$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa File: 51b3f021-a7b7-49f6-8173-528075001f81.roa (raw, json) Hash identifier: FLfuZyuAwBpto1YNHvJXlhxUe1rqzRXwyDM8FSO45Dc= Subject key identifier: 83:2C:7C:DD:23:BB:E5:05:9E:70:3C:E0:97:FF:50:58:80:6B:8C:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1942C11245827BBB3EA77AB23632E868172EE41E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa Signing time: Wed 23 Apr 2025 00:11:16 +0000 ROA not before: Wed 23 Apr 2025 00:11:16 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:42:c1:12:45:82:7b:bb:3e:a7:7a:b2:36:32:e8:68:17:2e:e4:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:11:16 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=89d51202da45110d7193cc0acd9e414cad532dfd21821351577d9dc3bad116d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cd:78:c7:fd:c1:36:c8:f7:10:60:cc:48:8d: 0e:05:a4:63:53:26:bb:2c:a3:57:50:84:83:75:07: ca:44:51:83:eb:2c:00:66:0e:4a:bd:ce:cc:a6:ac: 5a:e9:0d:af:cc:03:1f:ec:1e:45:f2:9a:fc:93:95: e8:08:00:f8:1f:70:89:86:fa:55:07:54:10:86:9d: 72:74:37:bf:dc:38:bd:83:9f:8d:b7:7c:79:e1:42: ed:f0:38:d5:53:1a:80:3b:4f:86:b3:6a:d0:d4:05: 18:d1:39:f0:4f:17:12:06:dd:ba:31:67:ef:4f:6e: dc:76:e0:60:54:20:d2:81:13:b0:18:20:a9:cb:e9: 67:e5:5c:b5:b0:cc:fe:a1:05:27:61:5a:dc:e6:cc: 15:46:69:f1:e2:f2:42:ff:7c:90:6f:cf:a7:41:8b: 85:5f:10:a2:e1:a8:b6:a4:d7:91:00:d9:0d:91:aa: e4:e8:41:19:75:48:9b:f6:f0:ee:f7:57:d7:7d:18: ac:2f:63:d1:80:8b:e7:09:4e:47:0c:db:7a:e0:49: ca:0f:d5:63:81:14:23:ba:60:03:a8:65:39:8d:7d: 6f:5f:37:3c:d8:6c:9d:03:52:a7:28:2f:d0:f6:01: 7d:de:88:66:13:49:1c:c1:20:14:c7:28:fa:c0:7a: b2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2C:7C:DD:23:BB:E5:05:9E:70:3C:E0:97:FF:50:58:80:6B:8C:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.80.0/21 Signature Algorithm: sha256WithRSAEncryption ae:85:26:a5:34:b2:2a:b1:f6:25:6a:9f:14:ba:53:da:2e:da: e4:b9:c9:6a:4b:76:0f:98:90:f5:c1:42:e3:05:5e:e1:9b:71: 6f:fe:02:3f:1f:6b:8f:c8:0c:aa:50:b6:7e:ab:60:36:f1:87: 1d:d4:ba:74:48:2a:8e:c8:86:b5:d5:14:4c:b7:f7:db:41:c6: a1:45:80:b5:40:62:20:3b:5c:27:3e:e7:b7:7f:f8:a6:04:bd: ea:93:a3:c8:d3:0d:47:65:cb:d1:3f:b8:64:a9:f7:16:11:db: 80:76:1a:4e:11:8d:be:d7:4c:17:9d:08:8a:69:08:00:13:76: 2b:f8:2a:4c:4b:4e:1d:d6:2c:3f:5f:51:37:72:0c:4a:49:d1: db:8e:96:43:80:aa:09:23:59:f7:6b:22:dd:80:2b:f7:b3:57: 15:e0:76:4b:ce:85:59:f6:d4:94:76:0e:cf:b4:58:b8:45:27: d3:81:21:74:78:cc:a2:1a:b6:0d:99:79:08:a8:ee:3f:1e:72: 94:2f:c6:8f:97:79:75:7b:45:1d:2d:88:74:f6:05:40:1d:e3: 0e:f6:c6:d2:3c:09:ee:f3:f7:1c:f3:fa:75:30:d5:c6:cf:40: 5d:bb:6a:1f:50:50:62:4d:75:8d:ed:94:34:31:73:0f:f3:e4: e2:94:bc:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGULBEkWCe7s+p3qyNjLoaBcu5B4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAxMTE2WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWQ1MTIwMmRhNDUxMTBkNzE5M2NjMGFjZDllNDE0Y2Fk NTMyZGZkMjE4MjEzNTE1NzdkOWRjM2JhZDExNmQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCizXjH/cE2yPcQYMxIjQ4FpGNTJrsso1dQhIN1B8pEUYPr LABmDkq9zsymrFrpDa/MAx/sHkXymvyTlegIAPgfcImG+lUHVBCGnXJ0N7/cOL2D n423fHnhQu3wONVTGoA7T4azatDUBRjROfBPFxIG3boxZ+9Pbtx24GBUINKBE7AY IKnL6WflXLWwzP6hBSdhWtzmzBVGafHi8kL/fJBvz6dBi4VfEKLhqLak15EA2Q2R quToQRl1SJv28O73V9d9GKwvY9GAi+cJTkcM23rgScoP1WOBFCO6YAOoZTmNfW9f NzzYbJ0DUqcoL9D2AX3eiGYTSRzBIBTHKPrAerJHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgyx83SO75QWecDzgl/9QWIBrjBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxYjNmMDIxLWE3YjctNDlmNi04MTczLTUyODA3NTAwMWY4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFVAwDQYJKoZIhvcNAQELBQADggEBAK6FJqU0siqx9iVqnxS6U9ou2uS5 yWpLdg+YkPXBQuMFXuGbcW/+Aj8fa4/IDKpQtn6rYDbxhx3UunRIKo7IhrXVFEy3 99tBxqFFgLVAYiA7XCc+57d/+KYEveqTo8jTDUdly9E/uGSp9xYR24B2Gk4Rjb7X TBedCIppCAATdiv4KkxLTh3WLD9fUTdyDEpJ0duOlkOAqgkjWfdrIt2AK/ezVxXg dkvOhVn21JR2Ds+0WLhFJ9OBIXR4zKIatg2ZeQio7j8ecpQvxo+XeXV7RR0tiHT2 BUAd4w72xtI8Ce7z9xzz+nUw1cbPQF27ah9QUGJNdY3tlDQxcw/z5OKUvAM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:23:55 2025 by rpki-client