$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ee89831-18c3-4da5-bc96-7e36365a729d.roa File: 4ee89831-18c3-4da5-bc96-7e36365a729d.roa (raw, json) Hash identifier: VogId57j0RiK5upizWiTrkF9Jf9MJpKdf+GQlpDiAmw= Subject key identifier: 04:1F:55:A7:10:1C:DC:D3:9B:79:D6:83:BF:B3:DB:21:95:78:C1:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 245ABF807E4D44C56FFC106ECE6D8CA24FA8A31F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ee89831-18c3-4da5-bc96-7e36365a729d.roa Signing time: Sat 29 Mar 2025 00:11:02 +0000 ROA not before: Sat 29 Mar 2025 00:11:02 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 100.28.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5a:bf:80:7e:4d:44:c5:6f:fc:10:6e:ce:6d:8c:a2:4f:a8:a3:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:11:02 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: serialNumber=bd8eb62e0806116e57f24cfacc325cf2b0a8f0eaa1b71a307e380e4f172ad4ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a8:1e:5a:f9:a3:85:a6:dc:1e:04:8b:49:0e: de:e3:89:e9:5c:0f:61:e4:8b:98:e9:24:69:1e:a3: 9a:f0:d7:e8:98:0b:12:a3:8f:90:ae:30:0a:cf:2a: b9:79:7f:f8:9d:f1:3a:6f:85:2d:f0:88:34:b9:6e: 1d:53:84:f5:fb:44:2d:6b:c1:44:48:be:19:cd:b9: 0b:7f:92:74:5d:9d:6e:e4:94:fd:c6:cc:b3:89:ad: e0:4a:78:b6:e9:c8:69:79:0d:1f:2e:0b:df:18:ff: 6d:61:c7:ae:ad:a8:94:6f:18:33:9b:9d:e2:0d:27: 86:4b:ab:7c:f9:fb:32:7a:53:76:2d:38:03:32:fe: 64:af:4a:28:f6:5e:c8:85:30:b3:1c:c0:ce:ad:8b: ad:3e:d6:50:58:38:df:bc:2b:bb:01:98:09:d1:21: 32:19:21:f1:36:08:dd:75:fc:21:d4:9e:df:ad:ba: b2:a8:b6:c6:e1:a7:b0:17:bf:91:fb:55:90:09:9b: eb:df:71:89:d1:48:84:29:f8:02:9b:8a:ce:f8:28: 80:d9:0b:3f:69:72:3a:ef:2d:38:49:be:72:d7:56: 4a:fa:78:aa:02:f9:2a:a8:a1:09:cc:a5:aa:4b:eb: 37:f3:0e:7f:dd:bf:5b:3e:ad:f8:4b:6d:90:71:b3: a7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1F:55:A7:10:1C:DC:D3:9B:79:D6:83:BF:B3:DB:21:95:78:C1:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ee89831-18c3-4da5-bc96-7e36365a729d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.28.208.0/23 Signature Algorithm: sha256WithRSAEncryption 01:a9:bd:c2:b9:6d:39:a4:94:cb:08:26:d3:99:26:b9:df:5f: 05:65:8d:bd:77:67:ce:dc:06:7d:8c:76:52:72:6e:81:04:f9: b2:16:b9:39:04:14:b4:57:ba:5e:86:11:00:83:80:4c:f0:d5: 38:c0:79:17:fe:d4:ef:fa:15:c0:2a:40:20:71:a0:85:be:e8: 01:e7:88:0b:90:e5:b8:fd:a8:c7:a1:55:67:3a:82:82:4c:3f: 13:44:c6:97:d3:5d:6a:a4:52:77:f5:c8:bd:8c:9f:00:57:a2: 4e:b2:f1:3f:d7:cf:3f:85:de:3b:7c:61:35:8c:bf:b2:b1:1c: e1:d2:70:1f:46:d9:e1:e4:11:de:e7:aa:64:4b:d1:67:13:c2: 8f:1c:99:e6:3d:53:94:82:4d:ad:72:27:c3:2c:9e:48:1d:27: 1f:cd:00:ab:9c:eb:4e:ce:87:6f:7c:31:7d:d0:57:c1:37:13: ef:87:76:7e:7e:62:bd:df:90:54:58:18:8a:98:01:69:35:0d: 03:d0:51:27:08:a7:e4:58:fc:4d:41:74:51:75:64:f3:ce:a4: a7:4a:32:1a:c0:5c:da:90:03:5a:df:41:cd:55:0c:06:79:aa: fd:f1:3d:b9:38:96:8e:21:51:07:4b:72:6a:5f:f2:79:28:65: 5b:74:48:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJFq/gH5NRMVv/BBuzm2Mok+oox8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAxMTAyWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDhlYjYyZTA4MDYxMTZlNTdmMjRjZmFjYzMyNWNmMmIw YThmMGVhYTFiNzFhMzA3ZTM4MGU0ZjE3MmFkNGFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMqB5a+aOFptweBItJDt7jielcD2Hki5jpJGkeo5rw1+iY CxKjj5CuMArPKrl5f/id8TpvhS3wiDS5bh1ThPX7RC1rwURIvhnNuQt/knRdnW7k lP3GzLOJreBKeLbpyGl5DR8uC98Y/21hx66tqJRvGDObneINJ4ZLq3z5+zJ6U3Yt OAMy/mSvSij2XsiFMLMcwM6ti60+1lBYON+8K7sBmAnRITIZIfE2CN11/CHUnt+t urKotsbhp7AXv5H7VZAJm+vfcYnRSIQp+AKbis74KIDZCz9pcjrvLThJvnLXVkr6 eKoC+SqooQnMpapL6zfzDn/dv1s+rfhLbZBxs6f3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBB9VpxAc3NObedaDv7PbIZV4wQkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlZTg5ODMxLTE4YzMtNGRhNS1iYzk2LTdlMzYzNjVhNzI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFkHNAwDQYJKoZIhvcNAQELBQADggEBAAGpvcK5bTmklMsIJtOZJrnfXwVl jb13Z87cBn2MdlJyboEE+bIWuTkEFLRXul6GEQCDgEzw1TjAeRf+1O/6FcAqQCBx oIW+6AHniAuQ5bj9qMehVWc6goJMPxNExpfTXWqkUnf1yL2MnwBXok6y8T/Xzz+F 3jt8YTWMv7KxHOHScB9G2eHkEd7nqmRL0WcTwo8cmeY9U5SCTa1yJ8MsnkgdJx/N AKuc607Oh298MX3QV8E3E++Hdn5+Yr3fkFRYGIqYAWk1DQPQUScIp+RY/E1BdFF1 ZPPOpKdKMhrAXNqQA1rfQc1VDAZ5qv3xPbk4lo4hUQdLcmpf8nkoZVt0SE4= -----END CERTIFICATE-----Generated at Wed Apr 16 17:10:38 2025 by rpki-client