$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa File: a180719e-5fd3-4143-88a0-9cbf81c0885d.roa (raw, json) Hash identifier: bIyfTh9OVfIG09JGVSIhDunxYp+Sq605BwZiy+V760c= Subject key identifier: 3C:91:77:05:41:A8:F0:5F:31:21:6B:04:77:E0:0F:69:14:83:DC:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40635AD2925594426DB1B0C5874E2C21BFF79AAF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa Signing time: Fri 30 May 2025 00:31:07 +0000 ROA not before: Fri 30 May 2025 00:31:07 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:63:5a:d2:92:55:94:42:6d:b1:b0:c5:87:4e:2c:21:bf:f7:9a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:31:07 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b261d3729e7e02a5d75615a196285ade999bdca7d2e6450a37baf366ad28a748, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:83:c6:b1:d1:4e:11:fd:25:e6:ca:75:08:03: 39:bf:b6:9f:b2:e2:25:bf:ce:0c:d7:27:be:a4:5a: 38:32:26:ef:84:2e:4d:d0:aa:df:c6:66:74:83:12: 3f:84:b9:c2:c0:e1:4c:4e:70:e4:2a:66:d0:78:83: 54:f1:66:b0:3b:77:7b:cb:e9:2e:0d:6d:9a:54:f1: 6c:b8:7d:82:e6:5c:18:b5:86:89:00:ce:76:68:6d: 4a:80:93:d5:e3:d9:31:74:61:30:e7:06:e6:38:46: 9b:67:23:a8:d8:ca:0b:3e:c9:de:78:c4:28:15:f4: 87:4d:63:a4:af:c0:d7:80:1a:e5:c4:30:2d:49:ee: e6:42:07:a6:af:e1:0d:d0:13:bf:72:21:f1:39:b9: 54:69:60:3b:c1:a0:59:35:cf:6c:43:70:a7:25:96: 68:cb:d8:b8:7d:be:5d:70:9b:de:6f:75:fc:7c:97: c5:d1:29:bc:50:db:ff:19:5f:c8:2a:5e:d7:12:16: 2f:7c:fb:54:32:72:47:a7:9e:05:dc:14:45:41:d1: 07:69:25:c1:69:2e:28:be:e7:9c:b6:66:5a:2e:f9: 45:77:2b:0a:50:af:3d:9d:f7:48:f7:38:95:d9:01: 8c:41:2c:9c:02:41:c3:f7:6b:64:98:45:3a:25:03: 09:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:91:77:05:41:A8:F0:5F:31:21:6B:04:77:E0:0F:69:14:83:DC:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.77.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:93:44:b1:52:c3:5d:3d:7d:0a:88:95:95:62:65:da:a9:92: cb:68:11:64:ac:2e:59:be:00:50:6c:2e:4c:cb:4d:f8:8f:59: a2:0b:fc:dc:8b:d5:e2:e3:fa:be:63:56:ec:dd:e7:4b:15:e3: 97:37:43:ef:79:4c:43:3b:22:2d:fb:0d:88:c8:5d:eb:6d:79: 07:a5:e7:89:b4:c0:24:b9:83:fb:82:3a:39:25:fc:11:3b:f1: 28:81:26:35:b3:c4:e5:6a:cc:e4:44:99:d0:a7:65:c5:c3:88: de:b6:a9:0b:6f:ec:66:32:95:3d:a4:89:70:ae:70:d9:60:78: cc:28:62:c6:15:5c:4f:ab:7a:68:6b:f2:4d:01:27:40:10:a3: 4b:48:48:4b:5b:54:32:36:3e:d6:08:f6:32:e7:b5:37:42:25: 84:ad:18:3f:4c:bc:73:d5:d6:24:fb:79:a6:5a:1c:5e:d2:78: 5a:36:58:ea:64:9a:c4:8e:6e:c2:71:23:f3:5f:8e:d0:18:71: d5:13:1b:86:96:b6:f3:0e:06:b5:ad:fa:ce:6a:8a:91:25:c7: a4:c4:26:40:c7:31:60:ac:a0:ee:b3:30:bd:f2:58:0d:07:b2: 2c:87:f3:27:4b:fe:9f:98:81:05:2f:d6:dd:a3:4a:1c:ed:37: c0:80:06:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQGNa0pJVlEJtsbDFh04sIb/3mq8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMTA3WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjYxZDM3MjllN2UwMmE1ZDc1NjE1YTE5NjI4NWFkZTk5 OWJkY2E3ZDJlNjQ1MGEzN2JhZjM2NmFkMjhhNzQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBg8ax0U4R/SXmynUIAzm/tp+y4iW/zgzXJ76kWjgyJu+E Lk3Qqt/GZnSDEj+EucLA4UxOcOQqZtB4g1TxZrA7d3vL6S4NbZpU8Wy4fYLmXBi1 hokAznZobUqAk9Xj2TF0YTDnBuY4RptnI6jYygs+yd54xCgV9IdNY6SvwNeAGuXE MC1J7uZCB6av4Q3QE79yIfE5uVRpYDvBoFk1z2xDcKcllmjL2Lh9vl1wm95vdfx8 l8XRKbxQ2/8ZX8gqXtcSFi98+1QyckenngXcFEVB0QdpJcFpLii+55y2Zlou+UV3 KwpQrz2d90j3OJXZAYxBLJwCQcP3a2SYRTolAwmhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPJF3BUGo8F8xIWsEd+APaRSD3H8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExODA3MTllLTVmZDMtNDE0My04OGEwLTljYmY4MWMwODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/E0wDQYJKoZIhvcNAQELBQADggEBAIqTRLFSw109fQqIlZViZdqpksto EWSsLlm+AFBsLkzLTfiPWaIL/NyL1eLj+r5jVuzd50sV45c3Q+95TEM7Ii37DYjI XetteQel54m0wCS5g/uCOjkl/BE78SiBJjWzxOVqzOREmdCnZcXDiN62qQtv7GYy lT2kiXCucNlgeMwoYsYVXE+remhr8k0BJ0AQo0tISEtbVDI2PtYI9jLntTdCJYSt GD9MvHPV1iT7eaZaHF7SeFo2WOpkmsSObsJxI/NfjtAYcdUTG4aWtvMOBrWt+s5q ipElx6TEJkDHMWCsoO6zML3yWA0HsiyH8ydL/p+YgQUv1t2jShztN8CABiE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:41:53 2025 by rpki-client