWcfLlN0S/BMx1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1AAlO0nz7Pj0cvgLoZ7EjmATKV0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmNDE0ZDI4LTdkOTgtNGM0MS05MzFiLWQ3OTU4ZGVkMjYyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5WTANBgkqhkiG9w0BAQsFAAOCAQEAUHsj0ZuwuR7jqgx1rXUS0wkTBnCg clrm+hL3YQpLj99xdVEGXAN0lwoA3W10boUje81JId7LeK+5D2GFplQ2AEVz9ZMx cBtx9X+pphnxavpVW+sS4PY6AEBgi/Xg08ZQUgSLE+L8lRXBaQ02HL4+5zB41/Ug bU18sx4FsiclJx90F2S4Ei4vFaX6ylzS1pk145ZJCtWY6HAXbw5NMyMKmMBZYHGV 19Oahfzg1dMm7iWBgj4AUgDWBFPj49/Z+vdADgvkT6UJsbdoPoex1bMOJcxNds8A iA3ECwShHSuU7fGer+SFOfgWuhUZM5KwBdDIaPGgctZS8C8qLiTtdMKorg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:48 2025 by rpki-client