$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa File: aa346539-ccae-457c-905d-9a4a3ea91dd1.roa (raw, json) Hash identifier: pAcdsX7Lfm+JNMuXSiofDH0w5lWdAFHtvWrOE8T/Nk0= Subject key identifier: 2B:97:3D:28:4A:77:65:55:F4:1C:C2:74:4D:E1:0E:F2:9D:32:C6:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 618F5FA2DF563C1078C5B72477CC22B695CF50D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa Signing time: Mon 14 Apr 2025 15:21:19 +0000 ROA not before: Mon 14 Apr 2025 15:21:19 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8f:5f:a2:df:56:3c:10:78:c5:b7:24:77:cc:22:b6:95:cf:50:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:21:19 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=78c8f8edc5cb070af695e85f428b219b84495366165a4998d09c15df33b525ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:35:0f:7e:f1:f7:20:1e:d9:c7:ba:d8:f5: 4b:81:cb:fd:0f:af:b8:79:c6:d9:f0:ee:61:05:9b: 87:17:34:0d:67:2f:46:58:6a:fb:e9:b7:1c:52:f1: 83:92:6a:59:5e:fa:f9:e8:c1:45:e3:d1:f9:64:f5: 55:f5:b0:43:c2:db:49:f5:dc:a5:17:1e:d5:1d:18: b8:8b:f1:4b:ba:c6:2d:5f:a2:98:0b:c0:cd:7f:3c: 09:2c:b3:4b:b6:e3:f9:4b:31:9b:30:02:95:82:ea: 59:a9:16:0f:29:2f:53:60:fb:7d:3b:4f:98:43:59: 94:f0:ee:85:48:c1:52:aa:03:10:79:cb:ce:de:5b: 28:b9:8f:bb:98:c1:21:a8:54:fb:74:fc:ca:a5:72: e8:b3:33:b6:f5:00:3c:03:76:e2:8d:0a:27:f0:47: e8:f3:f2:a9:25:fe:43:fc:b5:f2:91:ed:92:79:0a: fe:f0:7d:af:61:59:fc:69:37:e0:24:7f:e1:43:d8: 8c:fe:cb:cd:5e:84:5c:76:04:9d:60:37:fc:3b:a8: ab:94:d9:70:6b:9e:82:b8:a9:83:59:47:ec:2a:8a: ab:22:e7:73:96:e3:ea:fa:a6:f6:98:fe:4c:c3:3e: ac:9b:76:0a:d5:c8:c4:8c:3e:59:8e:23:b6:7b:f9: bb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:97:3D:28:4A:77:65:55:F4:1C:C2:74:4D:E1:0E:F2:9D:32:C6:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption bd:28:5e:58:43:6e:b6:88:1a:2c:cb:61:c7:b7:7f:70:3c:ca: f2:e4:bf:85:61:85:36:e3:35:0c:c2:78:c3:99:f5:ab:0d:ca: 77:7a:1e:3f:55:45:97:e5:14:bc:07:4e:d3:0c:7a:27:8d:0a: 26:b1:77:66:8b:e9:db:0c:f1:fb:21:a7:b9:36:ea:f0:cb:62: bd:85:3a:89:26:28:12:3e:9a:7d:37:c2:29:8f:e0:35:eb:b4: f6:f2:48:0b:1a:ab:31:ed:8c:7a:15:f7:9a:aa:5c:e2:d9:e7: 73:c1:75:08:1b:d3:39:81:0c:e5:d8:b4:62:da:a6:7b:c9:59: 09:ad:bf:6c:4a:bd:81:ed:6c:ce:9d:c9:2d:e8:8b:71:52:00: 79:d0:27:8d:c4:17:04:26:03:8a:33:8e:65:ad:a4:4a:22:d3: d9:89:82:2a:e4:ac:cd:84:92:8a:93:99:46:ba:46:17:6f:d3: 41:6e:86:0e:5c:48:f1:81:bc:97:dd:4c:a2:5b:65:83:9e:be: 80:4a:5f:0f:30:81:2d:16:32:2d:97:cf:79:c5:44:b6:7e:22: 6d:17:b8:40:35:d6:55:11:64:5b:fa:14:cf:e9:9d:a7:db:6a: f5:c5:7a:64:18:80:b2:b5:33:77:55:79:d3:09:58:f2:6c:37: ee:17:26:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYY9fot9WPBB4xbckd8witpXPUNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMTE5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGM4ZjhlZGM1Y2IwNzBhZjY5NWU4NWY0MjhiMjE5Yjg0 NDk1MzY2MTY1YTQ5OThkMDljMTVkZjMzYjUyNWZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1LTUPfvH3IB7Zx7rY9UuBy/0Pr7h5xtnw7mEFm4cXNA1n L0ZYavvptxxS8YOSalle+vnowUXj0flk9VX1sEPC20n13KUXHtUdGLiL8Uu6xi1f opgLwM1/PAkss0u24/lLMZswApWC6lmpFg8pL1Ng+307T5hDWZTw7oVIwVKqAxB5 y87eWyi5j7uYwSGoVPt0/MqlcuizM7b1ADwDduKNCifwR+jz8qkl/kP8tfKR7ZJ5 Cv7wfa9hWfxpN+Akf+FD2Iz+y81ehFx2BJ1gN/w7qKuU2XBrnoK4qYNZR+wqiqsi 53OW4+r6pvaY/kzDPqybdgrVyMSMPlmOI7Z7+bv1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUK5c9KEp3ZVX0HMJ0TeEO8p0yxnIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhMzQ2NTM5LWNjYWUtNDU3Yy05MDVkLTlhNGEzZWE5MWRkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwG4SDANBgkqhkiG9w0BAQsFAAOCAQEAvSheWENutogaLMthx7d/cDzK8uS/ hWGFNuM1DMJ4w5n1qw3Kd3oeP1VFl+UUvAdO0wx6J40KJrF3Zovp2wzx+yGnuTbq 8MtivYU6iSYoEj6afTfCKY/gNeu09vJICxqrMe2MehX3mqpc4tnnc8F1CBvTOYEM 5di0Ytqme8lZCa2/bEq9ge1szp3JLeiLcVIAedAnjcQXBCYDijOOZa2kSiLT2YmC KuSszYSSipOZRrpGF2/TQW6GDlxI8YG8l91Moltlg56+gEpfDzCBLRYyLZfPecVE tn4ibRe4QDXWVRFkW/oUz+mdp9tq9cV6ZBiAsrUzd1V50wlY8mw37hcmsA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:32 2025 by rpki-client