$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/866cfc98-63c3-4934-b0ba-88eefffde781.roa File: 866cfc98-63c3-4934-b0ba-88eefffde781.roa (raw, json) Hash identifier: 8z1F5UMZPM/LFa/7XF+ZgTXVxr5dJ85cjOUX51bYzP8= Subject key identifier: 82:53:CA:BA:A8:F1:9F:FC:66:34:D4:25:12:7D:A8:E4:F3:EE:49:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53E91ABD2F56F0E2DA67383FAE6DD68708CB24B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/866cfc98-63c3-4934-b0ba-88eefffde781.roa Signing time: Fri 25 Apr 2025 15:01:21 +0000 ROA not before: Fri 25 Apr 2025 15:01:21 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e9:1a:bd:2f:56:f0:e2:da:67:38:3f:ae:6d:d6:87:08:cb:24:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:01:21 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c2f80d9b0999b4b80aa24c8bb1ca86a254f99dd11ee6ff590df7deef021435b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b4:fe:b6:e4:d9:b6:5b:bb:89:c3:b1:88:14: ad:24:d8:94:c7:81:d5:14:6a:aa:55:31:04:2e:ce: 4d:16:98:8a:a3:23:7d:9f:b3:33:85:f2:eb:b8:08: 5d:37:cc:3a:3c:83:a2:b0:47:45:a7:2c:0a:f6:a6: 6f:52:ef:a5:49:c3:f2:15:e0:51:be:f4:ab:76:ca: b8:6c:5f:1b:c5:dd:8f:76:08:10:60:f5:f4:af:67: 4d:78:68:cb:da:d5:77:3b:43:d6:0d:91:44:d9:92: 49:37:39:0e:30:d6:41:cb:e4:55:12:d2:80:51:b3: 5c:63:85:49:37:bf:df:ed:0d:05:98:64:8c:ab:aa: d2:28:43:bc:6e:7f:79:86:8e:13:0f:51:7b:c9:e5: db:8d:88:67:1a:d0:4b:29:26:bf:ca:9d:94:28:44: 35:a4:85:bb:21:5d:44:3d:e1:56:06:6b:e8:1d:2e: 20:34:9a:91:03:cc:77:c5:9a:96:e6:9c:5d:8f:3e: cb:f9:57:20:a7:c6:55:d4:3d:a5:30:d3:19:c4:9a: c7:92:00:5c:d5:98:6b:61:d0:f9:7e:5f:cd:02:31: ac:0c:34:21:a3:ee:8e:f7:a9:e3:48:bb:5b:bb:4e: bc:ea:c0:20:03:fb:04:07:68:b8:6e:55:40:5a:5a: d9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:53:CA:BA:A8:F1:9F:FC:66:34:D4:25:12:7D:A8:E4:F3:EE:49:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/866cfc98-63c3-4934-b0ba-88eefffde781.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.162.0/23 Signature Algorithm: sha256WithRSAEncryption bb:95:bc:c3:d1:db:66:a8:1c:cd:22:16:f9:7a:35:73:d1:0c: 06:ec:72:b4:44:ed:57:95:04:23:6e:e7:56:4e:9b:b3:b3:28: 06:47:86:b9:30:ac:7e:55:84:79:76:eb:dc:32:47:11:59:c2: eb:0f:e9:88:2e:e1:8b:85:79:47:2b:01:00:8f:5f:f2:2e:ad: fb:ba:29:d4:8c:9f:da:8b:e5:60:75:71:4e:9b:1d:02:62:02: 17:a7:a6:c1:1f:ff:5d:d7:ff:5b:33:5b:65:a5:1f:15:b4:c5: 7e:6d:67:75:70:77:ea:0b:af:4b:41:ca:00:37:b4:95:89:52: 2b:84:66:a7:c7:d8:f4:13:eb:bf:82:65:b3:d9:ee:50:05:17: 53:ff:c5:d5:c4:53:71:ac:fd:ab:a3:e4:30:01:1a:95:37:70: 59:72:74:ab:d0:72:c8:8a:48:23:a2:7c:74:54:6e:5e:72:10: 5a:82:70:35:6b:dc:34:cc:df:15:2d:be:90:5a:0d:60:17:0d: f7:35:89:41:29:b6:d4:ed:74:4f:58:c2:06:3e:bc:7a:d0:76: e5:7a:4c:58:37:19:13:2a:1a:fb:96:10:98:77:9e:b9:0a:10: b9:35:de:92:48:b9:c6:12:86:b4:38:a7:c1:19:da:38:50:4c: a0:fd:55:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU+kavS9W8OLaZzg/rm3WhwjLJLQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMTIxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmY4MGQ5YjA5OTliNGI4MGFhMjRjOGJiMWNhODZhMjU0 Zjk5ZGQxMWVlNmZmNTkwZGY3ZGVlZjAyMTQzNWI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYtP625Nm2W7uJw7GIFK0k2JTHgdUUaqpVMQQuzk0WmIqj I32fszOF8uu4CF03zDo8g6KwR0WnLAr2pm9S76VJw/IV4FG+9Kt2yrhsXxvF3Y92 CBBg9fSvZ014aMva1Xc7Q9YNkUTZkkk3OQ4w1kHL5FUS0oBRs1xjhUk3v9/tDQWY ZIyrqtIoQ7xuf3mGjhMPUXvJ5duNiGca0EspJr/KnZQoRDWkhbshXUQ94VYGa+gd LiA0mpEDzHfFmpbmnF2PPsv5VyCnxlXUPaUw0xnEmseSAFzVmGth0Pl+X80CMawM NCGj7o73qeNIu1u7TrzqwCAD+wQHaLhuVUBaWtm/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUglPKuqjxn/xmNNQlEn2o5PPuSVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2NmNmYzk4LTYzYzMtNDkzNC1iMGJhLTg4ZWVmZmZkZTc4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFLZaIwDQYJKoZIhvcNAQELBQADggEBALuVvMPR22aoHM0iFvl6NXPRDAbs crRE7VeVBCNu51ZOm7OzKAZHhrkwrH5VhHl269wyRxFZwusP6Ygu4YuFeUcrAQCP X/Iurfu6KdSMn9qL5WB1cU6bHQJiAhenpsEf/13X/1szW2WlHxW0xX5tZ3Vwd+oL r0tBygA3tJWJUiuEZqfH2PQT67+CZbPZ7lAFF1P/xdXEU3Gs/auj5DABGpU3cFly dKvQcsiKSCOifHRUbl5yEFqCcDVr3DTM3xUtvpBaDWAXDfc1iUEpttTtdE9YwgY+ vHrQduV6TFg3GRMqGvuWEJh3nrkKELk13pJIucYShrQ4p8EZ2jhQTKD9Vbw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:46 2025 by rpki-client