$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa File: acee793e-e4d8-4c60-8711-8877a8378aa0.roa (raw, json) Hash identifier: 6PPlBD8LQfYEm7/YKxJz5gl07CzNuSTcZtrkIfn/7HU= Subject key identifier: 0C:98:B4:84:28:1D:78:5F:86:1E:F7:EB:E3:00:7B:1E:53:C5:E3:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55AD7C2A59398BF21783116E593DB53948F7928A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa Signing time: Sat 12 Apr 2025 00:20:51 +0000 ROA not before: Sat 12 Apr 2025 00:20:51 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ad:7c:2a:59:39:8b:f2:17:83:11:6e:59:3d:b5:39:48:f7:92:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:20:51 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=44c8da22e53c56f7ccced10ce7d437b4f225c2e6fb970d1d3000985019f46ad0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ef:87:c5:cc:8a:58:9a:16:24:6a:82:c6:82: 20:ef:82:a2:f8:ae:12:ed:b9:65:ca:38:8d:ec:44: f7:81:6a:5b:75:65:91:99:6a:2f:b6:cc:78:a5:82: fc:b5:c7:f6:8f:a6:40:4f:30:a4:25:db:ab:94:90: ec:e6:5b:b6:35:da:73:bf:43:d2:73:1e:6c:23:a4: 9d:18:19:4b:49:cf:72:55:26:3f:0d:ff:e2:89:d1: c0:08:36:17:11:97:ff:8b:88:2d:13:80:bb:f4:cf: ac:c5:c2:f2:fc:52:a3:eb:ee:2c:25:94:a4:b7:64: 78:10:d8:1b:5d:81:2e:ae:b5:49:d5:ee:cc:d4:42: eb:ac:79:27:0e:47:fd:82:d1:2b:a3:55:18:09:3d: e1:09:f6:1f:ab:be:e3:a8:74:e5:af:63:6a:20:1e: db:42:98:f3:1c:f4:8c:db:bc:45:7e:6a:ed:c8:a1: 66:4f:c1:ef:48:70:3c:51:1c:25:ab:1b:ab:11:91: e0:03:ea:82:71:9a:ea:a4:c9:4a:4a:bb:09:94:27: 27:f9:8a:4a:5c:31:f5:49:0e:7d:4f:8e:0a:7f:8d: 9d:86:b3:94:d1:2d:15:77:97:c6:9a:4e:b4:d5:8a: 6a:3f:33:d4:31:32:4f:95:5b:a9:8f:bc:39:8a:2f: 3c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:98:B4:84:28:1D:78:5F:86:1E:F7:EB:E3:00:7B:1E:53:C5:E3:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.188.0/22 Signature Algorithm: sha256WithRSAEncryption 42:fa:13:f0:04:98:18:49:05:d9:c0:57:f4:56:89:9d:15:c1: 9a:83:3a:be:f0:e8:c1:0f:f6:c8:bb:e2:db:32:60:0d:87:0a: 56:78:ea:36:1f:b9:cb:a7:dc:1a:5c:10:aa:d9:ce:8e:a8:cd: b7:4d:5d:a9:08:d2:a3:c2:59:d1:ce:e9:c7:f8:1b:5a:01:a0: ba:d1:0b:44:95:93:92:3f:f9:9a:a8:39:27:f0:7a:02:f6:a1: 80:21:64:b7:00:38:3b:f2:bb:9f:55:98:18:e1:60:79:8f:5f: b2:ba:70:f6:30:29:30:68:95:b9:35:4c:63:59:2c:03:7d:42: 35:05:24:72:3e:6d:c7:63:22:33:17:73:c2:f9:82:13:09:2e: fb:1a:9e:58:ba:6d:23:2c:f6:ad:0e:4d:29:96:5a:66:9c:ea: 98:81:d0:c4:a8:1e:d7:35:64:c5:74:dc:f6:3d:4a:5a:07:0b: 8f:f7:92:ef:13:d8:04:df:da:f5:d4:fa:40:c7:c1:ca:22:70: 68:01:c4:56:2a:35:fe:64:bf:e3:83:aa:bb:22:f3:0b:d8:02: dc:16:9a:09:04:74:43:e9:da:24:66:f5:9e:f3:55:27:5d:6a: b7:c1:64:3a:6e:53:b4:f7:06:18:f6:7e:c9:1b:13:2e:b9:84: e8:08:76:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVa18Klk5i/IXgxFuWT21OUj3koowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAyMDUxWhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGM4ZGEyMmU1M2M1NmY3Y2NjZWQxMGNlN2Q0MzdiNGYy MjVjMmU2ZmI5NzBkMWQzMDAwOTg1MDE5ZjQ2YWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH74fFzIpYmhYkaoLGgiDvgqL4rhLtuWXKOI3sRPeBalt1 ZZGZai+2zHilgvy1x/aPpkBPMKQl26uUkOzmW7Y12nO/Q9JzHmwjpJ0YGUtJz3JV Jj8N/+KJ0cAINhcRl/+LiC0TgLv0z6zFwvL8UqPr7iwllKS3ZHgQ2BtdgS6utUnV 7szUQuuseScOR/2C0SujVRgJPeEJ9h+rvuOodOWvY2ogHttCmPMc9IzbvEV+au3I oWZPwe9IcDxRHCWrG6sRkeAD6oJxmuqkyUpKuwmUJyf5ikpcMfVJDn1Pjgp/jZ2G s5TRLRV3l8aaTrTVimo/M9QxMk+VW6mPvDmKLzz9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDJi0hCgdeF+GHvfr4wB7HlPF448wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWU3OTNlLWU0ZDgtNGM2MC04NzExLTg4NzdhODM3OGFhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LwwDQYJKoZIhvcNAQELBQADggEBAEL6E/AEmBhJBdnAV/RWiZ0VwZqD Or7w6MEP9si74tsyYA2HClZ46jYfucun3BpcEKrZzo6ozbdNXakI0qPCWdHO6cf4 G1oBoLrRC0SVk5I/+ZqoOSfwegL2oYAhZLcAODvyu59VmBjhYHmPX7K6cPYwKTBo lbk1TGNZLAN9QjUFJHI+bcdjIjMXc8L5ghMJLvsanli6bSMs9q0OTSmWWmac6piB 0MSoHtc1ZMV03PY9SloHC4/3ku8T2ATf2vXU+kDHwcoicGgBxFYqNf5kv+ODqrsi 8wvYAtwWmgkEdEPp2iRm9Z7zVSddarfBZDpuU7T3Bhj2fskbEy65hOgIdvg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:26:46 2025 by rpki-client