$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa File: 48743620-d852-4c45-84d7-d4a7e3874270.roa (raw, json) Hash identifier: a9mlJr2xVt/Easezjbsfdy5a9bfVJJtbSOPXFrnDIdg= Subject key identifier: 41:47:E0:C0:D3:E6:CC:AA:06:29:EC:2A:48:D7:B2:E9:A1:F7:CA:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70EC38E8BA1CA42119228C209CBF9DD2D0DDEDAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa Signing time: Mon 31 Mar 2025 15:11:38 +0000 ROA not before: Mon 31 Mar 2025 15:11:38 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.192.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ec:38:e8:ba:1c:a4:21:19:22:8c:20:9c:bf:9d:d2:d0:dd:ed:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:11:38 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=e559d3a1119b0f1bd94f33f42406e81c2d9906c6e4dbee811e1a964111272353, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7a:20:bb:e5:48:0a:c3:66:bf:59:e7:e3:7d: 56:7f:4e:d9:1c:1b:6d:10:35:6c:81:97:c6:7b:d2: 31:44:83:e7:2e:73:4b:0d:fa:ad:06:ab:5f:86:6a: 2f:9b:f6:42:5b:10:98:25:e1:28:8b:4a:f0:a9:4f: 82:4e:6b:36:63:76:31:89:df:17:3a:c0:06:8b:68: d1:38:d4:8c:ac:86:d5:47:6a:e1:d0:9a:54:f6:61: 02:22:3b:78:97:ae:cd:81:44:1c:c0:35:1e:18:91: ed:05:fe:63:1e:6f:8f:7e:61:b1:52:4b:b9:e2:54: 37:9b:c8:08:d8:be:34:e6:77:19:b6:ba:74:ee:7c: 7d:20:4c:f3:f4:ce:77:6a:fa:78:52:98:e6:0f:a3: 93:2c:36:d8:0d:30:a2:8f:08:9f:7f:a4:48:6b:68: 95:b0:20:d2:52:66:5b:1b:29:39:87:2e:11:04:ed: 85:b2:05:74:6d:49:0d:1d:1f:82:bd:95:d5:1d:5f: 4b:a3:ae:f8:be:cd:f2:ec:40:6b:7b:8b:25:57:4a: 7c:67:ba:ad:3a:96:a1:b0:0a:92:5c:4d:61:b5:25: 85:24:b4:f4:eb:b1:c0:6d:2f:ed:6c:7e:5b:3d:70: 30:87:05:fd:26:22:b6:67:1e:23:b9:00:98:dc:d6: e7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:47:E0:C0:D3:E6:CC:AA:06:29:EC:2A:48:D7:B2:E9:A1:F7:CA:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.192.0.0/15 Signature Algorithm: sha256WithRSAEncryption a5:4a:e5:cb:24:83:d5:3f:f3:b4:da:8f:7a:b8:58:84:b8:95: 5f:cd:71:30:bc:09:9a:e9:ad:09:5b:2a:a9:a3:a1:70:55:f3: fa:01:3c:82:91:4c:95:38:4e:ac:08:11:a0:44:81:60:03:cd: 04:ad:c0:16:d6:e4:e5:ee:89:67:35:5c:35:d4:e7:fb:c8:0f: 44:a4:98:59:c0:d2:a6:54:92:0f:24:f8:4d:6b:b4:cc:5f:2e: 47:2e:69:58:74:30:4a:d7:b3:3d:fa:38:91:11:54:98:fc:d0: 8e:fd:17:f1:75:cf:32:86:44:44:4a:29:c5:68:aa:df:de:b0: c4:c3:32:87:d9:c5:ec:1a:06:8b:26:a9:47:78:09:c7:98:b9: 0f:73:92:f3:e6:db:ea:ac:8e:5d:63:60:3b:56:5c:4e:96:b7: 06:4d:b2:a8:c0:f7:48:17:cf:63:58:2f:ca:92:64:54:94:7c: e5:c5:b7:4e:a2:d7:f0:4a:4c:c6:50:64:42:67:90:b3:5a:ac: 4f:02:78:21:39:b0:5d:52:d6:50:30:a4:b9:ba:94:66:08:27: 09:de:22:eb:7f:c3:50:69:39:61:4f:e2:f2:74:06:fb:64:e4: f1:94:82:c1:b5:b0:05:8c:c6:37:94:47:81:5c:6e:cf:d0:ef: 41:d9:f1:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcOw46LocpCEZIowgnL+d0tDd7awwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUxMTM4WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTU5ZDNhMTExOWIwZjFiZDk0ZjMzZjQyNDA2ZTgxYzJk OTkwNmM2ZTRkYmVlODExZTFhOTY0MTExMjcyMzUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDReiC75UgKw2a/WefjfVZ/TtkcG20QNWyBl8Z70jFEg+cu c0sN+q0Gq1+Gai+b9kJbEJgl4SiLSvCpT4JOazZjdjGJ3xc6wAaLaNE41IyshtVH auHQmlT2YQIiO3iXrs2BRBzANR4Yke0F/mMeb49+YbFSS7niVDebyAjYvjTmdxm2 unTufH0gTPP0zndq+nhSmOYPo5MsNtgNMKKPCJ9/pEhraJWwINJSZlsbKTmHLhEE 7YWyBXRtSQ0dH4K9ldUdX0ujrvi+zfLsQGt7iyVXSnxnuq06lqGwCpJcTWG1JYUk tPTrscBtL+1sfls9cDCHBf0mIrZnHiO5AJjc1udXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQUfgwNPmzKoGKewqSNey6aH3yrwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NzQzNjIwLWQ4NTItNGM0NS04NGQ3LWQ0YTdlMzg3NDI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGowDANBgkqhkiG9w0BAQsFAAOCAQEApUrlyySD1T/ztNqPerhYhLiVX81x MLwJmumtCVsqqaOhcFXz+gE8gpFMlThOrAgRoESBYAPNBK3AFtbk5e6JZzVcNdTn +8gPRKSYWcDSplSSDyT4TWu0zF8uRy5pWHQwStezPfo4kRFUmPzQjv0X8XXPMoZE REopxWiq396wxMMyh9nF7BoGiyapR3gJx5i5D3OS8+bb6qyOXWNgO1ZcTpa3Bk2y qMD3SBfPY1gvypJkVJR85cW3TqLX8EpMxlBkQmeQs1qsTwJ4ITmwXVLWUDCkubqU ZggnCd4i63/DUGk5YU/i8nQG+2Tk8ZSCwbWwBYzGN5RHgVxuz9DvQdnxYw== -----END CERTIFICATE-----Generated at Wed Apr 16 17:13:44 2025 by rpki-client