$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7f33625-7927-4957-945b-d3e811e14c39.roa File: d7f33625-7927-4957-945b-d3e811e14c39.roa (raw, json) Hash identifier: UMaz5kkTSSc9DKEToKVpK1IwzEYzojmAn7MSezKIj9M= Subject key identifier: B7:BF:D5:41:69:2F:C4:A5:8C:CC:4F:9E:5F:07:09:59:A5:70:90:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09174836519C3CEC5F50A3B59950656F4C706AD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7f33625-7927-4957-945b-d3e811e14c39.roa Signing time: Fri 25 Apr 2025 15:00:18 +0000 ROA not before: Fri 25 Apr 2025 15:00:18 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.176.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:17:48:36:51:9c:3c:ec:5f:50:a3:b5:99:50:65:6f:4c:70:6a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:00:18 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f633e7e4c71bf219bf63a43bfedf548a6ad2e74a4f55a013693901efbdc381e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b6:82:bf:be:5a:85:ac:d5:b0:98:d6:14:73: 0d:0b:1f:73:89:5f:14:13:3c:87:c2:76:e8:e4:9f: b8:01:bd:a5:43:cf:01:e9:a8:a5:38:0e:6c:81:f7: c7:b5:6d:73:82:fd:d2:cb:0c:80:10:2a:19:52:6c: e3:3d:34:ba:00:a8:88:c3:b6:11:1a:c0:4f:49:dc: 9b:bc:6b:68:99:d5:08:b6:4f:86:a8:66:38:88:12: f3:07:2f:de:45:f2:2b:7a:50:64:e1:c9:8d:78:cc: 2c:24:75:65:29:06:83:6e:99:cc:ca:a3:b7:dd:36: 26:c7:d3:bb:66:f2:f4:c3:29:aa:01:fb:3a:85:4e: 56:c2:1d:1c:fc:19:7c:8b:be:f0:04:32:3c:2e:d2: 19:d3:91:06:19:bd:29:cf:38:50:e9:87:27:9f:d0: e9:2c:ec:60:60:d1:2f:c1:2d:65:b1:eb:57:35:cc: a0:bb:d0:3b:40:51:06:21:16:aa:36:45:19:c5:34: 8e:49:98:e4:31:bd:60:b7:42:a6:1f:74:5d:b2:07: fe:68:da:e8:db:d3:0c:51:fb:40:f8:13:9b:02:33: 5e:da:1f:68:f0:ac:bd:58:8d:59:70:e5:b7:bd:3a: 77:eb:0f:b2:63:9a:c0:55:62:cc:18:c8:26:95:e2: 3a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:BF:D5:41:69:2F:C4:A5:8C:CC:4F:9E:5F:07:09:59:A5:70:90:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7f33625-7927-4957-945b-d3e811e14c39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.176.0.0/12 Signature Algorithm: sha256WithRSAEncryption 10:13:8e:1b:c9:7c:1e:76:8b:46:20:67:21:5a:c3:ad:2d:ed: 40:2a:a9:78:10:14:87:8e:4d:c0:50:6d:0f:14:88:27:06:22: 6e:24:9b:4f:61:69:da:85:30:3c:1d:7f:2f:b8:16:68:3b:42: 0d:7d:be:f1:24:bf:19:ba:78:7a:db:73:01:96:88:1e:04:d2: 6a:7e:ac:79:56:15:69:13:05:02:c4:b9:1f:e0:58:74:dc:14: e6:ed:f1:1f:08:5f:20:07:cd:15:75:0c:ca:4b:1d:65:71:1b: 03:bb:ef:fe:75:54:ba:dd:b0:50:80:0e:26:72:f9:71:0f:9f: 4c:bd:e1:d9:db:c5:62:ea:16:e6:dd:9b:3b:40:9d:60:48:50: 04:94:8d:82:8c:4e:f4:d3:e0:d1:87:d0:a1:aa:da:57:a0:40: 96:ff:6b:c9:7a:88:3f:18:35:df:6a:c3:f4:06:1d:14:70:f8: de:9d:b2:0e:06:55:66:0a:51:e3:eb:7f:50:fd:12:1c:97:07: 84:8c:10:59:8d:4f:83:04:da:82:6c:53:5d:8e:ad:57:5f:d8: 9f:5a:4f:01:eb:a8:d7:07:13:ba:e1:b0:5c:57:08:77:ef:15: 4a:70:9d:71:d1:cb:e7:7d:4c:3e:28:f1:63:e3:7f:22:14:14: 01:29:45:e6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCRdINlGcPOxfUKO1mVBlb0xwatUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMDE4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjMzZTdlNGM3MWJmMjE5YmY2M2E0M2JmZWRmNTQ4YTZh ZDJlNzRhNGY1NWEwMTM2OTM5MDFlZmJkYzM4MWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChtoK/vlqFrNWwmNYUcw0LH3OJXxQTPIfCdujkn7gBvaVD zwHpqKU4DmyB98e1bXOC/dLLDIAQKhlSbOM9NLoAqIjDthEawE9J3Ju8a2iZ1Qi2 T4aoZjiIEvMHL95F8it6UGThyY14zCwkdWUpBoNumczKo7fdNibH07tm8vTDKaoB +zqFTlbCHRz8GXyLvvAEMjwu0hnTkQYZvSnPOFDphyef0Oks7GBg0S/BLWWx61c1 zKC70DtAUQYhFqo2RRnFNI5JmOQxvWC3QqYfdF2yB/5o2ujb0wxR+0D4E5sCM17a H2jwrL1YjVlw5be9OnfrD7JjmsBVYswYyCaV4jotAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUt7/VQWkvxKWMzE+eXwcJWaVwkHowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3ZjMzNjI1LTc5MjctNDk1Ny05NDViLWQzZTgxMWUxNGMzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ/sDANBgkqhkiG9w0BAQsFAAOCAQEAEBOOG8l8HnaLRiBnIVrDrS3tQCqp eBAUh45NwFBtDxSIJwYibiSbT2Fp2oUwPB1/L7gWaDtCDX2+8SS/Gbp4ettzAZaI HgTSan6seVYVaRMFAsS5H+BYdNwU5u3xHwhfIAfNFXUMyksdZXEbA7vv/nVUut2w UIAOJnL5cQ+fTL3h2dvFYuoW5t2bO0CdYEhQBJSNgoxO9NPg0YfQoaraV6BAlv9r yXqIPxg132rD9AYdFHD43p2yDgZVZgpR4+t/UP0SHJcHhIwQWY1PgwTagmxTXY6t V1/Yn1pPAeuo1wcTuuGwXFcId+8VSnCdcdHL531MPijxY+N/IhQUASlF5g== -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:05 2025 by rpki-client