$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa File: d6b24275-0a40-4f1f-b043-0d914be98547.roa (raw, json) Hash identifier: PhbozfjFL/ixdLFXW5qeeostFXETwhdpuysnnar4wgA= Subject key identifier: 30:87:3D:1C:F7:11:09:66:37:D3:5C:BE:22:CE:A4:31:F8:51:C1:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5902C578BFDB7F92D4D112C42D6DA6287627A759 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa Signing time: Mon 07 Apr 2025 15:11:32 +0000 ROA not before: Mon 07 Apr 2025 15:11:32 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:02:c5:78:bf:db:7f:92:d4:d1:12:c4:2d:6d:a6:28:76:27:a7:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:11:32 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=475f912c81a869c12e9cc7fa961bbd5411038f84659addfd923738fbabb5bb33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:25:de:3f:ae:22:e6:d3:df:78:c4:bf:cf:65: eb:16:1c:90:ea:28:a5:c2:65:bc:da:2b:f2:08:57: 47:67:ca:4d:5a:b3:6e:51:ab:a6:3a:03:d8:cd:39: b4:25:d5:74:a2:ac:5d:9a:bd:dd:bd:21:8a:12:46: 6b:73:ec:0d:55:46:09:1d:08:1b:32:b6:aa:9d:c1: 22:a8:cb:95:bd:c7:2a:39:e0:53:19:a0:ce:05:26: ae:a0:36:c3:51:23:a4:cf:5c:b2:e7:74:f8:36:8a: 90:a4:c3:cc:e8:51:96:38:0b:6b:a4:06:19:a8:4a: 63:81:87:f3:1a:db:63:8f:1c:3d:9b:a7:77:ab:af: 61:6b:a6:08:38:d5:7a:a6:e5:5f:9b:d0:5f:39:e0: f3:af:98:c7:57:ff:41:87:ba:6c:bb:a6:d0:e6:f6: 8b:54:82:3e:9f:8e:dd:85:ec:25:68:e2:7c:37:7f: 24:b4:eb:98:5b:9f:73:c0:30:c2:41:87:81:dd:af: 23:c6:3b:fc:71:05:eb:6f:72:e4:9a:18:e7:ab:09: 5d:37:d2:0e:62:06:0b:2f:ad:11:5c:86:ef:b7:63: 23:17:0e:62:ff:08:31:0b:90:7d:38:1e:e6:be:f7: 9f:36:fe:45:cc:da:eb:ce:16:92:51:42:a2:f0:3f: c1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:87:3D:1C:F7:11:09:66:37:D3:5C:BE:22:CE:A4:31:F8:51:C1:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:b3:bf:55:b2:50:11:88:5c:6f:b8:ba:a2:a7:90:94:79:cc: bc:5d:ca:f4:37:ec:aa:36:02:5a:b4:c4:d4:8d:20:88:06:db: b0:ff:00:df:26:b8:ed:8f:d0:46:89:21:87:cb:d6:b4:f3:5b: a8:d0:9b:57:9c:20:09:e4:7d:37:6b:43:25:2f:19:13:a8:62: 53:89:97:3b:13:16:22:63:f4:eb:f1:f3:a9:4b:4b:f0:79:9c: 87:2a:a5:c8:87:7e:54:f3:ce:71:86:4a:95:6e:03:0d:b0:88: 58:54:3d:1b:54:46:ca:8f:6c:2b:d7:dd:da:cf:fa:0a:ee:7a: 1a:3b:06:89:d5:dc:31:4f:b2:84:50:73:ca:67:b6:e2:56:6c: ba:6b:87:6f:d4:70:7a:64:c5:f0:9f:bd:24:b4:be:95:4d:05: c5:f0:58:dd:05:47:cb:38:6e:4f:5d:f4:63:08:22:b5:c1:3b: 5e:ba:9e:50:a2:fd:6d:4b:88:d2:19:3e:9f:b8:5e:51:ab:db: c4:0c:45:8f:cf:c1:bb:2a:28:84:39:a2:19:63:a4:f9:02:ea: 11:df:33:5d:1b:af:be:73:94:93:d3:f2:48:9c:38:90:30:ba: 0a:a0:01:7a:85:0e:84:22:14:0b:f3:7d:54:5d:1b:09:46:38: a0:12:9a:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWQLFeL/bf5LU0RLELW2mKHYnp1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUxMTMyWhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzVmOTEyYzgxYTg2OWMxMmU5Y2M3ZmE5NjFiYmQ1NDEx MDM4Zjg0NjU5YWRkZmQ5MjM3MzhmYmFiYjViYjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVJd4/riLm0994xL/PZesWHJDqKKXCZbzaK/IIV0dnyk1a s25Rq6Y6A9jNObQl1XSirF2avd29IYoSRmtz7A1VRgkdCBsytqqdwSKoy5W9xyo5 4FMZoM4FJq6gNsNRI6TPXLLndPg2ipCkw8zoUZY4C2ukBhmoSmOBh/Ma22OPHD2b p3err2Frpgg41Xqm5V+b0F854POvmMdX/0GHumy7ptDm9otUgj6fjt2F7CVo4nw3 fyS065hbn3PAMMJBh4HdryPGO/xxBetvcuSaGOerCV030g5iBgsvrRFchu+3YyMX DmL/CDELkH04Hua+9582/kXM2uvOFpJRQqLwP8GvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMIc9HPcRCWY301y+Is6kMfhRwTkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2YjI0Mjc1LTBhNDAtNGYxZi1iMDQzLTBkOTE0YmU5ODU0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg3TANBgkqhkiG9w0BAQsFAAOCAQEADrO/VbJQEYhcb7i6oqeQlHnMvF3K 9DfsqjYCWrTE1I0giAbbsP8A3ya47Y/QRokhh8vWtPNbqNCbV5wgCeR9N2tDJS8Z E6hiU4mXOxMWImP06/HzqUtL8HmchyqlyId+VPPOcYZKlW4DDbCIWFQ9G1RGyo9s K9fd2s/6Cu56GjsGidXcMU+yhFBzyme24lZsumuHb9RwemTF8J+9JLS+lU0FxfBY 3QVHyzhuT130YwgitcE7XrqeUKL9bUuI0hk+n7heUavbxAxFj8/BuyoohDmiGWOk +QLqEd8zXRuvvnOUk9PySJw4kDC6CqABeoUOhCIUC/N9VF0bCUY4oBKamA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:36 2025 by rpki-client