$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa File: 3cf5f416-8b16-485d-b4ee-307762770eef.roa (raw, json) Hash identifier: 8CNgkIC0VpYaoMn2QQK2VFssUzKpK0MdXbp8bue2JJo= Subject key identifier: 82:D6:22:37:99:82:34:4C:FF:CB:F3:78:6A:BF:BB:D8:99:FA:CD:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50CA51C5D87EFC254642DAFF9C699264CA930F5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa Signing time: Tue 08 Apr 2025 00:52:17 +0000 ROA not before: Tue 08 Apr 2025 00:52:17 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.156.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ca:51:c5:d8:7e:fc:25:46:42:da:ff:9c:69:92:64:ca:93:0f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:52:17 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=80826644100abbb748a4753c22e93527b55492c4c788e275e28190bd86b5e53c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:71:a2:9b:62:15:91:37:4a:67:c4:be:cd:ce: 84:93:bf:20:22:c0:20:90:dc:7d:97:08:ee:27:90: 42:89:1b:01:27:b4:20:ea:07:f2:09:95:86:f4:dc: ab:72:1a:86:b5:38:3f:2d:86:a4:ea:6f:07:07:c3: 30:53:bb:f1:cc:67:10:1f:e9:b5:4f:44:68:36:a3: a2:c8:e2:1b:27:9d:a4:e3:3b:dc:b7:45:25:c4:2a: 76:9d:00:d8:b3:1d:b8:6a:9e:db:1b:ba:bc:b7:71: ea:fc:e1:51:52:58:0d:10:82:10:d4:d9:f6:71:a9: eb:c5:3c:f7:5d:4f:3e:1f:89:5f:b3:2e:78:df:a1: 49:35:e2:dd:a6:30:3d:8e:c7:57:bd:54:01:48:ef: 48:7d:38:c6:1d:72:8f:05:36:f6:fa:ea:da:ab:46: 31:85:ba:d2:52:3d:e2:3a:24:29:67:b7:f3:c1:7c: 60:2f:3c:25:51:2b:17:a1:27:d4:6c:af:1d:9b:dd: 85:2c:14:c4:c6:da:3f:09:bd:98:42:1b:d5:70:9c: b1:d7:c8:cb:5d:4e:67:33:d0:5d:d4:e4:bd:bf:2e: 49:40:1c:5e:87:59:c4:8c:95:5a:f3:0a:39:88:77: 29:10:68:2e:34:96:3f:27:fa:fc:47:b0:8f:49:40: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D6:22:37:99:82:34:4C:FF:CB:F3:78:6A:BF:BB:D8:99:FA:CD:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.156.192.0/18 Signature Algorithm: sha256WithRSAEncryption b6:05:be:b2:f2:5b:ca:7b:18:c5:3f:9f:20:cb:1c:06:14:2f: 81:d7:60:6d:e3:69:b0:1b:31:9c:cb:d8:31:7b:7e:5a:d7:76: 49:d1:b7:ad:b8:6a:e4:3e:b2:af:41:6a:30:52:92:56:06:03: 80:63:46:b5:11:b1:88:d1:f8:ba:d0:48:c2:ad:1d:34:11:8f: f2:1f:23:43:2d:95:df:a1:fa:37:09:19:13:62:96:bb:9c:09: 1e:11:0b:68:76:0e:4d:ea:6b:4c:33:40:a0:68:5b:9a:77:4e: b2:5a:6e:6b:94:78:65:2e:71:65:47:12:e3:b5:c1:35:32:e1: ec:60:5e:1a:a6:50:59:41:1a:97:cb:96:c4:3c:96:da:78:38: de:f4:cc:7f:d4:dc:8d:76:dc:99:0d:e3:4c:dc:e0:03:98:cd: 78:41:e4:9e:d4:44:30:12:24:92:27:e0:c2:54:3a:2b:3b:5a: 41:c5:a2:19:52:a3:0b:45:1f:8d:f7:00:a0:9f:29:ad:93:00: 80:d5:77:aa:1a:20:09:e9:93:c9:4d:b0:c3:90:b4:d9:82:60: 00:df:20:18:7a:cd:de:42:91:7e:79:8c:4e:e0:29:4d:ac:b4: eb:74:5e:b5:32:fb:6c:02:26:4a:7f:8f:13:19:2c:e1:0a:06: db:d6:22:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUMpRxdh+/CVGQtr/nGmSZMqTD1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA1MjE3WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDgyNjY0NDEwMGFiYmI3NDhhNDc1M2MyMmU5MzUyN2I1 NTQ5MmM0Yzc4OGUyNzVlMjgxOTBiZDg2YjVlNTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdcaKbYhWRN0pnxL7NzoSTvyAiwCCQ3H2XCO4nkEKJGwEn tCDqB/IJlYb03KtyGoa1OD8thqTqbwcHwzBTu/HMZxAf6bVPRGg2o6LI4hsnnaTj O9y3RSXEKnadANizHbhqntsbury3cer84VFSWA0QghDU2fZxqevFPPddTz4fiV+z LnjfoUk14t2mMD2Ox1e9VAFI70h9OMYdco8FNvb66tqrRjGFutJSPeI6JClnt/PB fGAvPCVRKxehJ9Rsrx2b3YUsFMTG2j8JvZhCG9VwnLHXyMtdTmcz0F3U5L2/LklA HF6HWcSMlVrzCjmIdykQaC40lj8n+vxHsI9JQE4/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgtYiN5mCNEz/y/N4ar+72Jn6zc0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZjVmNDE2LThiMTYtNDg1ZC1iNGVlLTMwNzc2Mjc3MGVlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjnMAwDQYJKoZIhvcNAQELBQADggEBALYFvrLyW8p7GMU/nyDLHAYUL4HX YG3jabAbMZzL2DF7flrXdknRt624auQ+sq9BajBSklYGA4BjRrURsYjR+LrQSMKt HTQRj/IfI0Mtld+h+jcJGRNilrucCR4RC2h2Dk3qa0wzQKBoW5p3TrJabmuUeGUu cWVHEuO1wTUy4exgXhqmUFlBGpfLlsQ8ltp4ON70zH/U3I123JkN40zc4AOYzXhB 5J7URDASJJIn4MJUOis7WkHFohlSowtFH433AKCfKa2TAIDVd6oaIAnpk8lNsMOQ tNmCYADfIBh6zd5CkX55jE7gKU2stOt0XrUy+2wCJkp/jxMZLOEKBtvWIrI= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:51 2025 by rpki-client