$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa File: 1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa (raw, json) Hash identifier: 6DVKYM/RJz9qJt17db1RVSSNtXmiI5bgGHcyIb09+BI= Subject key identifier: 70:2D:48:96:66:53:DB:FB:E1:8A:6E:29:DA:55:8D:E0:2E:F6:42:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 625937924859D01A94F6EDD417CD01AF8ACED285 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa Signing time: Sat 26 Apr 2025 00:00:17 +0000 ROA not before: Sat 26 Apr 2025 00:00:17 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 26982 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:59:37:92:48:59:d0:1a:94:f6:ed:d4:17:cd:01:af:8a:ce:d2:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:17 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=113b1858e8275e6b179cd6354cf84c72204a181d2d33d762e63f956ecf2364c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c8:ca:a6:8f:ce:1c:a6:bc:7d:80:b5:6d:fc: 60:ff:fb:fd:51:fd:9f:89:87:e0:b4:b1:62:27:de: ba:49:92:0c:89:33:e1:fd:26:c9:53:cb:e4:13:0b: 0d:73:56:3a:45:1a:66:3a:01:3c:ea:b3:a8:9c:c3: cd:da:38:7e:5c:84:85:98:37:c8:68:a5:94:1d:a4: 77:d3:44:d5:cc:7a:3d:07:36:82:64:cf:e3:a8:76: 78:68:3a:cc:30:14:19:cd:a1:ee:66:ed:a3:f2:99: 3c:34:a9:97:9c:3e:7f:1d:2a:a0:55:c8:69:c5:ea: 6d:48:d1:34:4c:66:a9:f5:9a:99:87:ad:c9:02:83: 70:4c:9d:f4:92:07:a9:ef:12:66:ab:80:eb:44:c5: b6:f0:6d:08:98:bd:f3:8f:51:ac:a4:0e:4b:4e:a6: e6:a2:b9:b6:9b:f1:92:d8:01:a4:2d:e7:3c:b2:39: f1:90:ea:5f:a3:20:db:ab:23:61:93:80:20:6b:5c: 7b:0e:f5:dc:af:25:f6:bb:82:40:5f:a8:fd:b8:e1: 89:0d:ae:78:b1:63:26:f5:db:cc:32:c4:b4:b1:25: 94:4a:4e:d9:5c:13:f9:0a:6d:73:06:86:19:86:0e: 70:e4:b7:a3:f2:d2:1f:2d:d6:36:a5:3b:c2:0c:db: e9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2D:48:96:66:53:DB:FB:E1:8A:6E:29:DA:55:8D:E0:2E:F6:42:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:51:ae:16:b7:7f:0d:91:e0:bb:10:7a:7b:3c:d5:94:1d:47: 92:01:84:14:a9:44:fb:7f:eb:b8:c7:38:58:ec:52:27:58:ca: 73:8d:53:e3:99:22:cc:e0:f7:bf:f3:76:30:1c:07:68:0b:af: 27:65:53:62:cc:84:68:18:ff:d4:1b:e4:b0:0e:dc:29:e5:2c: 26:69:1f:b2:2c:5f:49:fe:bd:34:28:5f:15:42:0c:0c:d3:94: 7c:9d:cd:ee:ea:b9:22:d2:fc:7c:bb:0e:ed:24:a3:71:85:e2: 3c:39:97:ce:9f:3c:d0:1c:1c:ba:30:44:e8:2e:77:08:d1:ef: 88:d0:18:fb:6a:dc:cb:3b:a4:55:a3:4d:69:af:0e:4a:16:df: 4b:a8:09:b2:20:27:b2:4c:20:b0:36:94:77:9e:73:1d:49:a9: 37:6e:b6:f9:9c:ca:6c:7c:e5:56:72:fb:2f:61:42:ae:8b:55: 67:19:26:b8:5b:0f:15:5e:77:71:e6:e0:c2:bd:98:c1:d2:4a: 48:25:a9:60:e1:a0:9f:fc:43:38:dc:94:0c:22:b8:ec:80:6d: 4e:ac:95:a8:fc:30:88:ab:b1:0d:cf:a2:27:03:92:6c:68:f5: 38:c3:12:cf:1a:41:57:4f:e9:eb:b4:7d:46:38:e3:3c:63:c3: 49:ca:ba:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYlk3kkhZ0BqU9u3UF80Br4rO0oUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI2MDAwMDE3WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTNiMTg1OGU4Mjc1ZTZiMTc5Y2Q2MzU0Y2Y4NGM3MjIw NGExODFkMmQzM2Q3NjJlNjNmOTU2ZWNmMjM2NGMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxyMqmj84cprx9gLVt/GD/+/1R/Z+Jh+C0sWIn3rpJkgyJ M+H9JslTy+QTCw1zVjpFGmY6ATzqs6icw83aOH5chIWYN8hopZQdpHfTRNXMej0H NoJkz+OodnhoOswwFBnNoe5m7aPymTw0qZecPn8dKqBVyGnF6m1I0TRMZqn1mpmH rckCg3BMnfSSB6nvEmargOtExbbwbQiYvfOPUaykDktOpuaiubab8ZLYAaQt5zyy OfGQ6l+jINurI2GTgCBrXHsO9dyvJfa7gkBfqP244YkNrnixYyb128wyxLSxJZRK TtlcE/kKbXMGhhmGDnDkt6Py0h8t1jalO8IM2+kVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcC1IlmZT2/vhim4p2lWN4C72QgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhZGY0ZDlkLWVkYTktNGZlOC04ZjkzLTRiNmMwNWU4YWJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAB1Rrha3fw2R4LsQens81ZQdR5IB hBSpRPt/67jHOFjsUidYynONU+OZIszg97/zdjAcB2gLrydlU2LMhGgY/9Qb5LAO 3CnlLCZpH7IsX0n+vTQoXxVCDAzTlHydze7quSLS/Hy7Du0ko3GF4jw5l86fPNAc HLowROgudwjR74jQGPtq3Ms7pFWjTWmvDkoW30uoCbIgJ7JMILA2lHeecx1JqTdu tvmcymx85VZy+y9hQq6LVWcZJrhbDxVed3Hm4MK9mMHSSkglqWDhoJ/8QzjclAwi uOyAbU6slaj8MIirsQ3PoicDkmxo9TjDEs8aQVdP6eu0fUY44zxjw0nKum8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:57:56 2025 by rpki-client