$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f3cc807-8e8e-4c91-b344-9f6fe0506248.roa File: 1f3cc807-8e8e-4c91-b344-9f6fe0506248.roa (raw, json) Hash identifier: jaxP6yC/CmZxs/xDgiUlRvCV/U7FGAaXIy5pdnfpPpk= Subject key identifier: 56:51:B3:EC:E9:EE:79:85:EC:E6:57:33:2C:2C:72:B0:44:6E:CD:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BBE31A85ED53694148713E642BA7E41717A96CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f3cc807-8e8e-4c91-b344-9f6fe0506248.roa Signing time: Tue 15 Apr 2025 00:41:44 +0000 ROA not before: Tue 15 Apr 2025 00:41:44 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:be:31:a8:5e:d5:36:94:14:87:13:e6:42:ba:7e:41:71:7a:96:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:41:44 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=f2471af37a68d1390d9a91fd3ea59cbb896ec55e8c718132d29641d2c88ce1fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ea:00:8e:a6:f9:5d:82:a9:b8:da:2d:33:85: 2c:fb:27:c9:9f:96:ef:91:f0:f0:a6:8f:e4:2a:8c: f0:5b:6e:e6:17:8f:2c:4a:a9:a7:67:fd:ee:54:af: fe:f7:c5:12:96:db:63:42:98:b2:a5:0f:83:37:b4: bd:86:2e:a3:dd:ab:d5:6d:af:ae:9d:ed:3a:63:25: eb:a9:fc:1b:e0:83:49:c5:3f:27:c2:e2:5c:1a:3d: 09:e7:de:18:e2:a1:f4:1e:a6:43:fa:de:28:84:a4: be:1d:00:0f:47:77:3a:ce:4e:5e:fc:48:f7:24:51: c2:88:2f:f5:e0:34:e6:29:b8:ac:79:59:0e:54:0f: 5c:0d:0b:b1:32:7c:ee:3f:39:d7:89:65:49:e3:57: 71:da:14:90:6d:7b:29:37:06:03:91:58:4a:1d:51: 6d:76:f3:38:92:07:ae:9c:5c:30:2e:a9:f5:4c:8e: 6e:3d:18:79:3b:54:16:28:5f:76:7c:a5:c2:e3:78: 42:8c:e0:e4:83:56:ab:f9:c3:59:19:97:be:ce:66: 1d:e0:42:bc:df:ba:b1:36:09:66:14:e2:3f:32:c4: fe:3c:7e:fc:5b:35:42:6f:e0:d4:a5:d3:cc:cf:2e: c8:5f:e8:95:18:38:49:86:de:c9:d3:0e:de:02:22: 1d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:51:B3:EC:E9:EE:79:85:EC:E6:57:33:2C:2C:72:B0:44:6E:CD:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f3cc807-8e8e-4c91-b344-9f6fe0506248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.66.0/24 Signature Algorithm: sha256WithRSAEncryption a0:69:f0:f4:89:6c:ac:f7:83:1d:f5:3d:11:35:bd:0d:05:e5: a9:9c:85:e9:c7:46:9c:64:82:f1:81:a6:ef:46:be:35:8b:e3: 0d:da:cf:2a:d8:f9:79:06:75:27:e3:ab:80:c7:53:93:c3:ed: 56:ad:c4:78:ef:1f:c9:81:52:6a:56:ec:4f:84:66:55:fb:cb: a1:da:6d:02:5f:35:0d:ca:22:ba:5d:6d:b6:05:65:a3:e3:04: c9:0e:67:9b:e8:6f:3a:31:52:00:14:e0:c5:82:0a:16:23:84: 3a:2b:2b:a4:8f:46:6d:e1:89:3b:1d:78:f2:51:1d:cc:34:b9: fe:c0:14:fd:09:58:d5:ca:50:aa:a9:bd:a3:93:72:55:93:9d: 9c:e5:8a:76:2d:ee:c4:19:90:9c:44:85:4b:fe:db:a4:a0:52: d4:b4:af:80:bf:cc:10:2e:ca:07:cf:e9:b1:17:cf:e9:56:26: 70:7b:71:71:50:05:ed:42:79:db:ba:d4:05:47:a2:cc:37:97: a6:45:16:8d:6f:d1:47:ca:52:ec:2a:05:01:c4:89:5d:3b:3e: 50:bf:5f:c5:f6:3a:ba:2d:01:67:bc:7c:96:98:db:c8:05:28: bc:1a:9d:37:d0:84:5a:bf:08:77:b2:18:fc:12:df:71:76:e8: 9d:65:a0:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG74xqF7VNpQUhxPmQrp+QXF6lswwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDA0MTQ0WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjQ3MWFmMzdhNjhkMTM5MGQ5YTkxZmQzZWE1OWNiYjg5 NmVjNTVlOGM3MTgxMzJkMjk2NDFkMmM4OGNlMWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ6gCOpvldgqm42i0zhSz7J8mflu+R8PCmj+QqjPBbbuYX jyxKqadn/e5Ur/73xRKW22NCmLKlD4M3tL2GLqPdq9Vtr66d7TpjJeup/Bvgg0nF PyfC4lwaPQnn3hjiofQepkP63iiEpL4dAA9HdzrOTl78SPckUcKIL/XgNOYpuKx5 WQ5UD1wNC7EyfO4/OdeJZUnjV3HaFJBteyk3BgORWEodUW128ziSB66cXDAuqfVM jm49GHk7VBYoX3Z8pcLjeEKM4OSDVqv5w1kZl77OZh3gQrzfurE2CWYU4j8yxP48 fvxbNUJv4NSl08zPLshf6JUYOEmG3snTDt4CIh1ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVlGz7OnueYXs5lczLCxysERuzWAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmM2NjODA3LThlOGUtNGM5MS1iMzQ0LTlmNmZlMDUwNjI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl0IwDQYJKoZIhvcNAQELBQADggEBAKBp8PSJbKz3gx31PRE1vQ0F5amc henHRpxkgvGBpu9GvjWL4w3azyrY+XkGdSfjq4DHU5PD7VatxHjvH8mBUmpW7E+E ZlX7y6HabQJfNQ3KIrpdbbYFZaPjBMkOZ5vobzoxUgAU4MWCChYjhDorK6SPRm3h iTsdePJRHcw0uf7AFP0JWNXKUKqpvaOTclWTnZzlinYt7sQZkJxEhUv+26SgUtS0 r4C/zBAuygfP6bEXz+lWJnB7cXFQBe1Cedu61AVHosw3l6ZFFo1v0UfKUuwqBQHE iV07PlC/X8X2OrotAWe8fJaY28gFKLwanTfQhFq/CHeyGPwS33F26J1loP4= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:50 2025 by rpki-client