$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa File: da395588-d89b-4035-b834-7552c1e5a259.roa (raw, json) Hash identifier: 84TQYqrc3pZ/keAN7HED+4LyJfCLzHJbQ+Bzd4kQh7s= Subject key identifier: 3A:14:04:31:32:F9:FE:66:AD:6A:1D:75:CF:7E:95:F8:17:CF:3C:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32122F05D90AD502BC01CE052343FFFFA14B6D18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa Signing time: Fri 04 Apr 2025 00:21:11 +0000 ROA not before: Fri 04 Apr 2025 00:21:11 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:12:2f:05:d9:0a:d5:02:bc:01:ce:05:23:43:ff:ff:a1:4b:6d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:21:11 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=feda1164320d979cf9a643ea15dd7876fcc3f736efc6d03911c1a6026182d5b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b1:c7:66:43:0b:35:e6:82:70:75:76:12:6c: 3d:85:40:3e:1f:2c:02:88:50:9c:09:3a:04:f4:ad: fa:9f:f1:ed:82:1d:2c:05:ce:a4:a4:56:52:f7:f6: f6:b9:0e:fd:43:d1:11:92:b7:a7:82:ba:c9:2b:9e: 57:6f:6b:b0:30:ed:b1:11:23:e2:1f:ff:11:6b:8f: 5c:e8:8f:87:51:e6:48:a3:a2:da:c3:7b:86:b9:84: 02:c1:00:ee:54:02:ff:f2:3e:d3:dc:ea:f0:04:b5: e1:2c:a2:12:d0:39:f3:12:4a:be:c3:94:85:63:6a: d7:8c:0e:08:44:9f:8c:c1:4c:66:03:b1:2f:0f:90: 0f:b4:f0:23:c2:c0:39:9b:58:02:52:7a:a5:aa:9f: 6a:ff:e0:b3:ad:35:79:de:87:f9:30:b1:71:c8:eb: 0f:1e:ee:5c:58:db:6b:21:b2:bc:1a:6a:22:28:fd: 2a:c3:f0:60:05:06:76:45:9f:2f:f8:35:4c:d0:a5: 2f:cb:1c:57:4e:cf:d7:0a:3e:e3:fe:b7:3e:6d:e3: 67:dd:1f:14:67:c6:f9:62:6e:8e:aa:d5:75:cb:96: 5d:07:93:b0:fa:0e:91:18:64:ec:fc:e0:84:49:5a: f7:56:65:8f:67:c6:35:14:ee:77:12:83:88:84:9c: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:14:04:31:32:F9:FE:66:AD:6A:1D:75:CF:7E:95:F8:17:CF:3C:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 25:99:dc:f2:65:1a:38:74:8c:4a:2c:2e:5a:be:0f:d8:15:16: d1:ac:66:42:b6:1b:13:c8:72:3e:1f:7b:22:5f:2a:66:4d:96: 72:3c:d8:cb:bf:e7:b3:90:20:3d:91:34:fe:b4:7f:92:9b:ec: 6a:d5:b3:28:af:79:17:75:f9:36:64:49:f8:18:72:30:70:b0: 61:12:49:7d:f4:b9:9c:b1:7b:db:ab:b4:40:00:98:c6:99:0e: d9:b0:04:a9:92:4d:33:a3:16:74:37:e7:1d:fe:8a:c8:da:19: 6b:9d:5b:f0:a3:bc:85:86:8e:84:79:30:95:b0:eb:a1:da:f0: 7f:aa:73:43:ad:cd:a1:c5:fb:91:28:be:fc:91:01:21:79:2e: 21:cd:fa:4b:45:1c:f0:bb:fd:22:5b:15:ca:76:9f:66:e4:f1: 3a:52:63:dc:bf:68:06:b2:6e:14:47:74:de:f3:4b:a6:48:5d: b5:77:83:73:f0:02:eb:e3:e9:ed:55:56:f1:59:a2:ce:34:83: 23:da:a9:45:d7:fa:c6:d4:cf:d1:5c:13:36:4d:1c:c2:1c:67: 33:6c:08:91:06:82:a5:f6:3d:61:81:4a:4a:62:41:59:81:3b: 5d:5c:6c:c1:23:0c:cd:6a:1a:ec:e2:ea:6e:3d:14:6a:21:e1: 3d:1b:db:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMhIvBdkK1QK8Ac4FI0P//6FLbRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAyMTExWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWRhMTE2NDMyMGQ5NzljZjlhNjQzZWExNWRkNzg3NmZj YzNmNzM2ZWZjNmQwMzkxMWMxYTYwMjYxODJkNWIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXscdmQws15oJwdXYSbD2FQD4fLAKIUJwJOgT0rfqf8e2C HSwFzqSkVlL39va5Dv1D0RGSt6eCuskrnldva7Aw7bERI+If/xFrj1zoj4dR5kij otrDe4a5hALBAO5UAv/yPtPc6vAEteEsohLQOfMSSr7DlIVjateMDghEn4zBTGYD sS8PkA+08CPCwDmbWAJSeqWqn2r/4LOtNXneh/kwsXHI6w8e7lxY22shsrwaaiIo /SrD8GAFBnZFny/4NUzQpS/LHFdOz9cKPuP+tz5t42fdHxRnxvlibo6q1XXLll0H k7D6DpEYZOz84IRJWvdWZY9nxjUU7ncSg4iEnH/1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOhQEMTL5/matah11z36V+BfPPHcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMzk1NTg4LWQ4OWItNDAzNS1iODM0LTc1NTJjMWU1YTI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBACWZ3PJlGjh0jEosLlq+D9gVFtGs ZkK2GxPIcj4feyJfKmZNlnI82Mu/57OQID2RNP60f5Kb7GrVsyiveRd1+TZkSfgY cjBwsGESSX30uZyxe9urtEAAmMaZDtmwBKmSTTOjFnQ35x3+isjaGWudW/CjvIWG joR5MJWw66Ha8H+qc0OtzaHF+5EovvyRASF5LiHN+ktFHPC7/SJbFcp2n2bk8TpS Y9y/aAaybhRHdN7zS6ZIXbV3g3PwAuvj6e1VVvFZos40gyPaqUXX+sbUz9FcEzZN HMIcZzNsCJEGgqX2PWGBSkpiQVmBO11cbMEjDM1qGuzi6m49FGoh4T0b22M= -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:53 2025 by rpki-client