$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa File: e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa (raw, json) Hash identifier: uZlsgwWg69wG2kHnjK7NfU4Vw0hp4KHI0O3CTnP43So= Subject key identifier: A9:FD:CF:F7:CF:89:9B:2D:99:49:69:56:90:53:50:79:73:35:97:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F2404FC618F9FB4CD788704C0F065FC3928319C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa Signing time: Fri 11 Apr 2025 00:10:24 +0000 ROA not before: Fri 11 Apr 2025 00:10:24 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.192.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:24:04:fc:61:8f:9f:b4:cd:78:87:04:c0:f0:65:fc:39:28:31:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:24 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=b1653339fa393eccb1ba0af4d483f97f6ca41ed947c4f1a645194ecc022c8ef7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:85:cb:d1:f6:aa:92:b2:bb:1d:da:02:c7: 12:f8:75:2c:df:95:fb:9a:a3:70:dc:4b:7a:c1:cd: 2b:94:e5:0b:bc:5a:97:63:a1:33:6b:4d:f8:1e:23: 86:b3:af:69:32:c6:45:10:af:8e:46:e0:e2:65:ef: 79:d9:3d:42:01:c3:7b:85:59:f8:f3:40:9a:cc:bb: f7:f4:e0:59:e3:89:e8:15:78:76:e4:98:b1:f3:03: 41:32:bc:f7:26:f6:18:d9:0e:88:3c:7d:73:c3:59: f1:05:d5:a4:fd:37:54:be:33:c5:37:1b:db:11:57: 5c:89:6a:f4:6c:d9:41:cb:3a:2b:f9:36:44:90:35: 89:01:8f:51:99:ce:14:c0:c0:d5:bc:c0:8b:a3:7f: 39:52:3e:6b:52:dd:db:98:35:73:b2:66:12:32:d2: 96:94:49:70:af:ea:39:d8:ea:ab:05:54:b2:d3:5b: cb:d2:1f:a1:20:eb:81:f0:47:69:0d:d8:af:1a:93: e6:4e:9e:33:d7:b1:e5:b2:2d:56:29:b0:6b:83:55: e9:08:7a:a3:20:05:b9:b4:12:96:4d:3c:22:6f:f2: 99:c8:16:da:3c:ac:b2:13:d9:d9:07:68:8a:1e:9d: 47:d5:30:50:d0:ef:2b:78:08:73:ff:9c:b8:94:0c: aa:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FD:CF:F7:CF:89:9B:2D:99:49:69:56:90:53:50:79:73:35:97:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:d2:d0:dc:a4:92:11:44:b0:3f:2c:8f:44:84:65:74:58:58: fe:2b:75:06:67:58:8b:c7:e6:8a:92:c6:dc:40:e7:fb:25:ae: 72:8c:e9:43:a3:03:a4:0f:8a:84:74:83:e4:72:f2:5e:fa:b9: 14:55:87:8e:9a:22:ef:7a:b9:76:14:1f:36:d4:43:31:e3:90: f7:1a:9c:a2:1f:af:f9:02:91:7f:95:5f:e0:f8:49:0f:55:a9: 93:1e:a9:d9:ba:d4:f6:e0:4d:4b:c8:0e:c3:e6:98:e7:6c:42: 71:de:02:82:94:a5:5e:c3:60:06:b2:22:83:75:14:15:b8:48: 40:99:4c:3b:07:1f:15:b4:aa:23:56:bc:1d:d2:34:d8:7d:82: da:d5:c5:c8:37:a8:26:f3:93:cf:bc:cd:60:b1:de:08:61:62: 5a:4f:3e:73:7d:d8:38:6b:d6:13:f8:ba:74:a2:0a:a3:3a:c0: 69:98:fd:83:76:a7:70:12:bd:ec:13:18:e6:e2:e5:ec:50:a6: b3:bd:22:49:c6:b5:a1:45:66:84:1b:8b:3b:b7:e1:33:ec:cd: e0:51:f4:10:03:71:a8:bf:62:7a:b0:ed:07:e6:d9:68:f8:a2: 36:ec:24:46:3d:3c:2b:70:75:fd:77:75:bd:2b:b3:67:14:32: 1e:ca:af:30 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbyQE/GGPn7TNeIcEwPBl/DkoMZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDI0WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTY1MzMzOWZhMzkzZWNjYjFiYTBhZjRkNDgzZjk3ZjZj YTQxZWQ5NDdjNGYxYTY0NTE5NGVjYzAyMmM4ZWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYMIXL0faqkrK7HdoCxxL4dSzflfuao3DcS3rBzSuU5Qu8 WpdjoTNrTfgeI4azr2kyxkUQr45G4OJl73nZPUIBw3uFWfjzQJrMu/f04FnjiegV eHbkmLHzA0EyvPcm9hjZDog8fXPDWfEF1aT9N1S+M8U3G9sRV1yJavRs2UHLOiv5 NkSQNYkBj1GZzhTAwNW8wIujfzlSPmtS3duYNXOyZhIy0paUSXCv6jnY6qsFVLLT W8vSH6Eg64HwR2kN2K8ak+ZOnjPXseWyLVYpsGuDVekIeqMgBbm0EpZNPCJv8pnI Fto8rLIT2dkHaIoenUfVMFDQ7yt4CHP/nLiUDKolAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqf3P98+Jmy2ZSWlWkFNQeXM1l8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwYWJhNjBiLWFhZjAtNGQwYy1iYThlLWU2MWU3MDIzNDdiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwDANBgkqhkiG9w0BAQsFAAOCAQEAKdLQ3KSSEUSwPyyPRIRldFhY/it1 BmdYi8fmipLG3EDn+yWucozpQ6MDpA+KhHSD5HLyXvq5FFWHjpoi73q5dhQfNtRD MeOQ9xqcoh+v+QKRf5Vf4PhJD1Wpkx6p2brU9uBNS8gOw+aY52xCcd4CgpSlXsNg BrIig3UUFbhIQJlMOwcfFbSqI1a8HdI02H2C2tXFyDeoJvOTz7zNYLHeCGFiWk8+ c33YOGvWE/i6dKIKozrAaZj9g3ancBK97BMY5uLl7FCms70iSca1oUVmhBuLO7fh M+zN4FH0EANxqL9ierDtB+bZaPiiNuwkRj08K3B1/Xd1vSuzZxQyHsqvMA== -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:45 2025 by rpki-client