$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa File: 2279a492-73db-41f0-98ae-bd6039e89d3b.roa (raw, json) Hash identifier: GJp3i43zCGXj2hzHnU/OUon+q7fMDwJcKzbmoI2tSI4= Subject key identifier: 26:60:C1:19:B1:13:47:1E:60:D5:76:2C:36:F0:40:E3:93:A6:D1:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BB44E22CA79D455A0428A76B9EB6C2FAD183F0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa Signing time: Mon 26 May 2025 15:00:51 +0000 ROA not before: Mon 26 May 2025 15:00:51 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 134.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b4:4e:22:ca:79:d4:55:a0:42:8a:76:b9:eb:6c:2f:ad:18:3f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:00:51 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=d5d336d91d0375dad9bafc9c2f58fa0ab3ef9b381cbb3fd02422d640fbe1a7a7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:76:3e:85:0c:5d:f2:57:ba:82:2b:a4:bc: 8c:f4:ab:5a:5b:93:ca:06:06:43:04:f3:43:6e:5f: ae:28:18:d1:30:35:ae:ac:2a:44:71:f7:e5:62:ae: 84:2f:d4:b6:7a:27:55:5b:d4:8d:a5:15:fd:c0:5a: f3:ad:42:a2:9f:ad:2e:83:16:2e:cd:27:6b:7e:a6: e8:75:67:32:8c:00:9b:83:d1:2d:13:34:de:ed:e1: 9d:f7:67:9f:ea:9b:57:8b:e4:84:e5:5b:b2:83:eb: 15:1f:58:60:18:54:05:50:82:29:23:67:8d:b7:bf: fc:81:1e:ea:17:4c:4e:9a:c5:ee:ab:4f:17:b6:84: 72:c1:94:20:a8:70:88:24:01:82:59:82:fe:ec:3c: 6a:7f:05:7a:1c:5d:d5:7c:78:8e:8a:aa:04:fb:bf: 07:a9:23:44:eb:64:c4:f7:2c:63:01:ef:8c:c2:8d: ab:10:67:6a:37:bb:4d:60:e5:eb:fc:51:72:79:e0: 99:fd:c2:fd:36:37:22:e6:62:66:cd:78:1b:56:ce: 3b:19:ea:d1:e3:4d:bb:f8:d5:99:d4:f6:aa:f2:47: 53:70:b9:7e:e7:48:cd:96:d7:0e:52:de:32:64:92: c0:c9:c6:c3:ab:fd:57:b4:8c:c7:11:a4:28:b8:b6: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:60:C1:19:B1:13:47:1E:60:D5:76:2C:36:F0:40:E3:93:A6:D1:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption b2:2e:e9:ac:df:e2:96:16:d5:38:91:a8:fa:62:58:b8:97:39: 7b:d1:ab:10:10:65:9d:73:a2:f3:41:6c:7b:6b:d2:b5:7c:84: ff:c7:32:83:b4:da:1b:68:0f:22:cb:32:8a:e1:53:3a:b7:d0: 81:2b:9c:95:e0:af:a6:ee:e9:62:7f:5b:16:6b:05:af:a3:fb: 92:63:45:7b:9a:b6:48:fb:0d:eb:ea:31:96:b5:bb:0b:58:d0: 9c:75:07:9b:2b:e7:92:a9:9e:cb:e5:a1:9e:52:7e:b1:4c:45: d8:d7:f3:9a:a4:9f:d4:cc:b1:ff:dd:20:3b:31:eb:1c:56:c0: ee:1b:83:7d:63:4a:3e:ce:08:a6:23:d3:07:71:cd:dd:4b:9b: c7:ad:f7:33:e0:e7:31:3b:be:36:12:43:fb:c5:fc:29:aa:da: 89:5a:bf:0d:ae:70:68:4f:2b:a7:86:77:e9:30:ea:24:4e:f0: 54:42:0c:76:97:20:60:c0:d5:4a:bc:11:9e:ea:ac:47:98:f8: 9d:5d:4c:90:48:66:54:7a:0f:6f:77:76:b0:3a:ec:0d:b3:e3: c2:7a:56:49:b0:b0:8c:dc:ac:e6:c4:01:07:2d:35:f3:0f:95: d3:e7:bd:29:6e:6b:7b:40:7c:0d:4a:c5:b0:c0:3c:cb:71:0b: 27:b2:3f:4f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS7ROIsp51FWgQop2uetsL60YPwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMDUxWhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWQzMzZkOTFkMDM3NWRhZDliYWZjOWMyZjU4ZmEwYWIz ZWY5YjM4MWNiYjNmZDAyNDIyZDY0MGZiZTFhN2E3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXb3Y+hQxd8le6giukvIz0q1pbk8oGBkME80NuX64oGNEw Na6sKkRx9+ViroQv1LZ6J1Vb1I2lFf3AWvOtQqKfrS6DFi7NJ2t+puh1ZzKMAJuD 0S0TNN7t4Z33Z5/qm1eL5ITlW7KD6xUfWGAYVAVQgikjZ423v/yBHuoXTE6axe6r Txe2hHLBlCCocIgkAYJZgv7sPGp/BXocXdV8eI6KqgT7vwepI0TrZMT3LGMB74zC jasQZ2o3u01g5ev8UXJ54Jn9wv02NyLmYmbNeBtWzjsZ6tHjTbv41ZnU9qryR1Nw uX7nSM2W1w5S3jJkksDJxsOr/Ve0jMcRpCi4tu1tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJmDBGbETRx5g1XYsNvBA45Om0R8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNzlhNDkyLTczZGItNDFmMC05OGFlLWJkNjAzOWU4OWQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGHzANBgkqhkiG9w0BAQsFAAOCAQEAsi7prN/ilhbVOJGo+mJYuJc5e9Gr EBBlnXOi80Fse2vStXyE/8cyg7TaG2gPIssyiuFTOrfQgSucleCvpu7pYn9bFmsF r6P7kmNFe5q2SPsN6+oxlrW7C1jQnHUHmyvnkqmey+WhnlJ+sUxF2NfzmqSf1Myx /90gOzHrHFbA7huDfWNKPs4IpiPTB3HN3Uubx633M+DnMTu+NhJD+8X8KaraiVq/ Da5waE8rp4Z36TDqJE7wVEIMdpcgYMDVSrwRnuqsR5j4nV1MkEhmVHoPb3d2sDrs DbPjwnpWSbCwjNys5sQBBy018w+V0+e9KW5re0B8DUrFsMA8y3ELJ7I/Tw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:22:41 2025 by rpki-client