$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa File: a53817fd-b599-4741-a058-100f3660315d.roa (raw, json) Hash identifier: 6IAJB7tducbisFzMJhuG+y4vT6+Q2EYlTSDqsfcQtHg= Subject key identifier: 0C:77:78:C9:99:38:6A:9D:BD:06:BE:3E:E6:3D:2E:EB:AD:60:28:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39ADB02B232408E6C4CF8B821310AC0DD2ECFBA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa Signing time: Tue 15 Apr 2025 00:00:30 +0000 ROA not before: Tue 15 Apr 2025 00:00:30 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 163.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ad:b0:2b:23:24:08:e6:c4:cf:8b:82:13:10:ac:0d:d2:ec:fb:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:30 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=39b2f2184adf486be750e209bb567298460fda8077ea4d4acb57c4c8d4953412, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:46:aa:d7:0b:b1:5a:2c:4b:f6:b4:fe:0d: a4:cd:fc:1d:54:94:5f:d1:37:59:fc:3e:85:11:a0: 2c:26:d1:44:f9:7d:a1:70:15:0c:ff:30:5e:1f:e0: 4d:b7:d2:b1:7a:34:d7:72:ab:2d:af:62:98:be:8d: 41:fa:86:63:35:cb:3d:23:53:f3:e8:d9:75:c2:e7: ac:47:cb:90:1b:d3:9e:99:2b:00:d1:7d:6a:6c:b2: f2:ae:6f:ff:2f:a9:43:15:44:75:23:ab:f1:ec:f6: 7d:be:da:86:80:2f:2d:d6:da:74:9c:9d:d0:d3:7e: a9:31:cb:b4:be:26:bf:54:75:c4:33:c5:69:ef:0c: 6c:e5:66:af:d1:26:57:a7:75:90:77:c2:f0:06:75: e7:5c:04:73:6e:98:8a:f8:14:cf:59:63:2d:f1:2f: cb:fc:25:1e:fc:87:d4:37:f7:25:32:9d:3c:8e:94: 6f:19:13:3f:ae:ed:cf:95:2c:99:10:b2:39:9b:ed: 93:64:4d:3e:62:6b:f9:a1:15:a4:bc:a1:0d:03:6e: 23:ca:82:94:39:ed:de:64:6c:c5:54:b6:5f:d0:c1: 7b:fa:af:f1:4d:fe:74:e7:67:eb:08:be:f7:ac:4e: 13:8b:0f:3e:d9:62:cb:64:0c:66:a7:24:78:2c:a2: 9a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:77:78:C9:99:38:6A:9D:BD:06:BE:3E:E6:3D:2E:EB:AD:60:28:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:9f:69:35:64:89:ee:2d:04:4e:ab:9b:db:2a:40:fc:d4:64: 37:ce:32:ec:db:77:e3:7a:bf:13:43:73:7d:36:ff:28:2c:7b: 1d:02:42:2a:df:ea:a0:b0:f7:18:71:76:54:9e:c2:2c:f2:0b: cf:80:5e:67:f9:bf:ca:2b:25:2a:c7:07:18:9e:e2:ec:a3:2b: 7b:75:e2:9a:c8:4e:0d:bc:03:a5:d2:99:4f:4a:cc:e3:50:98: 0d:bd:ef:f9:02:4d:76:f0:b1:8e:5b:87:f3:40:fe:78:51:8e: 9e:c2:49:f1:77:bc:38:e4:4b:43:22:94:be:8e:4e:f1:91:ab: c8:db:67:fc:19:f6:39:01:b1:6d:05:1f:74:97:24:6f:d5:ca: 1a:ef:1e:73:af:fb:61:a1:d9:1d:aa:74:36:ae:3f:92:32:d3: 00:0e:15:9c:17:e8:dd:00:58:92:80:61:e3:e1:1d:dc:14:46: ad:65:c7:5d:45:c2:8d:93:95:90:6e:f4:c7:4d:8c:36:13:dd: e2:d6:a5:b2:72:1b:71:50:fc:7d:24:41:83:a4:8d:31:5a:76: e9:8e:4b:c9:18:ee:d7:11:63:a6:9e:0e:1e:65:8f:42:50:ec: 61:c4:49:32:ff:ea:7e:4f:25:af:1e:33:eb:44:9d:ce:c3:e1: 06:4f:07:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOa2wKyMkCObEz4uCExCsDdLs+6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAwMDMwWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWIyZjIxODRhZGY0ODZiZTc1MGUyMDliYjU2NzI5ODQ2 MGZkYTgwNzdlYTRkNGFjYjU3YzRjOGQ0OTUzNDEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7p0aq1wuxWixL9rT+DaTN/B1UlF/RN1n8PoURoCwm0UT5 faFwFQz/MF4f4E230rF6NNdyqy2vYpi+jUH6hmM1yz0jU/Po2XXC56xHy5Ab056Z KwDRfWpssvKub/8vqUMVRHUjq/Hs9n2+2oaALy3W2nScndDTfqkxy7S+Jr9UdcQz xWnvDGzlZq/RJlendZB3wvAGdedcBHNumIr4FM9ZYy3xL8v8JR78h9Q39yUynTyO lG8ZEz+u7c+VLJkQsjmb7ZNkTT5ia/mhFaS8oQ0DbiPKgpQ57d5kbMVUtl/QwXv6 r/FN/nTnZ+sIvvesThOLDz7ZYstkDGanJHgsopqxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDHd4yZk4ap29Br4+5j0u661gKHkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MzgxN2ZkLWI1OTktNDc0MS1hMDU4LTEwMGYzNjYwMzE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCjAzANBgkqhkiG9w0BAQsFAAOCAQEABZ9pNWSJ7i0ETqub2ypA/NRkN84y 7Nt343q/E0NzfTb/KCx7HQJCKt/qoLD3GHF2VJ7CLPILz4BeZ/m/yislKscHGJ7i 7KMre3XimshODbwDpdKZT0rM41CYDb3v+QJNdvCxjluH80D+eFGOnsJJ8Xe8OORL QyKUvo5O8ZGryNtn/Bn2OQGxbQUfdJckb9XKGu8ec6/7YaHZHap0Nq4/kjLTAA4V nBfo3QBYkoBh4+Ed3BRGrWXHXUXCjZOVkG70x02MNhPd4talsnIbcVD8fSRBg6SN MVp26Y5LyRju1xFjpp4OHmWPQlDsYcRJMv/qfk8lrx4z60SdzsPhBk8HpQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:28 2025 by rpki-client