$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cf32fab-999e-4279-b732-33c0fe0c95ad.roa File: 8cf32fab-999e-4279-b732-33c0fe0c95ad.roa (raw, json) Hash identifier: KSdm4kSixqtFHEtbyaxVZfsZuccUoE9rrhyI63m08Ao= Subject key identifier: 7B:7C:E2:51:AD:7B:64:79:06:4E:6D:35:33:E7:5D:C6:05:2F:F4:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75A84C84CF6B5E077DE307B0F7BB3A4B1071B855 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cf32fab-999e-4279-b732-33c0fe0c95ad.roa Signing time: Tue 13 May 2025 00:50:09 +0000 ROA not before: Tue 13 May 2025 00:50:09 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a8:4c:84:cf:6b:5e:07:7d:e3:07:b0:f7:bb:3a:4b:10:71:b8:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:50:09 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=e00b5e5d00ee72cdf465afea96ccb24d2afaf2fe2847ef2ec27b6e5ac13018a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:b1:2b:69:d8:c0:04:af:29:61:70:f6:19: f2:68:28:32:45:ec:7c:16:be:d1:28:55:0e:dd:26: f4:93:fa:fa:41:ff:97:0b:5d:23:fc:90:86:2e:ff: ef:5d:0f:5c:c9:3a:39:b8:3d:dc:2e:72:8a:74:03: 0b:5a:fe:2d:bd:58:c1:c3:bd:32:38:d4:02:fe:3c: 2d:0b:95:7c:5a:9b:6f:99:e5:5d:a9:d9:5c:24:76: 51:81:0a:4c:b7:be:21:58:b1:6f:a8:d8:37:aa:9d: 63:d2:c6:e5:fd:c3:d1:67:95:ca:68:5f:1f:f6:7a: bd:50:6e:f6:72:dc:e5:dc:7e:5b:bf:d3:09:3b:e9: 39:41:f0:1f:fd:1a:ac:bc:78:d8:68:02:13:c5:26: ad:c7:16:3e:36:41:55:7d:40:d3:85:ca:c1:b1:41: 1c:c0:55:42:5e:36:d3:7b:f8:a3:3f:13:61:00:a1: 79:68:52:3d:68:bb:fe:2f:1b:ee:92:22:fd:09:0b: 16:39:5f:9b:36:15:c1:e8:5e:20:c4:07:9b:09:dd: 74:34:0b:1a:05:e1:81:73:91:e7:46:3c:f2:9a:7c: d9:14:5f:67:4d:1f:2c:9d:61:78:6f:a8:c7:9f:e3: c7:71:7a:4d:07:f1:f1:2c:7a:e9:72:f3:6f:17:4a: ba:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7C:E2:51:AD:7B:64:79:06:4E:6D:35:33:E7:5D:C6:05:2F:F4:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cf32fab-999e-4279-b732-33c0fe0c95ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.188.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:2e:59:27:81:1c:58:14:72:db:2e:f5:1a:ea:c5:96:7b:9e: 96:7a:19:23:2b:9c:f7:33:af:1e:ae:ae:96:8e:75:88:24:50: 35:7d:a2:d3:16:f7:ff:c9:e4:0b:03:b8:07:a1:43:4f:01:e0: f8:28:ac:8d:87:87:3d:e4:59:d0:98:d5:49:be:b3:2c:07:bd: 36:1d:6c:2f:8c:93:72:bf:a0:83:40:3a:34:7f:af:4e:9b:f9: 2b:2e:f9:bb:1d:46:30:10:65:56:59:e0:da:89:e8:62:af:80: e9:80:f6:ee:2e:13:8c:11:58:53:aa:52:69:b2:8b:28:37:d5: 24:81:3b:92:24:b2:65:7a:e2:30:c1:e2:25:11:9d:f7:64:7b: 3d:55:21:19:04:0a:18:ae:d1:d6:2a:14:cf:23:6f:ac:2e:1e: 3b:bc:36:71:58:bc:ad:f1:40:e7:b5:8e:f0:ad:7d:53:1b:1e: 50:50:96:12:90:b8:95:80:02:91:33:a3:ca:af:f2:be:0e:0c: 52:db:7d:40:71:b2:be:a5:a9:4a:c4:b6:9f:12:71:b1:92:42: d2:88:90:7d:26:35:27:ee:d3:4b:ee:d6:dc:c2:25:05:67:c6: fe:76:e0:91:ba:e0:c3:3a:43:3b:63:a6:05:e1:3a:88:4a:47: c0:17:04:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdahMhM9rXgd94wew97s6SxBxuFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDA1MDA5WhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDBiNWU1ZDAwZWU3MmNkZjQ2NWFmZWE5NmNjYjI0ZDJh ZmFmMmZlMjg0N2VmMmVjMjdiNmU1YWMxMzAxOGEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxJrEradjABK8pYXD2GfJoKDJF7HwWvtEoVQ7dJvST+vpB /5cLXSP8kIYu/+9dD1zJOjm4Pdwucop0Awta/i29WMHDvTI41AL+PC0LlXxam2+Z 5V2p2VwkdlGBCky3viFYsW+o2DeqnWPSxuX9w9FnlcpoXx/2er1QbvZy3OXcflu/ 0wk76TlB8B/9Gqy8eNhoAhPFJq3HFj42QVV9QNOFysGxQRzAVUJeNtN7+KM/E2EA oXloUj1ou/4vG+6SIv0JCxY5X5s2FcHoXiDEB5sJ3XQ0CxoF4YFzkedGPPKafNkU X2dNHyydYXhvqMef48dxek0H8fEseuly828XSrprAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe3ziUa17ZHkGTm01M+ddxgUv9LAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjZjMyZmFiLTk5OWUtNDI3OS1iNzMyLTMzYzBmZTBjOTVhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFALwwDQYJKoZIhvcNAQELBQADggEBAB4uWSeBHFgUctsu9RrqxZZ7npZ6 GSMrnPczrx6urpaOdYgkUDV9otMW9//J5AsDuAehQ08B4PgorI2Hhz3kWdCY1Um+ sywHvTYdbC+Mk3K/oINAOjR/r06b+Ssu+bsdRjAQZVZZ4NqJ6GKvgOmA9u4uE4wR WFOqUmmyiyg31SSBO5IksmV64jDB4iURnfdkez1VIRkEChiu0dYqFM8jb6wuHju8 NnFYvK3xQOe1jvCtfVMbHlBQlhKQuJWAApEzo8qv8r4ODFLbfUBxsr6lqUrEtp8S cbGSQtKIkH0mNSfu00vu1tzCJQVnxv524JG64MM6QztjpgXhOohKR8AXBGg= -----END CERTIFICATE-----Generated at Sun Jun 1 05:03:06 2025 by rpki-client