$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa File: 6d7cb979-c125-4840-893a-6f3570fa019a.roa (raw, json) Hash identifier: Ye0wKzcchdSdmh+r96PKx+jbJJRMfK5QvMPJxLwPon4= Subject key identifier: 37:FB:F6:F4:6B:FE:0B:78:E3:FA:ED:EB:06:A2:DA:A1:2F:17:23:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B143DFF670438FE8AA232FB610A23522B5173DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa Signing time: Mon 31 Mar 2025 15:31:57 +0000 ROA not before: Mon 31 Mar 2025 15:31:57 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:14:3d:ff:67:04:38:fe:8a:a2:32:fb:61:0a:23:52:2b:51:73:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:31:57 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=375f58f84199c88856f37e9d24ffbfbe09bc80839bb23a463261aa54119ba998, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:27:a4:00:b6:da:89:43:68:0f:99:e5:d7: fc:e8:d5:51:ab:53:3e:70:09:ba:64:69:2f:48:bd: f2:e4:b2:b1:73:5d:9a:08:7c:d9:33:5a:6f:40:92: 7f:3a:a0:7d:e2:ac:a8:29:63:85:80:9c:dc:cb:41: ab:52:47:0f:19:af:3c:36:18:28:6c:2d:4d:3a:6a: 78:d4:fa:db:ea:f1:cc:ae:61:04:fc:19:17:b6:fa: 22:b8:7a:f4:40:f7:45:20:1d:ea:e4:71:da:7f:dd: 1d:57:a3:27:04:1a:0d:7c:b2:56:15:f0:78:09:c4: 9d:ee:05:7d:b2:87:56:c8:c3:ea:f7:72:48:d1:1b: 6f:25:18:eb:74:f1:d6:fc:30:ec:17:f6:c5:d9:25: 8d:43:f0:e6:d0:b9:8a:41:12:47:7f:c1:46:b7:6e: 91:9f:65:aa:0e:7b:7c:35:13:a4:ac:26:72:4f:f9: e2:2b:16:e5:62:fe:61:7d:eb:4f:c2:d5:6e:39:2a: 80:d4:fc:e7:d4:19:60:3d:37:aa:de:f7:74:dc:f8: 05:25:b3:8d:77:99:aa:e4:46:3d:2c:21:ca:64:ac: 87:02:77:08:38:20:64:86:17:d0:19:d2:19:79:c7: 2c:a2:b5:e5:2c:4a:3a:03:8e:d6:69:f9:fb:0b:1b: 4e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FB:F6:F4:6B:FE:0B:78:E3:FA:ED:EB:06:A2:DA:A1:2F:17:23:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:06:56:e6:58:7e:b7:80:3c:2d:a2:a5:ef:b7:22:0e:9b:ec: b2:61:11:e4:9f:c6:76:b2:9f:47:52:f1:f2:5a:5d:0f:52:03: 93:59:48:a4:ef:5f:5b:01:f6:0b:08:d6:12:f9:f6:bc:1f:82: 35:74:25:f6:b0:21:b0:cb:44:bd:98:89:c0:48:67:7e:66:21: e2:df:f6:11:cb:00:ef:a1:46:b4:5b:94:1d:52:8e:b7:eb:9e: 03:9b:14:4d:34:20:a6:b5:58:63:f5:37:f6:cf:23:97:e7:37: f3:00:36:d7:f8:81:bf:6e:d9:b2:86:b6:27:c5:32:b9:bb:ed: c9:f7:5a:af:23:29:24:53:a2:83:27:a0:7d:08:01:25:d7:66: 26:45:38:41:6c:d7:ae:fe:5a:c2:d9:b3:37:20:a4:6e:a7:8d: 45:61:91:78:54:64:9d:94:1c:49:db:ca:a5:3a:e2:1f:9f:d0: 42:bf:00:2f:b3:85:92:90:99:ac:ef:5e:f5:c7:d1:9d:f7:39: 41:7b:f8:ff:5f:a7:2e:b9:51:f7:a6:81:c5:e9:0e:c7:32:14: 08:b0:a8:e9:d4:6b:74:e7:75:ea:c4:cc:f3:4f:3f:86:f8:67: 57:14:34:da:f5:ea:df:66:b5:b1:3c:b3:11:6b:3d:3d:b3:5e: 2f:86:ec:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCxQ9/2cEOP6KojL7YQojUitRc94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMTU3WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzVmNThmODQxOTljODg4NTZmMzdlOWQyNGZmYmZiZTA5 YmM4MDgzOWJiMjNhNDYzMjYxYWE1NDExOWJhOTk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoRiekALbaiUNoD5nl1/zo1VGrUz5wCbpkaS9IvfLksrFz XZoIfNkzWm9Akn86oH3irKgpY4WAnNzLQatSRw8Zrzw2GChsLU06anjU+tvq8cyu YQT8GRe2+iK4evRA90UgHerkcdp/3R1XoycEGg18slYV8HgJxJ3uBX2yh1bIw+r3 ckjRG28lGOt08db8MOwX9sXZJY1D8ObQuYpBEkd/wUa3bpGfZaoOe3w1E6SsJnJP +eIrFuVi/mF960/C1W45KoDU/OfUGWA9N6re93Tc+AUls413markRj0sIcpkrIcC dwg4IGSGF9AZ0hl5xyyiteUsSjoDjtZp+fsLG043AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN/v29Gv+C3jj+u3rBqLaoS8XIw4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkN2NiOTc5LWMxMjUtNDg0MC04OTNhLTZmMzU3MGZhMDE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIDANBgkqhkiG9w0BAQsFAAOCAQEAUgZW5lh+t4A8LaKl77ciDpvssmER 5J/GdrKfR1Lx8lpdD1IDk1lIpO9fWwH2CwjWEvn2vB+CNXQl9rAhsMtEvZiJwEhn fmYh4t/2EcsA76FGtFuUHVKOt+ueA5sUTTQgprVYY/U39s8jl+c38wA21/iBv27Z soa2J8UyubvtyfdaryMpJFOigyegfQgBJddmJkU4QWzXrv5awtmzNyCkbqeNRWGR eFRknZQcSdvKpTriH5/QQr8AL7OFkpCZrO9e9cfRnfc5QXv4/1+nLrlR96aBxekO xzIUCLCo6dRrdOd16sTM808/hvhnVxQ02vXq32a1sTyzEWs9PbNeL4bsIg== -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:38 2025 by rpki-client