$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa File: 75d3c24e-bab6-4a1e-bc0d-905737818427.roa (raw, json) Hash identifier: AorW2ErKLmIVRIfADl0XQXld4bvrhaIlrETI8c6HJPM= Subject key identifier: 5A:7D:D1:86:05:FD:F5:8F:EE:7E:F9:45:6A:DA:CF:94:C2:D8:3D:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33A06A0D57DDF2E3C20E7F4B61AD6308C8EABE8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa Signing time: Mon 19 May 2025 17:01:22 +0000 ROA not before: Mon 19 May 2025 17:01:22 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a0:6a:0d:57:dd:f2:e3:c2:0e:7f:4b:61:ad:63:08:c8:ea:be:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:01:22 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=3e0ae38d21fbfda155802c67c35d58f438570e04de86f959fe90862df97e6085, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:90:72:5c:e0:83:ac:e1:e5:f0:3e:a5:85:b6: a5:4e:71:2b:d8:30:4e:37:ae:84:9a:00:0e:b2:f4: 2a:66:53:ae:77:2e:d8:9d:f7:ad:24:eb:2d:9c:e3: cf:6c:52:c6:a4:54:47:bc:e4:b1:ae:c7:a2:4a:f2: da:6d:2e:ee:10:05:d7:4f:71:e7:83:65:e2:6c:43: 26:e5:e5:ad:a1:f4:38:e2:74:bd:f6:72:63:59:e0: 37:ee:cc:f0:27:ec:e7:06:d9:1a:58:12:09:55:fd: cb:bb:85:44:4a:06:5a:ca:95:6f:b1:d2:1d:f5:ab: 2f:39:c1:0b:57:b4:a2:53:59:99:08:e9:91:c3:b8: 92:94:bc:2c:a5:38:eb:e4:19:b5:1a:4e:47:82:86: f2:1a:0f:8f:0a:4d:2b:41:a2:99:18:01:d3:24:07: 78:f0:11:c6:16:14:77:02:db:21:00:53:fe:c0:fc: a0:38:8f:e8:eb:1f:d4:7d:c7:13:a8:41:6b:e8:d8: 29:70:ae:67:78:3f:b7:15:27:ee:a8:0d:ad:ff:ab: c8:e5:a1:74:f8:ab:ef:9b:50:64:94:f5:b8:46:f0: 95:59:69:0c:60:03:15:d9:b6:54:aa:c5:c7:f4:6e: 80:e6:98:d1:cb:1d:51:8b:fc:75:d6:fa:67:29:58: 6e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7D:D1:86:05:FD:F5:8F:EE:7E:F9:45:6A:DA:CF:94:C2:D8:3D:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d3c24e-bab6-4a1e-bc0d-905737818427.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/20 Signature Algorithm: sha256WithRSAEncryption b6:df:a3:52:45:0e:67:a9:72:18:1a:67:8c:0f:45:5c:3b:88: b3:dc:6a:e0:00:82:f7:d2:83:99:50:80:dc:62:89:43:d0:cd: 88:1d:3c:3c:d0:c6:c8:40:1e:1f:f8:bf:a5:ee:95:e8:ab:93: 55:dd:18:8c:f4:ff:09:fa:76:4f:38:88:4d:3b:20:bd:df:cf: 6b:08:70:9c:4a:23:a9:40:86:1a:d8:db:09:95:da:1c:60:24: f3:6e:40:84:03:5f:c1:88:17:83:28:fa:b5:21:c9:3f:4c:09: 55:19:c1:4f:ff:2e:34:de:fd:02:b4:d9:d5:aa:2e:7a:83:18: 65:d5:dc:79:47:cf:80:bb:9b:e4:9f:e1:04:bb:91:46:ce:97: d8:8b:eb:98:cb:5b:bf:d2:70:49:79:c7:c3:c5:d3:4e:36:b7: ea:92:ec:ee:fa:04:1d:f2:cf:7a:42:6f:b9:0c:66:ae:c3:eb: 6b:eb:84:a8:9d:ec:3c:a4:fe:f0:27:e2:5d:39:a4:4a:8f:7b: cb:47:23:ec:58:b9:f3:cc:8a:b8:47:2e:8a:fe:a4:43:9d:4c: 24:52:95:0e:19:f7:b3:47:fc:fd:52:f7:29:e8:60:d5:1e:7d: bd:7b:ad:f9:29:a1:38:57:d7:aa:12:84:16:76:39:5c:5b:36: 91:8d:ed:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM6BqDVfd8uPCDn9LYa1jCMjqvoowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTcwMTIyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTBhZTM4ZDIxZmJmZGExNTU4MDJjNjdjMzVkNThmNDM4 NTcwZTA0ZGU4NmY5NTlmZTkwODYyZGY5N2U2MDg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQkHJc4IOs4eXwPqWFtqVOcSvYME43roSaAA6y9CpmU653 Ltid960k6y2c489sUsakVEe85LGux6JK8tptLu4QBddPceeDZeJsQybl5a2h9Dji dL32cmNZ4DfuzPAn7OcG2RpYEglV/cu7hURKBlrKlW+x0h31qy85wQtXtKJTWZkI 6ZHDuJKUvCylOOvkGbUaTkeChvIaD48KTStBopkYAdMkB3jwEcYWFHcC2yEAU/7A /KA4j+jrH9R9xxOoQWvo2Clwrmd4P7cVJ+6oDa3/q8jloXT4q++bUGSU9bhG8JVZ aQxgAxXZtlSqxcf0boDmmNHLHVGL/HXW+mcpWG6fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWn3RhgX99Y/ufvlFatrPlMLYPQwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZDNjMjRlLWJhYjYtNGExZS1iYzBkLTkwNTczNzgxODQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7OAwDQYJKoZIhvcNAQELBQADggEBALbfo1JFDmepchgaZ4wPRVw7iLPc auAAgvfSg5lQgNxiiUPQzYgdPDzQxshAHh/4v6Xuleirk1XdGIz0/wn6dk84iE07 IL3fz2sIcJxKI6lAhhrY2wmV2hxgJPNuQIQDX8GIF4Mo+rUhyT9MCVUZwU//LjTe /QK02dWqLnqDGGXV3HlHz4C7m+Sf4QS7kUbOl9iL65jLW7/ScEl5x8PF0042t+qS 7O76BB3yz3pCb7kMZq7D62vrhKid7Dyk/vAn4l05pEqPe8tHI+xYufPMirhHLor+ pEOdTCRSlQ4Z97NH/P1S9ynoYNUefb17rfkpoThX16oShBZ2OVxbNpGN7ds= -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:56 2025 by rpki-client