$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa File: 6776af38-515d-4b33-bc1f-9f781cacf369.roa (raw, json) Hash identifier: hFlIqlMj2QbqnphNW15r5AmptIjKvv9whXhb916MZ6o= Subject key identifier: FE:3E:14:46:EF:E6:1C:11:FC:C1:F5:CC:29:15:F8:84:34:60:BB:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C1E51B80BE07DAA3B37A381802C215E85740075 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa Signing time: Wed 23 Apr 2025 00:20:24 +0000 ROA not before: Wed 23 Apr 2025 00:20:24 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:1e:51:b8:0b:e0:7d:aa:3b:37:a3:81:80:2c:21:5e:85:74:00:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:20:24 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=f1a856bc490d5414b1b5ef9041be6dc565990ee4a3200935b3433158d4d73ee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:f2:d6:e8:d9:2c:78:0a:51:2c:68:2f:ab: f9:3f:9a:69:f1:ee:3b:9f:a2:b8:09:85:1d:78:37: 69:a6:bf:bb:de:b5:81:95:0c:ff:de:4d:b5:be:f1: 4d:c3:85:ab:83:77:65:3d:6f:87:1a:e1:b3:15:00: 97:1c:15:21:95:34:99:64:4b:f9:e7:6c:ea:da:61: 25:66:62:fd:96:90:95:c2:c6:41:c8:74:c0:d2:5c: bb:66:df:73:b7:3e:17:6b:34:51:9c:c7:24:00:12: f0:47:ce:6c:2f:ee:74:10:ce:8e:dc:d1:29:d5:c9: 6a:72:bc:ba:75:53:2c:76:d4:b3:ff:1c:1e:6b:dc: 11:b2:de:1f:52:12:ab:f3:1b:6c:ae:44:65:2c:68: c9:24:4e:03:c6:0a:e1:f7:49:94:67:64:73:af:d7: ed:61:db:fb:e8:e9:02:4a:30:28:6d:41:f0:e5:34: 6a:e2:b0:16:77:0e:d1:f4:8c:32:fb:04:79:14:21: ea:c4:f6:63:33:cd:16:79:ca:d9:3a:34:ab:74:e7: 5f:b3:bd:d8:ab:b1:83:45:7f:f4:30:ef:aa:d6:0d: fc:69:ba:73:51:61:17:3f:97:69:57:c6:eb:26:36: 81:fe:b1:c5:c8:5d:26:f9:91:ec:47:14:93:1f:e9: 2a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3E:14:46:EF:E6:1C:11:FC:C1:F5:CC:29:15:F8:84:34:60:BB:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.160.0/19 Signature Algorithm: sha256WithRSAEncryption 31:1b:c5:9e:a4:ac:da:4b:4b:9e:26:54:08:9c:6e:61:d7:48: da:99:11:9d:b1:40:46:ec:28:6e:83:71:1b:91:cd:bd:97:e0: 45:96:1b:18:3c:a0:15:d4:9f:75:85:22:c4:5c:cd:1f:89:4d: f6:31:66:2b:31:8d:44:3b:e2:61:2e:6e:7b:4b:f2:1f:9d:f0: a8:cf:11:6b:64:39:54:9f:80:76:d4:99:23:20:46:0d:18:b2: 93:ba:31:41:c0:48:11:33:61:f2:f0:88:39:d0:68:01:5b:08: 3a:67:ff:d0:95:0d:15:35:3d:dc:b6:77:8b:04:86:e8:df:c6: db:df:ce:76:96:62:a7:42:13:57:46:af:70:ae:13:5e:a1:fb: 80:e5:8d:e3:ba:99:e2:dd:54:48:52:c3:ac:6d:66:d0:20:13: 7b:fb:6d:18:73:df:14:81:24:5a:a4:40:a6:62:9f:f4:58:93: 35:ee:82:cd:79:16:8a:69:85:58:9c:41:59:a0:1b:05:d5:b3: 66:6f:f8:4d:c9:2b:fa:33:a8:21:09:bd:c8:4b:dd:9a:62:8d: 3b:6c:fd:7d:10:44:0f:6f:e8:da:9e:69:f4:d1:69:54:67:89: 7f:ca:92:7e:ef:0e:ad:ed:87:d5:b1:19:08:88:01:53:c3:0d: 51:61:d6:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTB5RuAvgfao7N6OBgCwhXoV0AHUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAyMDI0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWE4NTZiYzQ5MGQ1NDE0YjFiNWVmOTA0MWJlNmRjNTY1 OTkwZWU0YTMyMDA5MzViMzQzMzE1OGQ0ZDczZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFsvLW6NkseApRLGgvq/k/mmnx7juforgJhR14N2mmv7ve tYGVDP/eTbW+8U3DhauDd2U9b4ca4bMVAJccFSGVNJlkS/nnbOraYSVmYv2WkJXC xkHIdMDSXLtm33O3PhdrNFGcxyQAEvBHzmwv7nQQzo7c0SnVyWpyvLp1Uyx21LP/ HB5r3BGy3h9SEqvzG2yuRGUsaMkkTgPGCuH3SZRnZHOv1+1h2/vo6QJKMChtQfDl NGrisBZ3DtH0jDL7BHkUIerE9mMzzRZ5ytk6NKt051+zvdirsYNFf/Qw76rWDfxp unNRYRc/l2lXxusmNoH+scXIXSb5kexHFJMf6SqhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/j4URu/mHBH8wfXMKRX4hDRguxkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NzZhZjM4LTUxNWQtNGIzMy1iYzFmLTlmNzgxY2FjZjM2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFKAwDQYJKoZIhvcNAQELBQADggEBADEbxZ6krNpLS54mVAicbmHXSNqZ EZ2xQEbsKG6DcRuRzb2X4EWWGxg8oBXUn3WFIsRczR+JTfYxZisxjUQ74mEubntL 8h+d8KjPEWtkOVSfgHbUmSMgRg0YspO6MUHASBEzYfLwiDnQaAFbCDpn/9CVDRU1 Pdy2d4sEhujfxtvfznaWYqdCE1dGr3CuE16h+4DljeO6meLdVEhSw6xtZtAgE3v7 bRhz3xSBJFqkQKZin/RYkzXugs15FopphVicQVmgGwXVs2Zv+E3JK/ozqCEJvchL 3ZpijTts/X0QRA9v6NqeafTRaVRniX/Kkn7vDq3th9WxGQiIAVPDDVFh1uI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:22 2025 by rpki-client