$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51c6524-05cd-4515-90ee-87b113d6ce7d.roa File: a51c6524-05cd-4515-90ee-87b113d6ce7d.roa (raw, json) Hash identifier: 64idpqdiQ59gJ2cqHXBWdap1T838xGRs9e4Y0qzQ0eU= Subject key identifier: 1F:85:97:1C:D6:5E:91:FD:2E:CA:F4:EB:44:2D:8B:CC:98:E1:C1:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 763B35E30E80A50CC76D73D844CF524B680E3BC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51c6524-05cd-4515-90ee-87b113d6ce7d.roa Signing time: Wed 23 Apr 2025 00:30:20 +0000 ROA not before: Wed 23 Apr 2025 00:30:20 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:3b:35:e3:0e:80:a5:0c:c7:6d:73:d8:44:cf:52:4b:68:0e:3b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:30:20 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=6dd912d7c8a7a801adf3317b0c39cc4f9a4a4efe94e50f31e03513c63e14a890, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9f:2c:90:f6:bc:75:d5:41:71:da:82:2b:10: f4:8e:76:09:02:26:35:e3:56:37:53:59:72:6e:7c: 38:0b:00:7e:c8:9b:6b:01:dc:ab:f7:c4:76:1b:bb: 2b:c0:24:d0:99:55:8b:68:e1:e1:a6:ad:7b:e7:f5: 75:f3:e8:f3:cc:d5:5d:96:4a:c7:7c:2e:0d:cd:83: e6:27:23:4f:8c:0e:ea:d4:69:6c:b1:3f:b8:5e:d1: 0b:62:69:ec:c6:bc:a3:be:00:9c:db:9a:c1:b4:53: 48:78:ae:e3:6b:17:35:cb:1a:a2:0c:c0:12:d2:15: a9:78:19:d4:6f:ea:b1:5f:c3:0a:8a:18:a8:98:19: 3a:4a:9d:ed:bb:4b:63:23:ef:ff:42:34:83:b3:bf: 42:10:fc:4c:41:2d:58:11:17:bb:eb:52:3f:18:43: 54:b3:1f:74:94:68:86:ff:6a:aa:14:7f:c7:0f:b2: 39:3f:81:ac:4c:b7:a9:40:47:7c:8c:15:35:16:26: 82:e0:75:a3:aa:69:93:26:2d:45:7d:4d:f4:51:f6: 8a:72:62:95:c0:73:c8:3d:1e:c5:6a:69:5e:6f:01: fa:40:67:6f:26:a9:36:39:21:f7:3d:98:aa:e4:56: f0:ba:e9:99:8c:14:de:e2:28:93:02:2c:17:ac:d5: 1d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:85:97:1C:D6:5E:91:FD:2E:CA:F4:EB:44:2D:8B:CC:98:E1:C1:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a51c6524-05cd-4515-90ee-87b113d6ce7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:af:66:ea:a3:97:78:38:a7:4c:19:0d:65:c8:dd:2e:56:07: 9b:00:38:13:03:b0:7b:00:d8:aa:3f:2d:95:87:27:a4:36:5d: 97:4f:b2:56:6f:79:93:35:5d:4c:fc:66:89:dd:9f:de:ab:8a: 56:9d:65:00:fd:a0:35:11:cd:bc:d3:0f:27:59:fb:bf:86:df: da:6c:bf:11:10:c9:7f:1a:29:98:97:9b:d9:17:06:ff:69:c0: ad:18:9d:86:6e:f9:dd:a7:de:be:a8:8f:61:69:f3:99:cb:83: 02:d9:76:10:5c:47:5e:a4:f6:8a:08:e4:6c:00:d1:cc:19:5c: e1:1b:e6:f4:c5:fa:22:ef:b3:f8:66:a8:44:80:1c:3b:22:fa: 3e:08:b7:68:c9:e8:48:b2:03:64:26:31:48:09:33:36:e5:10: 13:f0:8a:ee:d2:b8:2f:ba:f0:ef:62:6f:77:28:a6:a0:cd:cb: d9:5d:34:fa:7e:3c:e2:9b:3b:8d:80:71:bb:66:d2:ba:80:9f: 4d:ba:a1:fa:2e:2d:37:6b:f8:af:74:c3:4d:3a:60:79:69:1e: a4:df:d6:73:7f:c7:c5:dd:b9:78:35:e3:fb:c7:5b:04:7a:49: 95:52:0a:9b:30:63:c1:74:55:fd:ae:b8:ba:9b:61:87:fe:81: ea:b6:16:cc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdjs14w6ApQzHbXPYRM9SS2gOO8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMDIwWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGQ5MTJkN2M4YTdhODAxYWRmMzMxN2IwYzM5Y2M0Zjlh NGE0ZWZlOTRlNTBmMzFlMDM1MTNjNjNlMTRhODkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsnyyQ9rx11UFx2oIrEPSOdgkCJjXjVjdTWXJufDgLAH7I m2sB3Kv3xHYbuyvAJNCZVYto4eGmrXvn9XXz6PPM1V2WSsd8Lg3Ng+YnI0+MDurU aWyxP7he0QtiaezGvKO+AJzbmsG0U0h4ruNrFzXLGqIMwBLSFal4GdRv6rFfwwqK GKiYGTpKne27S2Mj7/9CNIOzv0IQ/ExBLVgRF7vrUj8YQ1SzH3SUaIb/aqoUf8cP sjk/gaxMt6lAR3yMFTUWJoLgdaOqaZMmLUV9TfRR9opyYpXAc8g9HsVqaV5vAfpA Z28mqTY5Ifc9mKrkVvC66ZmMFN7iKJMCLBes1R1BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUH4WXHNZekf0uyvTrRC2LzJjhwRcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MWM2NTI0LTA1Y2QtNDUxNS05MGVlLTg3YjExM2Q2Y2U3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSTTANBgkqhkiG9w0BAQsFAAOCAQEAXK9m6qOXeDinTBkNZcjdLlYHmwA4 EwOwewDYqj8tlYcnpDZdl0+yVm95kzVdTPxmid2f3quKVp1lAP2gNRHNvNMPJ1n7 v4bf2my/ERDJfxopmJeb2RcG/2nArRidhm753afevqiPYWnzmcuDAtl2EFxHXqT2 igjkbADRzBlc4Rvm9MX6Iu+z+GaoRIAcOyL6Pgi3aMnoSLIDZCYxSAkzNuUQE/CK 7tK4L7rw72JvdyimoM3L2V00+n484ps7jYBxu2bSuoCfTbqh+i4tN2v4r3TDTTpg eWkepN/Wc3/Hxd25eDXj+8dbBHpJlVIKmzBjwXRV/a64upthh/6B6rYWzA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:27 2025 by rpki-client