$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa File: 55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa (raw, json) Hash identifier: lzfKwNp70AhzdxbV+oOzYlU0f8RJerZW8kquvOmhWlo= Subject key identifier: AA:E5:C8:E6:81:36:48:7A:E2:14:C3:13:99:11:BF:62:75:07:C3:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27C4409D4C43B09269DB39E9F475D7255AB25F8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa Signing time: Fri 25 Apr 2025 00:51:05 +0000 ROA not before: Fri 25 Apr 2025 00:51:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.112.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c4:40:9d:4c:43:b0:92:69:db:39:e9:f4:75:d7:25:5a:b2:5f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:51:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=13baba91a16c67ffb2d3d4d287b0567a04b17eb6c79c10d97750ec8011e2eec7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ab:07:6f:a6:5f:6d:db:d4:7b:3b:8b:d4:76: f4:03:dc:2a:cf:04:b8:49:a2:8d:53:94:28:0f:c5: 90:6c:f2:cd:63:82:1e:61:af:8e:79:97:dc:42:39: 8d:98:43:a5:1a:d7:33:90:81:a9:73:f9:58:f5:76: ed:fa:cb:5c:12:f6:b7:91:d3:5f:e6:a3:d4:2b:bc: 33:b7:f7:09:cf:ad:dc:35:56:d4:04:53:00:01:4f: 94:33:29:7f:18:bd:38:b6:ba:92:0e:e3:d4:ba:b5: 76:97:26:42:ab:c5:84:3c:69:d1:aa:dc:c2:31:05: 8e:f0:e7:fa:4f:57:9e:56:39:7f:a9:3f:6f:1c:4a: 0a:66:42:fd:c0:26:e9:54:97:74:f4:3c:eb:b3:bd: 21:ab:58:d1:ae:9b:75:1a:78:b0:0f:2d:ca:e9:8a: 43:c6:87:64:9d:9c:c2:8d:be:23:e5:52:9d:bd:e2: d8:fb:63:17:09:3a:fc:4f:e1:7b:55:fd:af:cc:48: 99:66:9e:02:d2:8e:84:9d:01:7a:13:25:b9:59:8c: 6f:d0:88:58:5d:e1:f1:f9:ac:41:b9:4d:05:26:88: ce:c0:22:6f:f3:f2:83:41:08:8d:57:fa:24:bd:a9: 52:98:7e:49:01:77:ec:e0:fd:9e:14:26:2e:e1:63: 7e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E5:C8:E6:81:36:48:7A:E2:14:C3:13:99:11:BF:62:75:07:C3:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.112.32.0/19 Signature Algorithm: sha256WithRSAEncryption 51:eb:bb:29:8a:06:ea:22:19:c0:da:d1:01:6e:c8:b5:cd:5f: ee:ba:28:10:27:8e:fb:47:31:fd:96:06:8f:ac:33:f6:fb:8c: ed:b1:94:71:77:83:98:29:8f:41:4f:66:c3:61:94:0e:d1:74: 14:94:d4:d0:d8:34:f1:81:0b:97:ac:af:4e:24:8c:db:6b:2f: cd:08:09:c4:19:1e:a7:6c:e6:4c:83:cd:c9:5c:1a:e8:8a:3c: 69:6a:69:0f:d5:e3:36:e4:9e:72:7c:96:68:35:f3:34:5c:5a: d7:17:95:ab:70:63:b9:5b:ea:fc:32:ef:b7:6d:82:f9:99:e2: 2f:ec:f7:14:91:0c:61:6a:ae:3b:2d:13:8b:59:6c:cb:39:d9: 05:66:97:74:53:ed:e2:f5:b1:4b:a8:ff:52:79:81:f3:81:8d: fb:df:a7:09:37:9a:08:58:c3:0c:ea:9b:3e:78:6c:e6:e2:29: 7c:4e:fe:86:ca:1b:77:29:08:85:c3:fe:76:5d:3e:bc:f4:41: 3b:7d:8e:b1:e0:68:ef:76:a6:a2:46:6c:e9:f7:46:3e:4e:03: 53:a5:76:ce:20:2f:76:25:38:e0:e1:ce:e1:1f:cb:6d:fa:a2: 56:21:d1:24:03:58:a6:8c:8c:3a:a1:f3:a6:ba:04:fc:d8:d9: 68:54:24:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ8RAnUxDsJJp2znp9HXXJVqyX44wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA1MTA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2JhYmE5MWExNmM2N2ZmYjJkM2Q0ZDI4N2IwNTY3YTA0 YjE3ZWI2Yzc5YzEwZDk3NzUwZWM4MDExZTJlZWM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzqwdvpl9t29R7O4vUdvQD3CrPBLhJoo1TlCgPxZBs8s1j gh5hr455l9xCOY2YQ6Ua1zOQgalz+Vj1du36y1wS9reR01/mo9QrvDO39wnPrdw1 VtQEUwABT5QzKX8YvTi2upIO49S6tXaXJkKrxYQ8adGq3MIxBY7w5/pPV55WOX+p P28cSgpmQv3AJulUl3T0POuzvSGrWNGum3UaeLAPLcrpikPGh2SdnMKNviPlUp29 4tj7YxcJOvxP4XtV/a/MSJlmngLSjoSdAXoTJblZjG/QiFhd4fH5rEG5TQUmiM7A Im/z8oNBCI1X+iS9qVKYfkkBd+zg/Z4UJi7hY34lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUquXI5oE2SHriFMMTmRG/YnUHw2AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1ZmUyZjY4LTUyNjMtNDFlMy1iZGRmLTk5NjFmMGM1YjBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2cCAwDQYJKoZIhvcNAQELBQADggEBAFHruymKBuoiGcDa0QFuyLXNX+66 KBAnjvtHMf2WBo+sM/b7jO2xlHF3g5gpj0FPZsNhlA7RdBSU1NDYNPGBC5esr04k jNtrL80ICcQZHqds5kyDzclcGuiKPGlqaQ/V4zbknnJ8lmg18zRcWtcXlatwY7lb 6vwy77dtgvmZ4i/s9xSRDGFqrjstE4tZbMs52QVml3RT7eL1sUuo/1J5gfOBjfvf pwk3mghYwwzqmz54bObiKXxO/obKG3cpCIXD/nZdPrz0QTt9jrHgaO92pqJGbOn3 Rj5OA1Olds4gL3YlOODhzuEfy236olYh0SQDWKaMjDqh86a6BPzY2WhUJHY= -----END CERTIFICATE-----Generated at Sat Apr 26 16:30:22 2025 by rpki-client