$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/217379e1-3f0b-43c9-b963-bb79bf38c07b.roa File: 217379e1-3f0b-43c9-b963-bb79bf38c07b.roa (raw, json) Hash identifier: XjvIuA7ic3F2mH1fPThLjO9QuH0Nab0u6PQ+RZBxyGs= Subject key identifier: D4:CA:EE:35:93:D0:47:EC:4F:AB:16:9C:E0:55:A7:80:5D:E3:69:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3844C7CD2F0E8CA84ADFC01A33C2177012300B10 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/217379e1-3f0b-43c9-b963-bb79bf38c07b.roa Signing time: Sat 26 Apr 2025 00:01:44 +0000 ROA not before: Sat 26 Apr 2025 00:01:44 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.125.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:44:c7:cd:2f:0e:8c:a8:4a:df:c0:1a:33:c2:17:70:12:30:0b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:01:44 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=658b6008155ac10fd5e695e6018031ac43a7f8737603745006c033b5bb4d248f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:a1:dd:f8:03:76:30:c1:d8:0e:0e:03:af: 26:2f:81:82:64:46:28:28:f4:b9:6c:55:73:db:70: 05:7e:db:37:02:3a:bf:c3:94:4d:ff:cc:c3:c1:b1: 81:42:41:f1:8e:5e:6c:90:a5:3e:0a:89:bc:d4:7d: 60:d4:af:db:c5:64:cb:86:4c:38:9e:b7:83:c3:23: 47:38:b2:31:2b:ec:b9:6b:68:54:b1:6c:11:ed:2a: 4c:bb:01:21:8f:83:8f:d5:e6:75:93:67:42:ab:fe: c4:11:9c:8c:c7:0e:b6:e5:fd:f3:60:38:1a:25:e1: a5:d7:24:9d:b1:0e:41:bc:8e:36:a6:5d:f5:53:01: e2:34:1f:1d:95:3e:4b:d7:1d:36:2a:d2:57:46:7e: 6c:ac:b9:b2:cf:cc:db:fb:42:14:44:af:58:0f:9a: e4:cb:69:a9:f6:fa:78:1a:38:c7:0f:46:12:80:44: 99:f9:96:58:be:ce:50:7d:cf:94:27:3d:33:3c:1f: 54:86:f9:1a:f7:42:28:03:88:f8:a7:7a:60:fc:7c: 71:d1:32:2c:81:02:81:50:51:21:a1:2e:14:1e:48: c4:6f:f3:19:4e:ce:63:38:65:f4:ad:a7:68:3b:e1: 02:76:68:c7:a3:60:5b:7c:0e:4c:bc:b5:02:23:30: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CA:EE:35:93:D0:47:EC:4F:AB:16:9C:E0:55:A7:80:5D:E3:69:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/217379e1-3f0b-43c9-b963-bb79bf38c07b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:f5:6d:b0:c3:04:c6:f5:c2:f8:42:65:3e:50:20:16:e3:94: 7a:24:ff:b3:bf:79:6c:23:d0:64:99:f8:56:6a:56:13:f5:e6: ec:45:62:26:df:53:eb:8e:7a:d5:f9:94:73:de:44:77:97:ec: c7:6f:32:27:18:07:a9:90:68:6c:6f:6e:c6:2b:4b:69:ce:f9: 47:51:ee:66:2d:bd:fc:eb:26:6e:3f:61:90:a0:ac:d2:53:ef: 1c:6a:8b:90:c5:ed:42:cb:aa:1d:85:f1:1f:e2:71:91:ce:93: 31:19:f1:3e:b3:7b:18:99:a1:56:55:a8:ca:bb:b0:1a:5f:c8: d2:00:9e:45:4f:02:1d:52:df:38:72:84:4c:5c:54:62:36:87: ed:07:45:ff:eb:f8:3b:35:fc:1d:1a:09:60:d1:85:7b:36:68: 43:71:91:a9:a8:e2:1b:2b:0b:50:db:d2:3b:d2:af:c3:34:4d: 2f:86:fd:22:d5:29:73:b7:6a:c8:fc:69:d4:44:d3:8f:f3:f9: 59:dd:30:94:d1:3b:f2:12:1d:1a:bd:1e:74:12:bf:81:ec:6b: f8:dc:e0:12:b7:e6:35:7d:51:35:ac:ab:ba:d1:df:57:47:98: 73:3b:89:70:a1:22:a3:dc:65:b6:65:93:61:69:aa:0a:93:3d: a8:68:b7:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOETHzS8OjKhK38AaM8IXcBIwCxAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI2MDAwMTQ0WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NThiNjAwODE1NWFjMTBmZDVlNjk1ZTYwMTgwMzFhYzQz YTdmODczNzYwMzc0NTAwNmMwMzNiNWJiNGQyNDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39qHd+AN2MMHYDg4DryYvgYJkRigo9LlsVXPbcAV+2zcC Or/DlE3/zMPBsYFCQfGOXmyQpT4KibzUfWDUr9vFZMuGTDiet4PDI0c4sjEr7Llr aFSxbBHtKky7ASGPg4/V5nWTZ0Kr/sQRnIzHDrbl/fNgOBol4aXXJJ2xDkG8jjam XfVTAeI0Hx2VPkvXHTYq0ldGfmysubLPzNv7QhREr1gPmuTLaan2+ngaOMcPRhKA RJn5lli+zlB9z5QnPTM8H1SG+Rr3QigDiPinemD8fHHRMiyBAoFQUSGhLhQeSMRv 8xlOzmM4ZfStp2g74QJ2aMejYFt8Dky8tQIjMGDFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1MruNZPQR+xPqxac4FWngF3jafcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxNzM3OWUxLTNmMGItNDNjOS1iOTYzLWJiNzliZjM4YzA3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQfTANBgkqhkiG9w0BAQsFAAOCAQEAi/VtsMMExvXC+EJlPlAgFuOUeiT/ s795bCPQZJn4VmpWE/Xm7EViJt9T64561fmUc95Ed5fsx28yJxgHqZBobG9uxitL ac75R1HuZi29/Osmbj9hkKCs0lPvHGqLkMXtQsuqHYXxH+Jxkc6TMRnxPrN7GJmh VlWoyruwGl/I0gCeRU8CHVLfOHKETFxUYjaH7QdF/+v4OzX8HRoJYNGFezZoQ3GR qajiGysLUNvSO9KvwzRNL4b9ItUpc7dqyPxp1ETTj/P5Wd0wlNE78hIdGr0edBK/ gexr+NzgErfmNX1RNayrutHfV0eYczuJcKEio9xltmWTYWmqCpM9qGi3tA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:19 2025 by rpki-client