$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa File: 725de74a-ea25-4864-a260-52460f0b56de.roa (raw, json) Hash identifier: z+wXJMnzO/1oSHjdQosmpsgNCCugmliccSWz1RG0mME= Subject key identifier: 8D:13:16:B8:AF:35:AB:2C:02:A8:16:33:AD:F2:C0:96:E4:23:8A:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44E87249611CA1B7015B59EC6564F6E288544361 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa Signing time: Tue 27 May 2025 00:21:04 +0000 ROA not before: Tue 27 May 2025 00:21:04 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e8:72:49:61:1c:a1:b7:01:5b:59:ec:65:64:f6:e2:88:54:43:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:21:04 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=9d285eaf50d1fb349e1956314860af601aabf5e22686267d9c6bbb07f348a1f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c7:57:bc:0a:f2:12:d2:f7:48:dc:17:3d:33: f7:e7:c1:cb:c6:ac:54:01:c7:94:c0:cc:08:50:99: b6:36:ec:6b:fd:da:91:ca:2c:ea:38:87:dd:e5:0a: 62:29:ee:f3:18:7c:24:cf:bc:21:91:f3:f4:30:ff: 4a:30:1b:a5:55:95:15:72:d1:3e:bd:d4:da:b0:8d: ff:62:39:50:b8:75:79:c5:e7:9f:ba:7b:08:af:8d: a3:6a:31:73:49:5a:b8:8a:b4:ee:e4:bb:83:25:b3: 53:ca:86:fa:a0:31:5d:18:1d:32:a5:4a:4f:d6:48: 1c:92:66:89:93:b4:4b:af:b3:41:5e:e6:16:fe:94: fd:61:1c:05:8b:5d:ab:ec:d5:f8:59:7d:ba:43:c3: 07:86:bf:4f:82:14:9f:6a:01:91:0c:12:4f:20:f4: b0:69:88:d4:a1:40:0b:7f:94:c3:4c:bd:25:a8:12: 1f:1a:80:48:db:2f:17:3b:05:3e:96:80:0f:c0:a6: eb:70:b3:46:96:2f:59:b5:25:83:1c:0a:ff:9e:c2: d3:e0:f0:76:4e:33:c0:58:ca:37:d0:d1:be:54:68: 13:56:2b:1c:38:b6:61:08:11:3f:4a:3f:3a:69:80: 01:84:e4:74:90:78:18:1d:31:63:85:7e:56:2c:3c: cf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:13:16:B8:AF:35:AB:2C:02:A8:16:33:AD:F2:C0:96:E4:23:8A:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.175.0/24 Signature Algorithm: sha256WithRSAEncryption 47:62:66:30:9c:58:6b:d8:d6:4f:03:45:c6:e5:77:54:55:bf: 8d:ee:b3:d0:63:e7:bf:56:72:fa:e3:02:c0:d0:1b:c4:55:a1: 51:3b:d5:b1:c4:c7:ee:d6:d4:4c:e4:7d:5c:59:f5:6d:f2:08: 27:1a:a9:c4:3c:35:52:fd:cf:78:a1:5d:d9:6b:19:c1:39:e2: 91:d3:07:06:63:d0:22:28:4f:fd:25:13:82:b3:a8:cc:df:39: b3:20:d0:6b:22:fd:af:4b:f6:8e:9a:ca:b3:aa:cc:25:93:13: ae:1f:0d:76:df:33:1c:7d:25:d5:79:cd:40:fb:08:82:6c:09: c1:b5:ff:c7:f2:06:f1:12:05:c8:17:df:37:b5:47:8b:4b:5c: 7d:24:5f:63:cc:ac:11:04:10:6d:00:48:08:f6:25:29:fa:bc: a6:ce:c5:b0:ff:4f:72:66:36:2b:8e:2b:51:69:1a:c6:74:a6: 7a:ab:1b:ba:4b:14:2b:0e:ba:23:0e:2e:48:34:49:d2:82:76: 63:65:8f:8e:1e:39:af:20:ee:2c:7a:50:93:29:07:41:24:4c: 97:ae:ec:e8:8f:3c:9b:66:14:f2:b5:f7:78:f7:5a:58:21:a9: c1:14:79:5c:71:fb:50:25:8b:9b:77:5b:17:70:40:e4:b5:2b: 3c:29:59:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUROhySWEcobcBW1nsZWT24ohUQ2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAyMTA0WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDI4NWVhZjUwZDFmYjM0OWUxOTU2MzE0ODYwYWY2MDFh YWJmNWUyMjY4NjI2N2Q5YzZiYmIwN2YzNDhhMWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQx1e8CvIS0vdI3Bc9M/fnwcvGrFQBx5TAzAhQmbY27Gv9 2pHKLOo4h93lCmIp7vMYfCTPvCGR8/Qw/0owG6VVlRVy0T691Nqwjf9iOVC4dXnF 55+6ewivjaNqMXNJWriKtO7ku4Mls1PKhvqgMV0YHTKlSk/WSBySZomTtEuvs0Fe 5hb+lP1hHAWLXavs1fhZfbpDwweGv0+CFJ9qAZEMEk8g9LBpiNShQAt/lMNMvSWo Eh8agEjbLxc7BT6WgA/Aputws0aWL1m1JYMcCv+ewtPg8HZOM8BYyjfQ0b5UaBNW Kxw4tmEIET9KPzppgAGE5HSQeBgdMWOFflYsPM/5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjRMWuK81qywCqBYzrfLAluQjil0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyNWRlNzRhLWVhMjUtNDg2NC1hMjYwLTUyNDYwZjBiNTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK68wDQYJKoZIhvcNAQELBQADggEBAEdiZjCcWGvY1k8DRcbld1RVv43u s9Bj579WcvrjAsDQG8RVoVE71bHEx+7W1EzkfVxZ9W3yCCcaqcQ8NVL9z3ihXdlr GcE54pHTBwZj0CIoT/0lE4KzqMzfObMg0Gsi/a9L9o6ayrOqzCWTE64fDXbfMxx9 JdV5zUD7CIJsCcG1/8fyBvESBcgX3ze1R4tLXH0kX2PMrBEEEG0ASAj2JSn6vKbO xbD/T3JmNiuOK1FpGsZ0pnqrG7pLFCsOuiMOLkg0SdKCdmNlj44eOa8g7ix6UJMp B0EkTJeu7OiPPJtmFPK193j3WlghqcEUeVxx+1Ali5t3WxdwQOS1KzwpWRg= -----END CERTIFICATE-----Generated at Sun Jun 1 05:27:52 2025 by rpki-client