$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/802dd918-8d70-4326-af2f-e982eb27726f.roa File: 802dd918-8d70-4326-af2f-e982eb27726f.roa (raw, json) Hash identifier: EtCfhL+KnXL3U6fCOf28lyQh/r7rI1oOaOMs2I0F1pA= Subject key identifier: FF:E9:2D:1F:7A:3A:CC:C2:FB:44:0C:4F:C3:90:74:92:DC:04:3C:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AECDC30CA966345702D457ECDF6820A03392D9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/802dd918-8d70-4326-af2f-e982eb27726f.roa Signing time: Sat 12 Apr 2025 00:21:35 +0000 ROA not before: Sat 12 Apr 2025 00:21:35 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.17.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ec:dc:30:ca:96:63:45:70:2d:45:7e:cd:f6:82:0a:03:39:2d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:21:35 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=a4332393d468c17b34c4156f5453830e6237fe8a77c89ef024b99dc2aad1c4ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:22:ca:cb:1b:6c:00:c9:f1:30:b9:74:3d: 20:93:13:04:58:10:56:b8:ad:59:0b:3b:f9:9a:6d: 2c:36:31:09:9f:85:84:2a:da:c8:cf:38:41:ca:22: e7:5a:6d:e5:07:1f:78:a4:dd:bf:29:13:16:30:1f: a5:e5:b0:1f:fb:db:ce:c0:54:ce:70:7c:e0:97:36: 66:89:d3:90:9e:af:e7:3d:0f:31:56:dd:ee:18:3e: 8c:c8:89:74:e3:77:87:78:1e:55:b6:5c:a6:0e:f7: 1d:0d:ea:94:82:cf:e1:9e:74:8f:32:51:37:fc:2a: dc:ec:5d:87:da:64:e3:91:f7:bd:68:1e:d4:6f:a1: a9:83:46:78:c4:fd:db:bf:41:84:31:dd:da:b2:eb: 01:9c:41:0b:a0:6e:bf:29:5c:92:a3:b6:93:c1:46: b7:f4:7f:65:18:47:0b:e6:89:55:aa:36:b6:6b:32: 14:e0:0b:05:19:55:34:ac:97:c8:5a:17:31:3a:28: f9:60:fe:d6:01:21:fb:cc:48:02:64:52:d9:cb:bf: b2:de:9a:e2:be:7f:1c:e6:8c:4d:8f:97:dc:c8:41: 4f:cb:19:36:1e:66:37:fa:04:88:06:85:0a:54:0f: 8c:ff:f4:d2:62:8e:80:97:1d:e7:ae:13:4d:89:de: 02:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E9:2D:1F:7A:3A:CC:C2:FB:44:0C:4F:C3:90:74:92:DC:04:3C:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/802dd918-8d70-4326-af2f-e982eb27726f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.180.0/22 Signature Algorithm: sha256WithRSAEncryption 27:d6:00:40:8c:bc:e4:a9:5c:3b:ec:43:c5:6c:36:f1:dd:a8: c2:cc:23:b1:d9:55:f4:ed:f8:6a:ad:bf:bd:94:61:a7:72:35: 0b:aa:d7:4e:ef:ae:22:35:66:2e:b7:15:5e:8b:c5:fe:e4:ea: 24:cb:ff:58:bc:54:d0:e8:93:38:8f:2c:a8:48:ad:5b:91:67: dc:41:85:17:ea:9c:51:31:2e:f2:ee:e9:97:e5:0e:2f:38:8c: d9:7a:d1:63:02:91:08:ce:5d:4a:c2:30:2f:84:01:64:c2:c0: 7e:2b:79:91:11:86:3c:98:21:21:da:e6:cc:a1:a4:62:53:67: 53:da:3c:31:c6:2c:44:44:90:fc:08:a2:e8:6c:57:35:5a:51: ea:50:ae:40:41:5a:59:11:cb:03:ea:b9:2f:8b:fd:dd:c8:5e: c5:a4:a9:4a:e2:42:93:3c:ba:ed:85:5e:9d:dc:8d:ca:79:85: 60:3b:5d:2f:0a:02:77:5d:62:43:55:63:07:61:97:f1:ab:d0: ef:1f:87:09:38:af:a8:1d:0c:f4:ce:d9:0e:9a:dc:ab:d2:a7: 83:55:28:e6:0d:63:8c:70:65:ef:7e:89:a0:c7:77:2d:42:e8: f9:db:5f:51:8c:d7:7f:2f:a3:d5:68:98:37:00:15:34:4d:46: c8:96:63:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSuzcMMqWY0VwLUV+zfaCCgM5LZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAyMTM1WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDMzMjM5M2Q0NjhjMTdiMzRjNDE1NmY1NDUzODMwZTYy MzdmZThhNzdjODllZjAyNGI5OWRjMmFhZDFjNGFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLhCLKyxtsAMnxMLl0PSCTEwRYEFa4rVkLO/mabSw2MQmf hYQq2sjPOEHKIudabeUHH3ik3b8pExYwH6XlsB/7287AVM5wfOCXNmaJ05Cer+c9 DzFW3e4YPozIiXTjd4d4HlW2XKYO9x0N6pSCz+GedI8yUTf8KtzsXYfaZOOR971o HtRvoamDRnjE/du/QYQx3dqy6wGcQQugbr8pXJKjtpPBRrf0f2UYRwvmiVWqNrZr MhTgCwUZVTSsl8haFzE6KPlg/tYBIfvMSAJkUtnLv7LemuK+fxzmjE2Pl9zIQU/L GTYeZjf6BIgGhQpUD4z/9NJijoCXHeeuE02J3gIbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/+ktH3o6zML7RAxPw5B0ktwEPHAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwMmRkOTE4LThkNzAtNDMyNi1hZjJmLWU5ODJlYjI3NzI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEbQwDQYJKoZIhvcNAQELBQADggEBACfWAECMvOSpXDvsQ8VsNvHdqMLM I7HZVfTt+Gqtv72UYadyNQuq107vriI1Zi63FV6Lxf7k6iTL/1i8VNDokziPLKhI rVuRZ9xBhRfqnFExLvLu6ZflDi84jNl60WMCkQjOXUrCMC+EAWTCwH4reZERhjyY ISHa5syhpGJTZ1PaPDHGLEREkPwIouhsVzVaUepQrkBBWlkRywPquS+L/d3IXsWk qUriQpM8uu2FXp3cjcp5hWA7XS8KAnddYkNVYwdhl/Gr0O8fhwk4r6gdDPTO2Q6a 3KvSp4NVKOYNY4xwZe9+iaDHdy1C6PnbX1GM138vo9VomDcAFTRNRsiWY4g= -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:35 2025 by rpki-client