$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa File: a86ce653-a267-4a99-b0c5-99b2a3c45792.roa (raw, json) Hash identifier: BJ62BMr7hnvSVukj3uXPbvHXmrQbgCYsPVSjEAGRPOI= Subject key identifier: 6B:C0:1D:3C:52:AA:80:45:3F:78:CA:B9:02:38:5B:CE:99:3F:09:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BB974B8122F16722D2AEC577C2C1F957F13D5CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa Signing time: Fri 25 Apr 2025 00:31:16 +0000 ROA not before: Fri 25 Apr 2025 00:31:16 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.21.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b9:74:b8:12:2f:16:72:2d:2a:ec:57:7c:2c:1f:95:7f:13:d5:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:31:16 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ee2b7402978600f05c9e6e836639c23aa4d04e4e56557215e48685c69bb28d26, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:75:78:6d:bc:3a:c5:e7:4c:ce:5e:83:97:3a: 70:67:30:3d:03:b6:46:2d:e4:fa:85:28:28:b8:e1: 5d:e1:f2:33:51:04:8c:95:b3:d8:db:17:d7:69:13: 9e:c7:43:ec:af:6a:46:e2:a6:fc:62:22:7b:46:1d: 63:39:ae:67:1d:56:c9:a3:8f:c2:d1:04:db:3e:28: 0e:04:3f:c4:a7:12:a9:09:c6:4b:4e:5e:10:4d:20: 77:f7:38:30:89:c1:6c:b6:da:2b:c4:5c:16:fc:2d: af:82:13:fd:04:9f:a1:7a:69:4d:85:f2:66:65:ce: 94:04:49:03:a4:ae:57:18:07:17:84:c4:81:32:e2: ef:ea:bb:c5:a3:ea:b5:d5:87:e7:b5:e8:d1:5f:b6: ce:c9:5d:bd:0c:4e:26:dc:b5:32:6d:83:eb:eb:6a: 7d:32:9a:a2:b3:70:ec:42:53:87:92:f6:d4:eb:af: b8:f5:6f:58:8d:13:b7:87:72:ca:b4:39:f3:36:4c: 8f:25:b0:bf:5e:41:ad:5b:15:00:c6:90:55:7f:71: c9:d0:6b:4d:da:dc:04:f3:e0:57:a0:5e:70:83:fd: cd:72:c5:f1:72:ea:fd:c6:73:99:13:d9:9b:9a:4b: a3:0f:23:82:37:4e:89:42:54:bc:bb:db:4c:2d:d5: df:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C0:1D:3C:52:AA:80:45:3F:78:CA:B9:02:38:5B:CE:99:3F:09:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.0.0/19 Signature Algorithm: sha256WithRSAEncryption 9c:67:82:38:eb:89:11:c0:86:ca:d1:22:9c:84:cd:6d:cf:e9: 3a:51:81:62:15:36:a4:a4:43:1a:43:85:b2:ce:8a:0e:19:9c: 61:b4:1b:11:91:0b:47:d0:03:d5:21:9a:a5:7f:6f:95:cb:e2: 61:1b:ed:a2:ed:ad:23:9f:bf:86:be:cd:7d:c3:85:ae:2c:33: 9a:ac:de:0d:5c:d0:af:10:56:ff:a4:a4:ed:f9:bc:2c:84:60: 1d:68:a0:12:38:8d:6e:9f:8e:31:b6:90:5d:39:28:69:fe:d9: 0a:eb:18:46:96:e0:31:59:75:ac:53:6f:db:a1:1c:e5:c2:f9: 0b:13:00:a1:7c:0c:40:7e:30:fa:1b:2b:c8:ff:ca:cd:5e:40: b6:df:e9:f7:f4:7c:a9:5b:83:27:72:52:5f:d6:78:bd:ce:60: c0:7e:d2:da:8d:d2:f8:4d:1b:ae:5a:06:53:14:79:11:5b:5b: 81:25:56:1c:bf:54:e3:6e:6d:46:74:fd:84:f3:e3:13:30:e3: ed:5e:e7:59:1d:92:81:54:10:eb:d9:49:b5:3f:90:53:85:94: 88:44:fb:98:0e:cf:05:66:cd:2e:c2:6f:6f:c2:08:07:75:20: 19:92:06:7e:98:d7:69:ce:3c:cb:c8:28:65:44:be:a7:53:ac: 2f:f0:d9:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe7l0uBIvFnItKuxXfCwflX8T1c4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAzMTE2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTJiNzQwMjk3ODYwMGYwNWM5ZTZlODM2NjM5YzIzYWE0 ZDA0ZTRlNTY1NTcyMTVlNDg2ODVjNjliYjI4ZDI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0dXhtvDrF50zOXoOXOnBnMD0DtkYt5PqFKCi44V3h8jNR BIyVs9jbF9dpE57HQ+yvakbipvxiIntGHWM5rmcdVsmjj8LRBNs+KA4EP8SnEqkJ xktOXhBNIHf3ODCJwWy22ivEXBb8La+CE/0En6F6aU2F8mZlzpQESQOkrlcYBxeE xIEy4u/qu8Wj6rXVh+e16NFfts7JXb0MTibctTJtg+vran0ymqKzcOxCU4eS9tTr r7j1b1iNE7eHcsq0OfM2TI8lsL9eQa1bFQDGkFV/ccnQa03a3ATz4FegXnCD/c1y xfFy6v3Gc5kT2ZuaS6MPI4I3TolCVLy720wt1d+vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa8AdPFKqgEU/eMq5Ajhbzpk/CX4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4NmNlNjUzLWEyNjctNGE5OS1iMGM1LTk5YjJhM2M0NTc5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXFQAwDQYJKoZIhvcNAQELBQADggEBAJxngjjriRHAhsrRIpyEzW3P6TpR gWIVNqSkQxpDhbLOig4ZnGG0GxGRC0fQA9UhmqV/b5XL4mEb7aLtrSOfv4a+zX3D ha4sM5qs3g1c0K8QVv+kpO35vCyEYB1ooBI4jW6fjjG2kF05KGn+2QrrGEaW4DFZ daxTb9uhHOXC+QsTAKF8DEB+MPobK8j/ys1eQLbf6ff0fKlbgydyUl/WeL3OYMB+ 0tqN0vhNG65aBlMUeRFbW4ElVhy/VONubUZ0/YTz4xMw4+1e51kdkoFUEOvZSbU/ kFOFlIhE+5gOzwVmzS7Cb2/CCAd1IBmSBn6Y12nOPMvIKGVEvqdTrC/w2Yw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:27 2025 by rpki-client