$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa File: bada3e67-c008-4ed4-add1-6c213e7acb37.roa (raw, json) Hash identifier: uSlUd6ZRy/1sWFkvePlD/FatBgXnajcLYbJlyWNziw0= Subject key identifier: 35:13:97:6A:91:E7:B9:66:43:82:6F:91:39:EC:B4:98:30:AC:84:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D210916ACC1AF24CF5FA321DB7640C87574457E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa Signing time: Sat 29 Mar 2025 00:52:06 +0000 ROA not before: Sat 29 Mar 2025 00:52:06 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 198.14.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:21:09:16:ac:c1:af:24:cf:5f:a3:21:db:76:40:c8:75:74:45:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:52:06 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:10:5c:b7:f6:88:d6:f2:f5:96:93:7c:59:37: dd:90:84:f4:28:85:e7:32:2b:d1:bf:f0:dc:9e:5d: 86:84:99:db:b3:03:51:c1:fc:39:c7:8d:26:71:44: c8:88:17:4e:0d:7b:44:81:07:1d:0d:a3:17:34:79: 7b:75:ac:79:06:84:96:54:fc:df:d6:b4:ef:5d:48: 30:64:19:1c:de:cd:f8:d6:0d:8f:2f:f7:c1:9d:62: d5:a5:a7:2b:57:63:2c:66:11:51:55:ed:52:80:29: 1f:98:cd:03:f3:9b:ae:aa:b3:06:8e:d7:42:b9:83: 2c:6f:c4:5a:06:7d:98:fe:d3:58:79:15:ae:4f:d4: 53:24:b4:8c:13:91:71:56:ff:ba:1f:cd:b4:3e:83: 94:d8:c4:70:d7:ac:88:9a:c5:7b:c0:18:b8:fb:11: 5b:ee:56:23:73:5e:c2:e0:5a:ad:51:8c:4f:68:e4: a4:49:09:d8:63:54:71:2c:dc:88:26:ab:80:cf:7e: ad:fb:5a:56:af:41:c3:55:a3:e4:e8:ed:ee:a7:42: 8e:b1:63:dd:b5:e4:5e:0f:98:77:cf:1b:4a:7e:29: 1c:6e:4b:c9:52:71:46:ae:21:e5:d1:00:48:02:55: 13:01:53:fd:c7:91:2e:3e:90:78:ca:d0:79:e0:0c: 30:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:13:97:6A:91:E7:B9:66:43:82:6F:91:39:EC:B4:98:30:AC:84:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.14.1.0/24 Signature Algorithm: sha256WithRSAEncryption 76:e0:f9:9a:d8:b2:f2:55:e3:a1:80:8c:39:98:23:0f:06:78: 2f:df:10:08:a2:74:21:3e:92:24:91:5b:d6:26:a9:ba:83:01: 93:07:c8:45:88:8d:52:5d:8f:ca:6f:97:2e:69:04:17:0f:54: 00:08:37:dd:45:e4:08:6d:57:97:03:40:34:fd:c7:74:d4:21: fe:ec:d9:fa:fc:53:6d:df:b1:ba:1a:d5:f8:86:0f:e9:47:06: 05:52:75:c9:3e:d1:8b:f3:6f:25:87:39:1b:1b:ea:f6:55:71: 71:d1:8c:84:d4:3c:74:31:c4:ab:7d:de:5a:db:59:62:d4:a9: 66:9b:d0:3c:e3:f0:f0:4f:e5:29:6c:55:ec:21:9e:45:c1:c0: 61:b8:1b:52:85:9a:8b:af:b3:68:e6:ca:a4:ea:2c:5d:25:6b: bc:55:e6:c0:72:af:3f:fe:23:ee:f5:9f:a1:6c:a5:8a:93:49: 92:94:39:20:84:ed:1e:24:6b:e4:fa:ec:ec:08:83:23:2b:74: b6:ed:3b:4e:37:db:05:f9:ae:cb:22:ff:ec:9f:2a:9c:4f:59: b9:a0:ff:87:ec:8e:87:99:9c:7e:06:fd:be:88:8b:0e:bb:9a: 42:00:7c:26:6c:fd:f3:b2:c3:93:e7:d5:cf:5d:cb:ae:21:27: 23:a8:4c:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPSEJFqzBryTPX6Mh23ZAyHV0RX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA1MjA2WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTVmMTkzZjY5ZGU3NzY2Y2JiY2I1YjIyYWZiMDM0ZGMx ZjU3ZWE5MzFjMjkwNzY5ZDQ0NzMzZDg1YjcyMjQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8EFy39ojW8vWWk3xZN92QhPQohecyK9G/8NyeXYaEmduz A1HB/DnHjSZxRMiIF04Ne0SBBx0Noxc0eXt1rHkGhJZU/N/WtO9dSDBkGRzezfjW DY8v98GdYtWlpytXYyxmEVFV7VKAKR+YzQPzm66qswaO10K5gyxvxFoGfZj+01h5 Fa5P1FMktIwTkXFW/7ofzbQ+g5TYxHDXrIiaxXvAGLj7EVvuViNzXsLgWq1RjE9o 5KRJCdhjVHEs3Igmq4DPfq37WlavQcNVo+To7e6nQo6xY9215F4PmHfPG0p+KRxu S8lScUauIeXRAEgCVRMBU/3HkS4+kHjK0HngDDBPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNROXapHnuWZDgm+ROey0mDCshJUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhZGEzZTY3LWMwMDgtNGVkNC1hZGQxLTZjMjEzZTdhY2IzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGDgEwDQYJKoZIhvcNAQELBQADggEBAHbg+ZrYsvJV46GAjDmYIw8GeC/f EAiidCE+kiSRW9YmqbqDAZMHyEWIjVJdj8pvly5pBBcPVAAIN91F5AhtV5cDQDT9 x3TUIf7s2fr8U23fsboa1fiGD+lHBgVSdck+0YvzbyWHORsb6vZVcXHRjITUPHQx xKt93lrbWWLUqWab0Dzj8PBP5SlsVewhnkXBwGG4G1KFmouvs2jmyqTqLF0la7xV 5sByrz/+I+71n6FspYqTSZKUOSCE7R4ka+T67OwIgyMrdLbtO0432wX5rssi/+yf KpxPWbmg/4fsjoeZnH4G/b6Iiw67mkIAfCZs/fOyw5Pn1c9dy64hJyOoTEM= -----END CERTIFICATE-----Generated at Fri Apr 11 23:37:50 2025 by rpki-client