$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa File: b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa (raw, json) Hash identifier: Y3C9l707ZC6x+2IWp4jBJqqYGJexVScXJuGYL9Hh9AE= Subject key identifier: DD:1D:E2:72:4F:AE:49:87:F5:FC:2D:F9:36:38:76:B2:42:96:F4:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C8DA3F0769F3304B8F9A14CA44ACFFE97184295 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa Signing time: Tue 08 Apr 2025 00:40:30 +0000 ROA not before: Tue 08 Apr 2025 00:40:30 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.91.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8d:a3:f0:76:9f:33:04:b8:f9:a1:4c:a4:4a:cf:fe:97:18:42:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:40:30 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=2f790f108aa577fa7da3363911cc2f878698b400d16952e98d597ca02c982ab0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ca:b0:29:78:bf:f5:1e:77:61:73:14:2e:de: 59:ea:e5:3e:8a:52:3b:ae:8b:a2:bf:99:ec:b4:f2: 93:42:4f:3d:af:1f:74:d5:66:87:41:5e:e1:e7:57: 9b:65:e9:e1:46:b4:81:5d:07:6c:76:72:0a:e2:36: 6f:28:1a:d5:d8:ab:53:26:c4:1d:a8:35:48:4c:be: 3d:f9:3b:c6:fc:e5:a9:d6:ad:e3:b4:a5:37:37:26: 20:59:86:15:60:d2:90:d3:e8:33:36:39:27:28:9f: a5:18:7f:c8:c4:4a:62:39:88:7e:63:0c:54:c5:38: 34:ad:45:21:7b:d4:e7:1b:46:10:4f:e4:e1:65:51: e7:56:3d:09:09:94:b0:0c:12:8e:fa:1d:6b:e9:2d: d9:95:b5:d7:6c:58:74:78:78:0a:9b:df:b1:63:c0: 33:cc:0d:1f:1a:2b:04:14:a6:e4:55:5a:0a:0f:34: a7:11:79:86:8f:39:0f:b2:c6:bd:ca:d4:88:e4:82: 3a:e4:a8:b9:5c:eb:84:46:aa:aa:1c:ed:ef:f8:07: cc:b9:b6:8b:dc:f7:77:ee:d2:ad:67:f7:55:f1:a8: bb:9a:35:da:5f:57:04:b3:49:92:9a:68:67:29:b4: ef:e1:7a:66:60:c3:2b:e8:de:a9:bf:f6:a2:4e:27: 0e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1D:E2:72:4F:AE:49:87:F5:FC:2D:F9:36:38:76:B2:42:96:F4:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.91.192.0/19 Signature Algorithm: sha256WithRSAEncryption 00:03:27:eb:01:cf:2b:3b:2f:5c:00:23:e4:fa:90:b4:1d:14: e0:64:0a:0c:f7:bd:c2:a0:29:a0:80:06:f7:25:69:53:71:02: df:81:8d:db:24:00:18:3a:67:09:42:6b:6c:aa:3a:48:29:6e: 5e:5b:08:69:3a:9a:04:57:2d:64:d5:94:05:49:3b:0e:5c:12: 24:73:d2:58:07:df:c7:3c:72:51:10:18:70:52:7e:cd:12:4d: 5f:d9:b0:e1:1c:0d:f8:a7:e8:10:34:5c:11:a9:06:29:e4:6d: ac:1b:af:9f:61:ab:d6:49:1b:b6:73:7f:01:7d:cb:c6:c5:1d: 13:06:b2:9a:e7:61:01:c0:ae:d0:3f:d6:02:23:a0:96:43:90: be:b5:91:00:ca:61:f4:43:a1:83:1b:c7:2f:de:84:14:ca:c9: 37:84:7d:f2:7e:69:2e:2b:51:21:59:21:5e:11:60:78:8c:d0: 84:7f:42:c6:c8:85:96:2d:2e:14:07:74:0d:de:8e:3a:46:83: a3:af:87:68:8a:2e:80:30:b7:4f:c4:6e:98:22:e3:31:89:a6: b9:75:2a:0e:7f:86:c5:3c:a7:ab:b1:61:08:be:52:03:66:b4: 49:52:9d:98:cd:a4:1a:79:a6:35:76:43:59:f9:99:28:47:53: 4c:56:35:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDI2j8HafMwS4+aFMpErP/pcYQpUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA0MDMwWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjc5MGYxMDhhYTU3N2ZhN2RhMzM2MzkxMWNjMmY4Nzg2 OThiNDAwZDE2OTUyZTk4ZDU5N2NhMDJjOTgyYWIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkyrApeL/1HndhcxQu3lnq5T6KUjuui6K/mey08pNCTz2v H3TVZodBXuHnV5tl6eFGtIFdB2x2cgriNm8oGtXYq1MmxB2oNUhMvj35O8b85anW reO0pTc3JiBZhhVg0pDT6DM2OScon6UYf8jESmI5iH5jDFTFODStRSF71OcbRhBP 5OFlUedWPQkJlLAMEo76HWvpLdmVtddsWHR4eAqb37FjwDPMDR8aKwQUpuRVWgoP NKcReYaPOQ+yxr3K1IjkgjrkqLlc64RGqqoc7e/4B8y5tovc93fu0q1n91XxqLua NdpfVwSzSZKaaGcptO/hemZgwyvo3qm/9qJOJw41AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3R3ick+uSYf1/C35Njh2skKW9BswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyYzJiODVhLTY3MjYtNGVhMi05NmU0LWQzNGMxMjMxYzI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAW8AwDQYJKoZIhvcNAQELBQADggEBAAADJ+sBzys7L1wAI+T6kLQdFOBk Cgz3vcKgKaCABvclaVNxAt+BjdskABg6ZwlCa2yqOkgpbl5bCGk6mgRXLWTVlAVJ Ow5cEiRz0lgH38c8clEQGHBSfs0STV/ZsOEcDfin6BA0XBGpBinkbawbr59hq9ZJ G7ZzfwF9y8bFHRMGsprnYQHArtA/1gIjoJZDkL61kQDKYfRDoYMbxy/ehBTKyTeE ffJ+aS4rUSFZIV4RYHiM0IR/QsbIhZYtLhQHdA3ejjpGg6Ovh2iKLoAwt0/Ebpgi 4zGJprl1Kg5/hsU8p6uxYQi+UgNmtElSnZjNpBp5pjV2Q1n5mShHU0xWNZM= -----END CERTIFICATE-----Generated at Wed Apr 16 16:46:46 2025 by rpki-client