$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bab8791a-2a38-491e-93b8-620d86339e11.roa File: bab8791a-2a38-491e-93b8-620d86339e11.roa (raw, json) Hash identifier: NgLBD5oQk5E3cvhJyQjgPqDVnFuVEy1ozQFmsnsCjek= Subject key identifier: AC:D3:B9:56:AE:F0:DB:70:01:28:2E:FF:39:6C:2A:47:1E:45:45:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C2112A1524599C40B002616BB0B1C824B777F18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bab8791a-2a38-491e-93b8-620d86339e11.roa Signing time: Tue 15 Apr 2025 00:00:15 +0000 ROA not before: Tue 15 Apr 2025 00:00:15 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.144.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:21:12:a1:52:45:99:c4:0b:00:26:16:bb:0b:1c:82:4b:77:7f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:15 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=0d616c12a7f13b2a9f0732e3e581b552d4dc9caaf3bafa1f032cd20f4b222c45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:00:fc:95:cc:1a:db:5a:4b:10:41:94:db: 00:93:60:00:e9:78:f1:05:60:92:2a:1c:59:a4:c0: 46:2c:ce:28:56:05:48:32:ce:1d:56:a1:04:6d:c8: 64:32:49:4e:82:37:cf:9b:33:15:5c:4c:4d:76:49: bf:4b:7f:3c:5d:47:a3:7f:d8:c2:48:8c:05:ff:68: a9:62:8e:2a:26:9c:a1:a8:af:21:73:79:7c:af:98: c1:64:6d:c2:9b:6d:6e:70:6a:b7:ae:ae:70:09:d2: ae:af:04:4c:06:db:42:5a:0e:8f:a8:2b:25:33:ce: 94:e4:4a:81:a7:ba:c0:f6:45:a5:ce:05:e0:24:20: fc:2a:e1:2c:ce:fc:3f:22:48:2d:33:ba:c0:0b:44: ac:c1:49:46:b9:a6:90:d5:f6:ac:43:29:63:74:8b: 26:36:78:fd:ca:1e:2c:57:98:18:73:96:96:52:2b: 37:d0:8a:d3:7e:d0:9c:b5:87:c3:15:9f:59:8f:f2: f9:25:d2:da:f8:73:9b:97:33:e2:59:3c:09:88:25: b4:9c:60:35:f0:68:e1:ab:94:71:12:43:6c:e5:3f: 81:34:7f:c6:56:8c:f9:be:33:e3:2c:06:31:88:af: b3:b5:c0:9b:35:c9:df:33:77:b8:26:d9:75:23:53: 2c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D3:B9:56:AE:F0:DB:70:01:28:2E:FF:39:6C:2A:47:1E:45:45:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bab8791a-2a38-491e-93b8-620d86339e11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.144.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:91:01:54:77:fb:ba:ef:07:6d:d6:70:8e:8d:1d:26:ea:e5: 7c:34:2a:94:3a:70:68:c4:7b:bb:81:da:c6:3e:21:15:d3:3e: 62:ef:d9:c7:79:af:50:f7:b3:cc:4e:e4:f0:28:3f:b9:37:f3: f4:3d:8f:83:c8:c9:4f:af:25:25:3a:f9:4e:d5:77:ec:31:48: 2b:7b:b4:d2:30:55:76:47:a9:b6:b0:0c:f4:0e:e5:f9:08:54: 62:0c:d3:68:96:31:cd:07:94:e0:d2:85:d3:ca:8e:b8:39:fe: ad:c2:9a:21:b2:87:50:1c:0f:15:38:ed:4f:b6:75:54:36:56: 8c:2f:d4:a0:63:57:41:7e:a2:00:ff:d4:ca:cf:61:cd:91:02: 86:81:bb:47:97:a9:a6:c7:ac:e0:19:28:07:f2:de:f9:9e:ce: c7:12:4b:21:de:3c:79:09:23:ee:a9:98:9e:f8:59:d5:c2:57: d6:69:70:04:88:d7:53:64:70:b3:ed:2f:86:ce:15:d4:37:34: cc:e6:48:72:ff:da:b5:55:1c:bb:88:cd:26:b2:77:d4:02:aa: 68:d6:48:09:45:dc:d8:57:60:bb:3e:f1:44:f0:0c:55:66:27: 6b:c8:b6:fb:83:12:ff:30:00:22:06:21:79:0a:26:4c:ef:36: 9e:62:f1:12 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfCESoVJFmcQLACYWuwscgkt3fxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAwMDE1WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDYxNmMxMmE3ZjEzYjJhOWYwNzMyZTNlNTgxYjU1MmQ0 ZGM5Y2FhZjNiYWZhMWYwMzJjZDIwZjRiMjIyYzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjpAD8lcwa21pLEEGU2wCTYADpePEFYJIqHFmkwEYszihW BUgyzh1WoQRtyGQySU6CN8+bMxVcTE12Sb9LfzxdR6N/2MJIjAX/aKlijiomnKGo ryFzeXyvmMFkbcKbbW5wareurnAJ0q6vBEwG20JaDo+oKyUzzpTkSoGnusD2RaXO BeAkIPwq4SzO/D8iSC0zusALRKzBSUa5ppDV9qxDKWN0iyY2eP3KHixXmBhzlpZS KzfQitN+0Jy1h8MVn1mP8vkl0tr4c5uXM+JZPAmIJbScYDXwaOGrlHESQ2zlP4E0 f8ZWjPm+M+MsBjGIr7O1wJs1yd8zd7gm2XUjUywjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrNO5Vq7w23ABKC7/OWwqRx5FRVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhYjg3OTFhLTJhMzgtNDkxZS05M2I4LTYyMGQ4NjMzOWUxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwANkDANBgkqhkiG9w0BAQsFAAOCAQEAcZEBVHf7uu8HbdZwjo0dJurlfDQq lDpwaMR7u4Haxj4hFdM+Yu/Zx3mvUPezzE7k8Cg/uTfz9D2Pg8jJT68lJTr5TtV3 7DFIK3u00jBVdkeptrAM9A7l+QhUYgzTaJYxzQeU4NKF08qOuDn+rcKaIbKHUBwP FTjtT7Z1VDZWjC/UoGNXQX6iAP/Uys9hzZEChoG7R5eppses4BkoB/Le+Z7OxxJL Id48eQkj7qmYnvhZ1cJX1mlwBIjXU2Rws+0vhs4V1Dc0zOZIcv/atVUcu4jNJrJ3 1AKqaNZICUXc2Fdguz7xRPAMVWYna8i2+4MS/zAAIgYheQomTO82nmLxEg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:20 2025 by rpki-client