$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa File: 3589350f-7992-407d-b32f-3238cdd65087.roa (raw, json) Hash identifier: vmG8Ej7tqlVgBB13/qqzW5z+xxKJ8JqD5mqUy5nWEV8= Subject key identifier: 1B:FA:6F:6A:FA:A6:7C:BA:29:5D:DC:5D:74:28:BD:A9:E7:62:70:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 267F212C09A71C56D894D2DA1B0D85E5F9185B36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa Signing time: Mon 31 Mar 2025 15:50:18 +0000 ROA not before: Mon 31 Mar 2025 15:50:18 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:7f:21:2c:09:a7:1c:56:d8:94:d2:da:1b:0d:85:e5:f9:18:5b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:50:18 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=6e9a4c43b6a8a5bcd64cb9decf94855426127427086ec18ecf8dea788a9a77d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:28:54:75:4d:dc:86:ff:81:6f:fb:07:e5:64: a2:66:17:05:37:bb:66:ef:22:16:92:ff:a2:47:18: 8c:fd:62:73:46:04:ab:f7:2e:64:66:dc:13:76:8a: 6d:a7:7d:e1:c1:e0:be:f0:92:23:59:69:b9:cb:e1: 5c:ae:73:5d:71:3c:2a:13:76:a3:7b:88:1e:4f:91: 68:f2:96:b4:fe:6d:82:c3:c8:52:21:9e:29:63:f7: c9:91:4a:d9:b3:d8:f3:3b:91:bb:4b:8c:80:d7:62: c1:de:3e:58:d8:a3:62:9d:0f:d2:3a:5c:b1:53:6c: f7:e1:4a:16:ad:66:87:27:43:2e:cb:c0:19:38:51: 1e:f7:90:81:aa:a2:da:86:44:dc:44:ef:ed:f0:6d: 71:7d:f8:de:c0:93:d3:c1:30:3b:cb:b1:de:c6:32: 71:26:73:43:50:37:c6:ca:c5:ce:c5:5a:71:1a:45: c8:98:b4:b5:05:6f:6a:73:f5:26:88:ba:0f:52:f3: 9c:69:8b:0b:a2:66:e7:9c:ec:48:6b:a3:8e:a6:2c: 85:5b:de:b9:5c:82:a3:81:5d:37:22:f4:2e:2c:ac: 5d:a3:41:90:4a:f2:75:69:2e:20:d2:40:72:f6:82: 37:a7:9e:56:b5:8f:16:e0:ad:f4:49:77:26:2e:30: 24:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FA:6F:6A:FA:A6:7C:BA:29:5D:DC:5D:74:28:BD:A9:E7:62:70:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.40.0/21 Signature Algorithm: sha256WithRSAEncryption 88:98:01:c2:dc:9b:4e:1f:2c:92:c9:a9:bd:67:8f:dd:da:c3: 4e:15:19:5b:f0:d9:81:1d:f4:16:06:18:1a:64:1a:df:5c:ff: 4b:bb:f1:15:45:3a:07:18:59:a6:78:0b:9b:24:65:56:52:87: 4b:07:82:85:d0:19:9c:14:45:a9:22:5f:29:0e:23:a2:43:26: 98:ad:8c:82:aa:19:25:d4:f8:23:e5:c8:1b:5a:70:5c:0e:82: 48:bc:9b:ac:3c:fc:12:8d:11:ca:6a:1e:5a:40:e7:db:3a:48: dd:aa:a2:df:7f:02:08:36:25:f4:9e:10:fe:de:94:a8:54:6b: a3:18:be:4a:da:68:8b:7b:77:03:f4:2e:76:64:fb:b9:50:63: 0e:b2:4a:93:f2:46:66:be:13:6a:4f:7c:76:86:1e:ac:22:eb: 53:a2:74:11:b1:97:f2:98:d2:46:31:45:de:48:9d:0a:62:24: be:02:c1:8c:70:5f:d3:16:bd:73:7e:9a:9b:ef:40:c8:27:e5: 3e:9c:26:1c:2a:5b:b6:37:6b:b6:58:15:15:c7:a7:79:81:f7: a1:1f:98:60:ec:83:59:cf:31:48:bd:b2:03:42:d4:a7:a8:45: 1b:ef:f6:f7:33:a8:a2:2f:2f:a3:2d:21:30:2f:4b:c9:fd:1b: e9:04:5b:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJn8hLAmnHFbYlNLaGw2F5fkYWzYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU1MDE4WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTlhNGM0M2I2YThhNWJjZDY0Y2I5ZGVjZjk0ODU1NDI2 MTI3NDI3MDg2ZWMxOGVjZjhkZWE3ODhhOWE3N2QwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYKFR1TdyG/4Fv+wflZKJmFwU3u2bvIhaS/6JHGIz9YnNG BKv3LmRm3BN2im2nfeHB4L7wkiNZabnL4Vyuc11xPCoTdqN7iB5PkWjylrT+bYLD yFIhnilj98mRStmz2PM7kbtLjIDXYsHePljYo2KdD9I6XLFTbPfhShatZocnQy7L wBk4UR73kIGqotqGRNxE7+3wbXF9+N7Ak9PBMDvLsd7GMnEmc0NQN8bKxc7FWnEa RciYtLUFb2pz9SaIug9S85xpiwuiZuec7Ehro46mLIVb3rlcgqOBXTci9C4srF2j QZBK8nVpLiDSQHL2gjennla1jxbgrfRJdyYuMCR7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG/pvavqmfLopXdxddCi9qedicCswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ODkzNTBmLTc5OTItNDA3ZC1iMzJmLTMyMzhjZGQ2NTA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANILCgwDQYJKoZIhvcNAQELBQADggEBAIiYAcLcm04fLJLJqb1nj93aw04V GVvw2YEd9BYGGBpkGt9c/0u78RVFOgcYWaZ4C5skZVZSh0sHgoXQGZwURakiXykO I6JDJpitjIKqGSXU+CPlyBtacFwOgki8m6w8/BKNEcpqHlpA59s6SN2qot9/Agg2 JfSeEP7elKhUa6MYvkraaIt7dwP0LnZk+7lQYw6ySpPyRma+E2pPfHaGHqwi61Oi dBGxl/KY0kYxRd5InQpiJL4CwYxwX9MWvXN+mpvvQMgn5T6cJhwqW7Y3a7ZYFRXH p3mB96EfmGDsg1nPMUi9sgNC1KeoRRvv9vczqKIvL6MtITAvS8n9G+kEW+4= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:46 2025 by rpki-client