$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa File: dfeccc68-b535-451a-9cc7-983817c87adf.roa (raw, json) Hash identifier: 08Yr7MhdMoKnbVchMfBZpK1NNaFs9NH0zccV+n0TtBQ= Subject key identifier: E5:82:10:E5:73:53:87:70:50:57:D3:56:34:26:55:1A:D8:06:9C:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A29AD22DE0EEA3B84EDD3E87C014A5FE2239409 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa Signing time: Fri 25 Apr 2025 00:41:14 +0000 ROA not before: Fri 25 Apr 2025 00:41:14 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.174.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:29:ad:22:de:0e:ea:3b:84:ed:d3:e8:7c:01:4a:5f:e2:23:94:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:41:14 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=4c6ac6f1ebc29382dabb1ba51f0712aef1ef742ca2a1fed6f6d8bbebcbb6e407, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:89:64:63:66:dd:9c:9f:c7:2f:77:eb:77:f1: ef:70:f6:e1:01:73:8c:e6:78:3e:c1:76:55:6a:53: b6:bd:87:cd:03:5c:16:89:bb:9e:64:9c:7a:74:85: 6d:f5:8b:43:1d:36:b9:c5:3b:1a:82:a8:91:63:b7: fd:0e:38:51:1a:9a:c0:36:eb:38:ab:21:0c:04:be: 04:bf:e9:dd:df:94:09:32:a7:19:1a:a1:21:86:25: 94:31:ec:b2:b1:ef:b6:af:61:a8:1c:d3:69:45:83: 97:5a:96:d5:ec:a6:a4:e9:db:03:2a:e8:77:1b:0f: 37:c4:b4:1e:5d:2d:7e:e3:66:c6:db:c6:2e:c9:e0: 9c:7a:db:66:87:e6:fc:ba:ae:a1:74:64:68:b5:ad: 53:27:23:49:c5:16:5e:52:13:bf:eb:90:36:f2:17: ff:94:97:2c:44:1b:40:9b:ca:e6:f8:3f:9b:44:0f: a6:2f:59:c4:2f:6b:6d:60:7a:ce:39:95:e2:75:19: 0a:5b:5b:9c:e7:b8:b8:ae:4b:6f:fb:2d:b9:68:57: e1:1c:bf:92:46:43:dc:93:be:b1:fa:f9:de:3f:91: f8:d0:03:d1:b6:93:bf:0b:94:e1:5b:de:46:57:59: 0d:d9:a7:8c:55:1c:86:44:5a:3f:18:be:f5:59:f5: 50:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:82:10:E5:73:53:87:70:50:57:D3:56:34:26:55:1A:D8:06:9C:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.174.0.0/15 Signature Algorithm: sha256WithRSAEncryption 5b:a1:f4:3d:04:41:f1:cc:fc:5d:a3:a6:8e:7e:d9:e7:73:82: cf:96:84:81:d9:40:21:2b:25:70:f4:7f:ff:16:0c:5e:09:09: c0:7e:5d:f0:8c:9b:03:da:f4:b1:f4:0d:dc:8b:b9:b2:57:b9: f1:59:47:0c:92:39:6b:82:1c:8e:e6:c3:8c:11:16:e7:98:b3: 15:83:5b:bf:0c:8c:f4:22:5a:b3:47:8b:6a:13:22:65:1e:d5: 82:29:27:df:28:ea:03:02:f7:e2:fa:5c:e5:2e:f8:e8:38:84: 60:41:ff:9e:38:b6:0f:75:ac:10:f4:59:8b:34:07:07:ec:e2: 2c:98:a3:31:5a:c6:08:a5:04:be:93:69:01:29:3e:00:59:fe: 56:fa:b9:42:2d:d1:b6:66:20:12:3d:0f:f2:53:b0:13:c7:88: 17:fa:99:d1:c5:50:e9:81:f6:be:a2:84:4b:8b:bc:d3:f4:5b: 54:61:4b:f0:0a:18:d8:78:fd:8a:46:f3:69:fa:35:d7:ec:37: ac:9c:40:54:96:cc:67:18:7e:06:8a:70:f5:57:be:aa:3f:40: 40:19:61:34:fc:30:81:8a:5c:db:2d:37:99:32:08:c9:5a:9c: 59:9b:c6:dc:f1:4c:a8:ab:d8:af:54:a5:99:7d:c6:e8:93:e7: 64:f3:b1:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeimtIt4O6juE7dPofAFKX+IjlAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA0MTE0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzZhYzZmMWViYzI5MzgyZGFiYjFiYTUxZjA3MTJhZWYx ZWY3NDJjYTJhMWZlZDZmNmQ4YmJlYmNiYjZlNDA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTiWRjZt2cn8cvd+t38e9w9uEBc4zmeD7BdlVqU7a9h80D XBaJu55knHp0hW31i0MdNrnFOxqCqJFjt/0OOFEamsA26zirIQwEvgS/6d3flAky pxkaoSGGJZQx7LKx77avYagc02lFg5daltXspqTp2wMq6HcbDzfEtB5dLX7jZsbb xi7J4Jx622aH5vy6rqF0ZGi1rVMnI0nFFl5SE7/rkDbyF/+UlyxEG0Cbyub4P5tE D6YvWcQva21ges45leJ1GQpbW5znuLiuS2/7LbloV+Ecv5JGQ9yTvrH6+d4/kfjQ A9G2k78LlOFb3kZXWQ3Zp4xVHIZEWj8YvvVZ9VDnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5YIQ5XNTh3BQV9NWNCZVGtgGnBwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZWNjYzY4LWI1MzUtNDUxYS05Y2M3LTk4MzgxN2M4N2FkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEorjANBgkqhkiG9w0BAQsFAAOCAQEAW6H0PQRB8cz8XaOmjn7Z53OCz5aE gdlAISslcPR//xYMXgkJwH5d8IybA9r0sfQN3Iu5sle58VlHDJI5a4IcjubDjBEW 55izFYNbvwyM9CJas0eLahMiZR7Vgikn3yjqAwL34vpc5S746DiEYEH/nji2D3Ws EPRZizQHB+ziLJijMVrGCKUEvpNpASk+AFn+Vvq5Qi3RtmYgEj0P8lOwE8eIF/qZ 0cVQ6YH2vqKES4u80/RbVGFL8AoY2Hj9ikbzafo11+w3rJxAVJbMZxh+Bopw9Ve+ qj9AQBlhNPwwgYpc2y03mTIIyVqcWZvG3PFMqKvYr1SlmX3G6JPnZPOxyQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client