$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa File: dc633947-b61c-41cb-9d60-602b871ef0ec.roa (raw, json) Hash identifier: GJZsIg349/Wlt+p0AU2EAJrI5xQjO9M+vFvb29/wReE= Subject key identifier: B2:98:03:27:B0:2C:AE:4D:6B:4A:30:8A:BB:D1:FC:BA:2F:D5:CE:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1750D6D23E6D3392921FE530C5C948BBFFBA0975 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa Signing time: Fri 25 Apr 2025 15:00:26 +0000 ROA not before: Fri 25 Apr 2025 15:00:26 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.2.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:50:d6:d2:3e:6d:33:92:92:1f:e5:30:c5:c9:48:bb:ff:ba:09:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:00:26 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1bd811d35c70db9746648a40ffa0f065c8d6cee4843bfa40639fd114f22beaeb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0f:35:50:7f:83:40:15:42:d1:6f:5f:0c:c9: b6:de:6b:a0:e0:2f:4e:fe:cd:3b:10:b3:98:a6:29: f0:06:9f:a6:bc:13:7c:e5:6e:1d:55:52:76:eb:f0: 30:4e:c1:64:b7:74:57:65:e4:1e:98:96:0e:ba:c1: d2:8f:f2:37:34:d3:5a:34:0a:53:49:c8:40:21:0b: 9b:03:eb:a4:80:88:06:da:cf:e7:55:b0:ea:47:2d: bd:ab:2f:56:0e:d1:ea:1c:3f:9e:32:df:32:6a:a6: ba:4f:22:20:e2:16:f1:dd:07:92:1d:97:93:b7:76: 5b:6a:06:1e:a8:52:df:7e:f5:ca:a8:1d:3f:89:63: db:28:9d:59:69:3d:7b:8c:f5:be:55:2b:43:c1:ba: 3f:e2:6b:92:b6:e6:bb:a5:28:35:ce:a8:2c:69:95: da:6a:29:3a:8e:b6:7d:d0:55:55:b6:b2:20:35:f9: 62:1c:30:39:8b:6c:1b:60:a0:49:d0:8c:8b:e5:26: b8:ab:c7:f1:b3:0d:c9:f8:a3:f9:8c:21:0d:b6:74: 19:d6:8e:3e:0c:f8:44:2b:b7:98:da:63:f5:80:0d: b6:c8:7e:e5:72:8f:e6:82:c6:71:3b:2a:94:84:bd: 77:46:a8:5f:51:23:38:5e:4c:d4:f2:ed:05:b3:7c: f4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:98:03:27:B0:2C:AE:4D:6B:4A:30:8A:BB:D1:FC:BA:2F:D5:CE:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.2.16.0/23 Signature Algorithm: sha256WithRSAEncryption d3:52:05:7c:cf:6c:45:4f:0d:0a:6c:77:d3:00:5d:d3:42:aa: e4:31:b1:ed:b6:f7:6f:91:44:c9:df:20:d9:2a:11:1e:0e:ed: 09:07:9b:eb:31:48:f6:ea:f8:3a:ba:df:81:63:ee:18:22:94: e8:57:3b:a8:d8:31:29:4f:c1:0c:5a:ba:1d:09:8a:51:74:62: 07:d1:7c:f2:3e:c8:9b:66:34:8b:c4:96:69:8c:6c:ab:47:3c: 99:b0:f2:86:8b:97:90:18:0b:fa:6d:b3:da:a7:f4:75:10:5e: 2a:93:5d:f1:98:f5:e9:7f:d4:20:96:18:98:4d:7e:1d:46:52: e4:e8:f6:8d:fa:dd:8d:79:e7:c6:c9:25:ef:cd:3e:a6:ae:e3: e6:64:9f:b3:42:1d:de:c8:5b:3f:de:1b:21:18:09:36:2b:e2: 6a:f7:f0:67:ef:2a:37:ca:2e:a1:3e:d9:f3:39:42:33:a0:0e: 30:58:93:87:0c:c1:f6:8e:14:32:f8:d9:83:c8:89:3d:12:9a: 70:48:83:2a:91:81:e9:8a:e0:2e:ff:57:ae:93:45:42:15:ad: a2:6d:fa:73:d9:75:0d:ae:63:e9:76:50:7b:3a:93:f0:4c:31: c1:92:a3:99:c4:f8:b6:e9:96:b2:64:04:de:1c:3b:52:d7:69: 4a:30:b3:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF1DW0j5tM5KSH+UwxclIu/+6CXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMDI2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmQ4MTFkMzVjNzBkYjk3NDY2NDhhNDBmZmEwZjA2NWM4 ZDZjZWU0ODQzYmZhNDA2MzlmZDExNGYyMmJlYWViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIDzVQf4NAFULRb18Mybbea6DgL07+zTsQs5imKfAGn6a8 E3zlbh1VUnbr8DBOwWS3dFdl5B6Ylg66wdKP8jc001o0ClNJyEAhC5sD66SAiAba z+dVsOpHLb2rL1YO0eocP54y3zJqprpPIiDiFvHdB5Idl5O3dltqBh6oUt9+9cqo HT+JY9sonVlpPXuM9b5VK0PBuj/ia5K25rulKDXOqCxpldpqKTqOtn3QVVW2siA1 +WIcMDmLbBtgoEnQjIvlJrirx/GzDcn4o/mMIQ22dBnWjj4M+EQrt5jaY/WADbbI fuVyj+aCxnE7KpSEvXdGqF9RIzheTNTy7QWzfPTNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUspgDJ7Asrk1rSjCKu9H8ui/VzlowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjNjMzOTQ3LWI2MWMtNDFjYi05ZDYwLTYwMmI4NzFlZjBlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFBAhAwDQYJKoZIhvcNAQELBQADggEBANNSBXzPbEVPDQpsd9MAXdNCquQx se2292+RRMnfINkqER4O7QkHm+sxSPbq+Dq634Fj7hgilOhXO6jYMSlPwQxauh0J ilF0YgfRfPI+yJtmNIvElmmMbKtHPJmw8oaLl5AYC/pts9qn9HUQXiqTXfGY9el/ 1CCWGJhNfh1GUuTo9o363Y1558bJJe/NPqau4+Zkn7NCHd7IWz/eGyEYCTYr4mr3 8GfvKjfKLqE+2fM5QjOgDjBYk4cMwfaOFDL42YPIiT0SmnBIgyqRgemK4C7/V66T RUIVraJt+nPZdQ2uY+l2UHs6k/BMMcGSo5nE+LbplrJkBN4cO1LXaUowsy4= -----END CERTIFICATE-----Generated at Sat Apr 26 20:25:50 2025 by rpki-client