$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa File: 3f5100a1-9182-409a-aacd-de6217f098f6.roa (raw, json) Hash identifier: VsIS5d0ceGCqA4EU9pbrLhP1XOjtvEMncnAr2x9B7JU= Subject key identifier: B8:87:4E:4A:99:8A:DC:32:BF:2D:F0:0B:76:5B:5B:5B:93:84:29:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4843D7B81022351C8D0E91DD825F794A9F0E1F4C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa Signing time: Sat 29 Mar 2025 00:52:04 +0000 ROA not before: Sat 29 Mar 2025 00:52:04 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 182.30.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:43:d7:b8:10:22:35:1c:8d:0e:91:dd:82:5f:79:4a:9f:0e:1f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:52:04 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=1481ed91ad32d8248bcdc2a23d14abc2d347a9bb8ae2605c4e99c561ac9335ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:c3:0f:25:91:23:1c:f2:8b:79:ef:c9:5b: 11:98:d6:f5:c0:98:d0:1b:5a:8c:c2:36:60:89:08: 52:73:e1:80:5a:25:4d:fd:68:b1:f4:33:08:66:3f: 70:1d:55:1d:a5:c0:77:95:ce:99:d2:1c:2a:b5:58: 5d:74:50:4f:ef:58:44:d0:48:c4:08:aa:b8:9e:cd: 06:91:d1:b0:8a:49:1f:a3:58:5f:81:b2:cb:1a:e3: ee:3b:80:40:c5:02:92:a8:62:c2:3d:1f:56:8c:c5: ea:29:73:27:00:e4:6b:6a:de:ee:f6:4e:72:f5:e6: fd:96:bf:a3:aa:f4:4c:2e:00:54:1a:c4:5a:8c:03: ed:43:cf:fb:ab:da:5f:c9:52:0b:6c:5b:de:48:f8: 44:24:22:78:5b:4c:7f:e2:c8:cd:27:54:6f:6e:3f: 99:40:72:1d:83:04:6d:a7:5b:63:73:92:b1:1c:c4: 0a:13:b3:32:08:3b:5c:20:d8:3d:71:61:7a:8e:f3: c9:41:ff:4c:fa:2a:82:19:59:54:cd:c8:ed:86:c0: d3:a1:b3:f3:aa:3a:5f:ea:2a:44:5e:54:7d:ae:d6: af:19:47:89:20:31:34:cc:ed:ca:cd:1d:84:f1:b6: 4d:3c:64:01:f3:70:59:34:f2:a3:93:66:7c:2c:59: 54:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:87:4E:4A:99:8A:DC:32:BF:2D:F0:0B:76:5B:5B:5B:93:84:29:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f5100a1-9182-409a-aacd-de6217f098f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.30.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:f8:9f:9c:ff:90:42:f0:f6:12:84:a3:6c:f1:8d:ce:28:eb: 62:c2:07:5e:b5:82:b6:73:04:32:ec:45:35:51:ac:43:75:ee: a2:62:ba:08:69:59:b2:44:02:69:9c:03:de:2c:1c:8b:3d:7a: e6:56:32:95:6e:da:f1:00:14:28:7d:68:6b:d5:80:ab:cf:c6: a2:19:5a:ad:37:28:03:be:e3:51:82:9b:06:30:5f:b3:b6:f2: aa:09:0c:b6:43:e2:23:35:02:91:22:70:db:17:d8:9d:f2:2c: fa:ac:41:bd:57:23:c4:d7:d4:17:43:9e:df:68:24:f9:3e:88: 39:ad:f5:4b:9c:b3:b2:c5:22:ad:17:42:44:f4:5d:be:98:25: 9f:aa:61:38:05:96:a5:43:a3:b8:04:ff:58:7d:ba:ee:15:9f: 2a:6c:99:01:f9:86:20:99:ef:2f:15:af:2b:2a:ee:f0:e6:70: 64:c1:b9:ee:17:f3:6e:53:0f:da:c2:9c:d6:3b:b8:fc:d0:e5: ee:84:b6:fb:e0:73:47:82:d6:c2:72:42:ec:72:44:32:50:7f: 8d:02:94:0b:cc:c7:1d:e1:fd:e9:b1:71:a5:0c:8c:88:b2:10: ca:7a:ed:28:e3:ca:d3:20:16:92:da:66:db:e3:05:bf:9d:37: 40:a4:b4:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSEPXuBAiNRyNDpHdgl95Sp8OH0wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA1MjA0WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDgxZWQ5MWFkMzJkODI0OGJjZGMyYTIzZDE0YWJjMmQz NDdhOWJiOGFlMjYwNWM0ZTk5YzU2MWFjOTMzNWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzbMMPJZEjHPKLee/JWxGY1vXAmNAbWozCNmCJCFJz4YBa JU39aLH0MwhmP3AdVR2lwHeVzpnSHCq1WF10UE/vWETQSMQIqriezQaR0bCKSR+j WF+Bsssa4+47gEDFApKoYsI9H1aMxeopcycA5Gtq3u72TnL15v2Wv6Oq9EwuAFQa xFqMA+1Dz/ur2l/JUgtsW95I+EQkInhbTH/iyM0nVG9uP5lAch2DBG2nW2NzkrEc xAoTszIIO1wg2D1xYXqO88lB/0z6KoIZWVTNyO2GwNOhs/OqOl/qKkReVH2u1q8Z R4kgMTTM7crNHYTxtk08ZAHzcFk08qOTZnwsWVRnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuIdOSpmK3DK/LfALdltbW5OEKRUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmNTEwMGExLTkxODItNDA5YS1hYWNkLWRlNjIxN2YwOThmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwC2HjANBgkqhkiG9w0BAQsFAAOCAQEAWfifnP+QQvD2EoSjbPGNzijrYsIH XrWCtnMEMuxFNVGsQ3XuomK6CGlZskQCaZwD3iwciz165lYylW7a8QAUKH1oa9WA q8/GohlarTcoA77jUYKbBjBfs7byqgkMtkPiIzUCkSJw2xfYnfIs+qxBvVcjxNfU F0Oe32gk+T6IOa31S5yzssUirRdCRPRdvpgln6phOAWWpUOjuAT/WH267hWfKmyZ AfmGIJnvLxWvKyru8OZwZMG57hfzblMP2sKc1ju4/NDl7oS2++BzR4LWwnJC7HJE MlB/jQKUC8zHHeH96bFxpQyMiLIQynrtKOPK0yAWktpm2+MFv503QKS0vA== -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:22 2025 by rpki-client