$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa File: e7024f23-e277-47d3-8cfa-36397ac62c94.roa (raw, json) Hash identifier: yJxJHiP6dQmairdfwW9KWobfY8Eo8t2NuAnE1Mf9HYE= Subject key identifier: D6:0F:89:E9:30:01:0B:62:3D:55:10:7B:26:AD:1D:18:90:82:FE:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53700ADFAD2A3454858A66A55BD2716D563790 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa Signing time: Sat 12 Apr 2025 00:31:47 +0000 ROA not before: Sat 12 Apr 2025 00:31:47 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:70:0a:df:ad:2a:34:54:85:8a:66:a5:5b:d2:71:6d:56:37:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:31:47 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=390a931a2dd9df5393798b33fd118e17895b073af9234fdcb0984b7cb00f2ee3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:32:d3:75:12:7b:6c:7d:29:dc:42:55:12:d9: 65:60:e8:07:20:1f:1e:23:d0:c2:cf:3d:97:4f:cd: f5:40:53:58:40:27:1d:cc:24:5f:b8:aa:4e:0a:b5: 5b:e4:48:9d:e6:b1:8d:b9:56:e1:3c:5b:36:97:35: a5:fb:26:99:37:5c:e9:0b:09:eb:8a:98:89:68:07: 5f:0d:7f:e3:5c:eb:5c:30:5f:52:b7:67:1a:68:5c: ba:eb:2f:07:7c:29:77:ce:61:27:f1:3f:4b:8a:54: 62:1f:d1:36:08:f8:1f:49:b7:c2:8c:b3:b7:25:a6: 1d:c4:78:a2:74:54:1b:e5:57:00:50:d4:18:88:64: 12:e4:2b:33:36:2d:da:20:1e:33:79:2d:d6:e4:13: e2:a0:bc:28:04:00:ab:ee:5e:28:2b:4a:cf:34:97: 54:3f:24:fc:81:2e:d8:63:b4:d2:f4:e1:84:90:90: b4:1b:83:f2:64:2f:07:8b:51:4c:7a:16:1d:b5:19: 14:0a:de:23:52:59:2b:c3:9c:4a:29:bf:75:f7:cb: f0:ff:d1:8f:1b:7b:ac:be:7a:80:8d:59:35:b8:76: ab:a3:f6:43:35:90:d2:e0:fa:ef:38:03:a3:4d:4a: c8:60:9d:35:1f:5a:d9:47:39:fb:b5:fd:47:87:bb: 8b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0F:89:E9:30:01:0B:62:3D:55:10:7B:26:AD:1D:18:90:82:FE:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.152.0/21 Signature Algorithm: sha256WithRSAEncryption 60:ea:9f:4e:90:47:a0:f1:db:b8:8c:ba:3e:59:ee:b5:5d:bb: dc:03:64:b0:5a:51:6f:76:32:32:20:e1:81:d4:62:b8:c8:71: 28:74:73:10:27:21:27:31:60:d3:3a:88:c2:a2:e6:47:70:0b: d9:3f:2a:9d:e2:db:9a:60:89:01:d0:5c:36:4a:b4:75:15:09: c0:23:86:89:09:fc:ff:7b:57:4d:51:3f:f6:5e:cc:c0:e7:cb: ce:4f:3c:9d:96:82:68:9f:47:4a:2e:28:7b:e8:45:a5:3e:63: ca:28:1c:36:8d:19:d0:cd:90:fa:ee:45:bb:82:7a:90:78:b6: 1a:b9:5f:cd:2b:c4:df:21:a2:12:b2:51:39:cf:9a:72:ac:f4: df:55:33:27:68:07:f7:7d:fd:6d:bf:fd:cc:bc:45:60:36:45: c6:26:b6:62:b0:18:5e:4a:79:c6:d6:3f:30:62:37:6c:68:0c: b9:88:d4:e6:b9:ea:58:de:11:d8:37:09:a5:96:8f:b2:c7:59: a9:43:94:cc:b3:e1:da:e3:42:cc:fa:1a:d4:ec:37:5f:20:07: a8:94:65:95:84:cd:16:e7:dc:3c:55:ff:17:70:db:d1:97:5a: 3c:96:bc:8a:eb:8e:63:f2:08:49:26:bb:31:42:4a:16:26:08: cc:01:3d:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITU3AK360qNFSFimalW9JxbVY3kDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA0MTIwMDMxNDdaFw0yNTA1MTcyMzU5NTla MHoxSTBHBgNVBAUTQDM5MGE5MzFhMmRkOWRmNTM5Mzc5OGIzM2ZkMTE4ZTE3ODk1 YjA3M2FmOTIzNGZkY2IwOTg0YjdjYjAwZjJlZTMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKoy03USe2x9KdxCVRLZZWDoByAfHiPQws89l0/N9UBTWEAn HcwkX7iqTgq1W+RIneaxjblW4TxbNpc1pfsmmTdc6QsJ64qYiWgHXw1/41zrXDBf UrdnGmhcuusvB3wpd85hJ/E/S4pUYh/RNgj4H0m3woyztyWmHcR4onRUG+VXAFDU GIhkEuQrMzYt2iAeM3kt1uQT4qC8KAQAq+5eKCtKzzSXVD8k/IEu2GO00vThhJCQ tBuD8mQvB4tRTHoWHbUZFAreI1JZK8OcSim/dffL8P/Rjxt7rL56gI1ZNbh2q6P2 QzWQ0uD67zgDo01KyGCdNR9a2Uc5+7X9R4e7izsCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTWD4npMAELYj1VEHsmrR0YkIL+TDAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZTcwMjRmMjMtZTI3Ny00N2QzLThjZmEtMzYzOTdhYzYyYzk0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAzISmDANBgkqhkiG9w0BAQsFAAOCAQEAYOqfTpBHoPHbuIy6PlnutV273ANk sFpRb3YyMiDhgdRiuMhxKHRzECchJzFg0zqIwqLmR3AL2T8qneLbmmCJAdBcNkq0 dRUJwCOGiQn8/3tXTVE/9l7MwOfLzk88nZaCaJ9HSi4oe+hFpT5jyigcNo0Z0M2Q +u5Fu4J6kHi2GrlfzSvE3yGiErJROc+acqz031UzJ2gH9339bb/9zLxFYDZFxia2 YrAYXkp5xtY/MGI3bGgMuYjU5rnqWN4R2DcJpZaPssdZqUOUzLPh2uNCzPoa1Ow3 XyAHqJRllYTNFufcPFX/F3Db0ZdaPJa8iuuOY/IISSa7MUJKFiYIzAE9nw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:39 2025 by rpki-client