$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa File: 2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa (raw, json) Hash identifier: ae/rqQAV00z7NTRwKmtT9wEe04Inrn0a41PpNz11Ps8= Subject key identifier: 4E:9E:09:66:BF:65:D2:E4:21:0D:2F:AC:57:E2:E0:60:A1:5F:5D:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06876256AC6FE4843E9B16EF56A98EFB8A90AE0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa Signing time: Tue 22 Apr 2025 00:00:48 +0000 ROA not before: Tue 22 Apr 2025 00:00:48 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:87:62:56:ac:6f:e4:84:3e:9b:16:ef:56:a9:8e:fb:8a:90:ae:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:00:48 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=9a762eff9284a81dca4042ab645d1d46f1f595c8b449b7acbea82188d22b10fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:53:45:cc:f7:73:ce:34:42:90:98:89:ab:9e: d4:f9:af:ae:0a:97:0b:f9:90:32:fe:89:fa:59:80: 41:9d:ac:75:c1:ba:d7:2a:e9:0c:e9:e1:67:a3:d7: c5:82:78:0e:ad:1b:df:81:3b:a4:4b:2f:64:6d:79: ea:10:20:8b:f1:25:de:1a:61:6f:a8:59:9a:2b:f8: bf:4c:8a:b9:e6:e5:70:62:26:1f:5b:94:7d:9b:0d: d1:31:c5:c5:41:f8:54:c1:2b:8f:68:27:f1:62:0e: 8c:70:83:cd:bb:8f:1a:d9:65:b9:31:9f:86:22:04: 6f:30:54:84:bd:ff:c1:e1:f6:b9:a4:f9:9a:68:2c: 0c:41:cf:5f:58:ed:30:7b:2b:6e:63:bf:68:ce:b9: cb:10:3e:75:b1:f1:fa:bf:38:c9:e4:2f:b6:83:65: 37:03:82:44:10:79:c7:f8:be:01:48:a4:b3:6b:c1: 85:c6:82:30:52:86:1a:21:4f:e3:c4:06:ec:ea:37: f4:f4:73:e8:44:a4:50:8d:5a:b2:c0:bb:d8:92:79: ba:74:a6:c4:de:33:75:d7:c0:77:10:d1:97:d3:ec: 57:81:5a:8d:a3:20:c7:aa:55:1b:27:d5:9d:03:d0: 6d:b6:60:2e:e0:83:6e:b9:b8:66:af:c3:67:1f:f9: 6f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9E:09:66:BF:65:D2:E4:21:0D:2F:AC:57:E2:E0:60:A1:5F:5D:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.4.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:b5:ad:d4:db:57:1c:ad:02:64:f5:b9:96:12:d5:c1:5d:fb: 31:c6:72:d9:23:40:04:a7:2d:a0:2f:6e:45:68:a0:95:75:54: e0:f1:bf:d3:a8:7c:3c:89:03:ef:1a:28:63:0e:c8:a2:83:5d: ff:07:ea:f7:5e:b1:b5:59:19:6f:7e:59:ac:a3:f6:07:2f:25: 4f:af:33:d7:86:52:c9:ff:4b:6b:34:73:9d:05:d9:57:fa:ec: 3e:ee:9a:d3:51:b1:bf:b9:70:bf:0b:0f:f5:2f:bc:32:72:29: a5:04:26:89:94:c3:be:ea:6d:ab:fd:4d:b3:18:19:cd:cb:f3: dc:a1:6c:d4:9b:f9:d7:b1:6f:a9:dc:dd:ee:40:a1:5f:a2:95: d6:01:3a:41:52:ed:ff:ec:dd:2f:58:43:59:52:60:c1:60:13: 70:30:10:83:f8:5b:69:a6:42:10:16:50:9f:4e:5b:03:31:87: e0:97:5a:2e:6d:1b:cb:2f:15:78:dc:63:4a:94:a9:01:33:bd: 55:76:6a:87:f8:4d:da:63:77:5b:f7:be:fe:05:bc:04:fb:e1: c9:0e:8c:0c:f7:c0:2a:f5:bc:fc:ef:36:07:94:2f:70:4c:dd: 1f:aa:73:a4:3f:ff:49:58:e8:ab:ea:b4:c4:62:26:25:bb:2f: 70:b6:53:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBodiVqxv5IQ+mxbvVqmO+4qQrgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMDQ4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTc2MmVmZjkyODRhODFkY2E0MDQyYWI2NDVkMWQ0NmYx ZjU5NWM4YjQ0OWI3YWNiZWE4MjE4OGQyMmIxMGZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVU0XM93PONEKQmImrntT5r64Klwv5kDL+ifpZgEGdrHXB utcq6Qzp4Wej18WCeA6tG9+BO6RLL2RteeoQIIvxJd4aYW+oWZor+L9Mirnm5XBi Jh9blH2bDdExxcVB+FTBK49oJ/FiDoxwg827jxrZZbkxn4YiBG8wVIS9/8Hh9rmk +ZpoLAxBz19Y7TB7K25jv2jOucsQPnWx8fq/OMnkL7aDZTcDgkQQecf4vgFIpLNr wYXGgjBShhohT+PEBuzqN/T0c+hEpFCNWrLAu9iSebp0psTeM3XXwHcQ0ZfT7FeB Wo2jIMeqVRsn1Z0D0G22YC7gg265uGavw2cf+W+pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTp4JZr9l0uQhDS+sV+LgYKFfXZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGE1YzM3LTY0MjktNDczMC04MmZiLTRhYjVjNTg5Y2Q3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKdrwQwDQYJKoZIhvcNAQELBQADggEBAC21rdTbVxytAmT1uZYS1cFd+zHG ctkjQASnLaAvbkVooJV1VODxv9OofDyJA+8aKGMOyKKDXf8H6vdesbVZGW9+Wayj 9gcvJU+vM9eGUsn/S2s0c50F2Vf67D7umtNRsb+5cL8LD/UvvDJyKaUEJomUw77q bav9TbMYGc3L89yhbNSb+dexb6nc3e5AoV+ildYBOkFS7f/s3S9YQ1lSYMFgE3Aw EIP4W2mmQhAWUJ9OWwMxh+CXWi5tG8svFXjcY0qUqQEzvVV2aof4Tdpjd1v3vv4F vAT74ckOjAz3wCr1vPzvNgeUL3BM3R+qc6Q//0lY6KvqtMRiJiW7L3C2U4s= -----END CERTIFICATE-----Generated at Sat Apr 26 18:11:12 2025 by rpki-client