$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa File: 6dee5376-32e7-4adf-a1a0-57aedac04f93.roa (raw, json) Hash identifier: xzjG2SnRrMfPgpoJAHusOh3Oxuk85wg4nUhSxQjvaTs= Subject key identifier: 6D:B3:FB:9B:44:76:61:25:CB:5F:BE:9E:A3:A1:0B:20:A5:F9:C6:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D6233DDB6C9E997AD2F3B40DD76ED38FD88706E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa Signing time: Mon 21 Apr 2025 17:11:59 +0000 ROA not before: Mon 21 Apr 2025 17:11:59 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.252.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:62:33:dd:b6:c9:e9:97:ad:2f:3b:40:dd:76:ed:38:fd:88:70:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:11:59 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=ae18a3e39ffca78c53d1ababc92cc13d54f882691fe13a98cc91ff7a52564494, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2b:cf:c1:1d:01:0c:b7:cb:b6:c8:29:84:7c: 6c:c7:27:13:fd:d3:00:ea:6f:6a:e2:b3:8a:23:74: 59:1a:cd:0f:9b:e7:48:9b:a9:f1:fe:49:59:72:22: 92:85:79:2e:16:14:c6:65:84:dc:c7:18:e2:a2:8c: b7:af:14:45:10:76:05:fa:1c:0b:df:7d:de:b6:01: 0b:a3:61:fb:02:70:25:45:c2:c3:aa:c8:ec:54:33: 18:e2:0a:07:09:ac:98:6c:2d:e6:6c:af:b5:5c:81: 7c:32:13:41:12:41:89:c4:94:40:70:e3:7d:03:2c: a7:f1:fb:1f:43:85:a8:60:4c:ab:d3:bc:c9:b7:b4: 0b:a4:a5:51:6a:55:35:d1:32:b0:68:c3:88:78:2c: 43:b8:27:5f:ac:c8:7f:3f:92:22:0c:5c:6d:f7:bd: 20:06:3c:cc:6e:55:82:0a:7c:bf:38:57:e9:c1:16: be:fa:56:80:bb:81:97:d5:08:dd:7d:88:53:57:49: b4:40:dc:82:65:23:2e:12:38:d6:a2:b9:6e:45:fa: a3:15:49:ea:34:32:9a:83:88:e6:22:d5:f5:ec:51: b8:9e:19:27:b4:ee:cd:c0:ff:4b:b9:3a:e0:d7:c7: b2:39:b7:0d:66:1f:dc:de:d2:d7:a7:bd:59:90:84: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B3:FB:9B:44:76:61:25:CB:5F:BE:9E:A3:A1:0B:20:A5:F9:C6:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.252.144.0/21 Signature Algorithm: sha256WithRSAEncryption a7:0b:9e:53:02:96:81:09:f6:af:fb:7a:6e:0d:f7:aa:ec:f4: c0:34:b1:9d:6f:d5:a4:77:41:80:55:a6:f5:81:f4:4e:55:76: 83:72:de:e5:18:8f:9f:36:74:d1:35:9d:79:be:a3:5e:45:ff: a6:42:d8:2c:70:d4:0e:ae:f8:95:0e:55:a9:dc:85:fe:06:3d: 87:db:cb:f8:82:76:fb:3f:ab:28:97:aa:38:ab:7e:0e:7c:cb: 80:da:e3:a6:a2:6a:b8:13:81:15:0d:62:4d:34:31:64:eb:8b: ad:a9:a4:f5:8a:21:c3:ac:a5:ad:e6:f4:e0:8f:ca:94:9c:63: 78:4d:0e:87:c0:35:74:64:f0:d4:a9:d6:6c:cd:7b:4e:f4:5b: 9e:cf:ea:ef:c1:c9:77:90:1e:bb:81:3d:68:0f:2c:fc:14:bf: 69:23:d6:35:a1:af:59:df:ff:4a:31:50:c3:da:92:53:2f:0f: 59:8c:6c:9b:e0:f1:f6:66:2a:62:ed:88:49:71:1c:fe:11:99: 07:ab:92:d6:f9:d4:8d:cd:9e:eb:1c:16:58:92:92:17:01:9e: 7d:22:e6:67:4b:32:c4:0c:2b:f8:7f:07:4e:ea:0a:fa:b9:cc: 59:45:e6:62:9b:93:3c:e7:d3:de:e8:c4:68:db:01:80:ea:95: 52:0d:83:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbWIz3bbJ6ZetLztA3XbtOP2IcG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcxMTU5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTE4YTNlMzlmZmNhNzhjNTNkMWFiYWJjOTJjYzEzZDU0 Zjg4MjY5MWZlMTNhOThjYzkxZmY3YTUyNTY0NDk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmK8/BHQEMt8u2yCmEfGzHJxP90wDqb2ris4ojdFkazQ+b 50ibqfH+SVlyIpKFeS4WFMZlhNzHGOKijLevFEUQdgX6HAvffd62AQujYfsCcCVF wsOqyOxUMxjiCgcJrJhsLeZsr7VcgXwyE0ESQYnElEBw430DLKfx+x9DhahgTKvT vMm3tAukpVFqVTXRMrBow4h4LEO4J1+syH8/kiIMXG33vSAGPMxuVYIKfL84V+nB Fr76VoC7gZfVCN19iFNXSbRA3IJlIy4SONaiuW5F+qMVSeo0MpqDiOYi1fXsUbie GSe07s3A/0u5OuDXx7I5tw1mH9ze0tenvVmQhKPLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbbP7m0R2YSXLX76eo6ELIKX5xo8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkZWU1Mzc2LTMyZTctNGFkZi1hMWEwLTU3YWVkYWMwNGY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY/JAwDQYJKoZIhvcNAQELBQADggEBAKcLnlMCloEJ9q/7em4N96rs9MA0 sZ1v1aR3QYBVpvWB9E5VdoNy3uUYj582dNE1nXm+o15F/6ZC2Cxw1A6u+JUOVanc hf4GPYfby/iCdvs/qyiXqjirfg58y4Da46aiargTgRUNYk00MWTri62ppPWKIcOs pa3m9OCPypScY3hNDofANXRk8NSp1mzNe070W57P6u/ByXeQHruBPWgPLPwUv2kj 1jWhr1nf/0oxUMPaklMvD1mMbJvg8fZmKmLtiElxHP4RmQerktb51I3NnuscFliS khcBnn0i5mdLMsQMK/h/B07qCvq5zFlF5mKbkzzn097oxGjbAYDqlVINg3s= -----END CERTIFICATE-----Generated at Sat Apr 26 16:08:15 2025 by rpki-client