$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b638a86e-2174-4795-b7a4-540333a16485.roa File: b638a86e-2174-4795-b7a4-540333a16485.roa (raw, json) Hash identifier: tCEvPE99AN3VT0F+5iOCUjpfS4CjxTvWHg+y2gm9tvg= Subject key identifier: F5:7D:9E:8D:C2:D0:1B:19:8E:AD:5E:1B:54:66:57:41:9C:09:50:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 9A0E9E633DEC65BF4C1B75918F75FCBDDCCB5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b638a86e-2174-4795-b7a4-540333a16485.roa Signing time: Wed 02 Apr 2025 00:21:46 +0000 ROA not before: Wed 02 Apr 2025 00:21:46 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9a:0e:9e:63:3d:ec:65:bf:4c:1b:75:91:8f:75:fc:bd:dc:cb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 2 00:21:46 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: serialNumber=5723e4139570eccc0949126f9ca52e56315bfddf622b80daa7db0a7509948fd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:8f:41:18:4a:d3:fc:fe:58:e9:44:12:d4: 9d:0a:85:b8:15:04:fa:54:85:c4:3d:e5:42:4c:09: 82:d6:b7:e7:76:07:96:16:44:8a:3c:7f:b0:d0:13: 00:05:ab:49:74:7c:14:91:7f:9f:30:62:64:bd:6e: 8a:a3:7d:77:b7:ab:32:9d:93:b1:6c:a5:4c:40:2d: 34:2a:24:b3:4b:8b:ca:ae:9a:df:c4:6f:1b:58:88: e4:1e:d6:13:cc:11:48:2f:9e:15:93:77:4a:25:d9: ca:43:9f:ab:98:45:77:86:93:a3:a8:77:d8:8d:d6: 1e:8f:c9:02:7c:fd:49:c7:43:10:43:c4:7a:41:0f: b9:77:e8:5a:f5:5d:79:b6:09:e7:d7:b6:07:b2:a4: e0:c4:43:95:a9:dd:fd:fd:9e:60:62:53:f0:6a:99: f7:cc:f6:19:42:91:6f:fd:ed:bf:f4:62:c9:33:5d: 55:ce:6d:3a:07:8c:70:6e:e0:f1:80:35:1f:82:5d: 3f:cc:75:b6:ae:11:9c:de:5a:ca:70:d5:86:01:c7: 9a:77:55:7d:22:c2:63:21:73:ec:05:d8:92:cd:03: 8e:08:07:01:6b:ce:4c:e8:20:0b:d6:6f:d2:3f:0c: 3b:f5:5b:ac:0b:7c:23:17:48:f4:30:54:53:8e:98: 58:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7D:9E:8D:C2:D0:1B:19:8E:AD:5E:1B:54:66:57:41:9C:09:50:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b638a86e-2174-4795-b7a4-540333a16485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:80:57:52:5a:6b:f3:55:08:e6:6b:cf:cf:d5:39:09:ae:2e: d9:63:78:cf:36:4a:00:64:12:49:ec:ea:ad:ca:17:6b:6a:ef: 01:66:45:e2:60:d2:c7:71:d0:b6:2e:88:2c:c9:95:c9:98:30: 0f:11:b2:4a:40:53:ef:1a:ad:1c:94:fb:8f:01:b1:41:73:76: 6c:68:56:39:1f:20:ef:11:7a:23:3b:6e:f9:f4:27:b5:ad:29: 60:d9:7c:a4:3f:cc:25:ce:a9:6d:e5:b9:d2:db:3a:53:a8:06: 9a:18:a9:b5:a5:ab:6e:d0:90:31:61:c5:08:0e:fd:e6:15:ab: 4c:8d:78:b9:33:1a:5b:04:90:92:58:fc:40:2e:b2:50:5b:80: 82:3e:32:03:51:34:75:be:c7:7d:f5:e4:9f:0a:e3:ca:28:be: a0:eb:a6:ce:6e:0f:6d:74:67:d0:8b:b0:23:ae:32:17:2f:61: fa:5b:56:9c:fd:54:9e:3a:c2:08:0b:75:a6:f6:4e:56:e3:c2: f7:15:8a:dc:18:5b:81:bc:f9:e8:24:5c:38:e4:81:7e:54:97: 6b:1c:2d:2a:3c:13:04:52:0b:6e:11:6e:7e:ad:e5:79:bb:57: 98:02:78:b1:34:2e:bb:d2:f0:6a:9e:ba:f9:8a:18:6c:43:91: 3e:28:04:3f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAJoOnmM97GW/TBt1kY91/L3cy1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAyMDAyMTQ2WhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzIzZTQxMzk1NzBlY2NjMDk0OTEyNmY5Y2E1MmU1NjMx NWJmZGRmNjIyYjgwZGFhN2RiMGE3NTA5OTQ4ZmQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7P49BGErT/P5Y6UQS1J0KhbgVBPpUhcQ95UJMCYLWt+d2 B5YWRIo8f7DQEwAFq0l0fBSRf58wYmS9boqjfXe3qzKdk7FspUxALTQqJLNLi8qu mt/EbxtYiOQe1hPMEUgvnhWTd0ol2cpDn6uYRXeGk6Ood9iN1h6PyQJ8/UnHQxBD xHpBD7l36Fr1XXm2CefXtgeypODEQ5Wp3f39nmBiU/BqmffM9hlCkW/97b/0Yskz XVXObToHjHBu4PGANR+CXT/MdbauEZzeWspw1YYBx5p3VX0iwmMhc+wF2JLNA44I BwFrzkzoIAvWb9I/DDv1W6wLfCMXSPQwVFOOmFjVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9X2ejcLQGxmOrV4bVGZXQZwJUDQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2MzhhODZlLTIxNzQtNDc5NS1iN2E0LTU0MDMzM2ExNjQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2KzANBgkqhkiG9w0BAQsFAAOCAQEARIBXUlpr81UI5mvPz9U5Ca4u2WN4 zzZKAGQSSezqrcoXa2rvAWZF4mDSx3HQti6ILMmVyZgwDxGySkBT7xqtHJT7jwGx QXN2bGhWOR8g7xF6Iztu+fQnta0pYNl8pD/MJc6pbeW50ts6U6gGmhiptaWrbtCQ MWHFCA795hWrTI14uTMaWwSQklj8QC6yUFuAgj4yA1E0db7HffXknwrjyii+oOum zm4PbXRn0IuwI64yFy9h+ltWnP1UnjrCCAt1pvZOVuPC9xWK3Bhbgbz56CRcOOSB flSXaxwtKjwTBFILbhFufq3lebtXmAJ4sTQuu9Lwap66+YoYbEORPigEPw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:12 2025 by rpki-client