$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa File: e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa (raw, json) Hash identifier: nqgdBzZCQTQUCaGrMTNZ5nGD0eUzan67lYw41SAv1OU= Subject key identifier: 97:41:36:5C:DA:59:23:02:9C:5F:B8:D5:AD:68:19:04:AF:4F:51:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26D86A54BC11271081BE281857E2503C927192E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa Signing time: Tue 08 Apr 2025 00:52:08 +0000 ROA not before: Tue 08 Apr 2025 00:52:08 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d8:6a:54:bc:11:27:10:81:be:28:18:57:e2:50:3c:92:71:92:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:52:08 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=1c4ca2aec3e235ab63fb9cc5193995ee058fb8c72ee89f2926d6288694045590, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:6a:c4:3e:7a:51:c0:e5:62:c1:ec:6f:19: d0:43:4b:2e:a5:2b:3b:e9:df:85:50:87:a7:84:13: ab:32:88:9f:f3:f4:d4:c5:2b:93:d4:cd:b3:4a:63: 72:ac:df:7b:2d:dd:c6:30:07:91:f0:6a:1c:af:db: 1e:91:af:e8:83:f7:a0:14:b7:60:39:00:6e:92:55: bd:a3:24:22:69:6e:b7:af:a5:2e:76:c5:66:b9:a9: 46:36:ab:75:30:d9:5a:8c:b8:f8:f3:34:eb:9d:b4: 4f:d0:c8:ad:3a:bc:4c:4b:7b:e9:e8:3b:d5:25:cf: 90:fd:44:07:bd:70:9a:2c:b8:13:9a:d3:46:bc:b5: e9:2d:32:6b:cd:25:4e:ff:d0:6f:c5:d3:d6:95:67: a4:a5:47:42:7a:f7:7e:d5:21:6f:09:2a:76:e2:08: 54:51:44:c0:7b:6f:9c:e4:e4:2f:4e:54:45:ee:0a: d5:75:10:83:52:1e:3e:c3:36:bf:01:b4:28:7f:a7: c4:ae:18:9c:64:cb:32:41:62:bd:1c:f0:68:2b:e1: be:25:d4:f7:50:1c:3b:46:8e:d2:52:e8:f0:ed:4e: 22:1e:fc:89:2f:c2:83:57:4f:75:a5:bf:92:c3:4f: 31:96:e9:c2:7b:97:05:9a:e8:1f:4a:b8:7f:29:48: 0e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:41:36:5C:DA:59:23:02:9C:5F:B8:D5:AD:68:19:04:AF:4F:51:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5f10326-ab82-4d73-a49a-9b759e8f8f93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.56.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:e9:de:57:8e:70:7e:2b:2d:11:34:f5:c2:52:ad:bb:25:7a: e1:c1:d6:cb:79:93:08:08:cc:8e:84:d7:aa:13:be:06:9f:ea: e3:76:a1:40:73:16:58:b2:8d:e3:43:aa:cc:40:57:ea:52:59: 49:0e:aa:67:51:37:df:74:48:0b:11:87:7e:e6:25:0d:e0:77: b4:68:79:9e:76:2a:8b:68:cf:b9:eb:34:5e:66:3d:5a:28:cc: 66:ab:2c:13:34:e4:ab:e0:e1:9d:84:77:be:06:ba:64:83:18: 6e:a7:17:e6:e7:49:e2:a3:a0:97:97:96:53:ce:bf:b3:87:2a: fe:62:b5:a7:29:f6:f3:0c:a4:ea:fe:b7:b1:1e:28:a6:cc:85: bf:14:23:ea:af:23:e4:7a:1c:f8:c5:24:d6:65:03:c3:d4:d9: e3:b1:bc:83:82:40:9b:27:bd:b8:15:81:40:cf:d4:6a:b9:0e: 11:1d:cb:23:cd:9f:4f:cd:06:cd:d1:f5:aa:a2:a5:ea:74:77: c7:e0:77:0f:58:34:35:58:38:4a:79:c2:37:e7:16:9a:e9:ac: 78:99:5c:d7:04:8c:6a:28:21:8e:a2:a4:c6:c1:8c:68:15:b2: d2:07:65:b4:82:48:e2:ab:e8:d3:6d:80:db:ad:5b:fd:d6:63: 52:18:b6:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJthqVLwRJxCBvigYV+JQPJJxkucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA1MjA4WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzRjYTJhZWMzZTIzNWFiNjNmYjljYzUxOTM5OTVlZTA1 OGZiOGM3MmVlODlmMjkyNmQ2Mjg4Njk0MDQ1NTkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw7GrEPnpRwOViwexvGdBDSy6lKzvp34VQh6eEE6syiJ/z 9NTFK5PUzbNKY3Ks33st3cYwB5Hwahyv2x6Rr+iD96AUt2A5AG6SVb2jJCJpbrev pS52xWa5qUY2q3Uw2VqMuPjzNOudtE/QyK06vExLe+noO9Ulz5D9RAe9cJosuBOa 00a8tektMmvNJU7/0G/F09aVZ6SlR0J6937VIW8JKnbiCFRRRMB7b5zk5C9OVEXu CtV1EINSHj7DNr8BtCh/p8SuGJxkyzJBYr0c8Ggr4b4l1PdQHDtGjtJS6PDtTiIe /IkvwoNXT3Wlv5LDTzGW6cJ7lwWa6B9KuH8pSA6tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl0E2XNpZIwKcX7jVrWgZBK9PUcswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1ZjEwMzI2LWFiODItNGQ3My1hNDlhLTliNzU5ZThmOGY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgADgwDQYJKoZIhvcNAQELBQADggEBAD7p3leOcH4rLRE09cJSrbsleuHB 1st5kwgIzI6E16oTvgaf6uN2oUBzFliyjeNDqsxAV+pSWUkOqmdRN990SAsRh37m JQ3gd7RoeZ52Kotoz7nrNF5mPVoozGarLBM05Kvg4Z2Ed74GumSDGG6nF+bnSeKj oJeXllPOv7OHKv5itacp9vMMpOr+t7EeKKbMhb8UI+qvI+R6HPjFJNZlA8PU2eOx vIOCQJsnvbgVgUDP1Gq5DhEdyyPNn0/NBs3R9aqipep0d8fgdw9YNDVYOEp5wjfn FprprHiZXNcEjGooIY6ipMbBjGgVstIHZbSCSOKr6NNtgNutW/3WY1IYtsI= -----END CERTIFICATE-----Generated at Wed Apr 16 16:46:58 2025 by rpki-client