$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa File: eeb1a0db-c6e7-4578-b508-84b15c96b526.roa (raw, json) Hash identifier: gjXp7A1MgxuU8FOazuOmIV2ZvNAFM4eLTBSp6N53I6c= Subject key identifier: C3:2C:79:71:84:76:78:D1:3F:CD:2C:51:A3:1B:32:C2:AD:ED:F6:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 117B07C59FD193A7557B5E7BDEFA213C641142C4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa Signing time: Sat 12 Apr 2025 00:00:26 +0000 ROA not before: Sat 12 Apr 2025 00:00:26 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7b:07:c5:9f:d1:93:a7:55:7b:5e:7b:de:fa:21:3c:64:11:42:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:26 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=e75f55959317d607aee7a79c8a46f7f8278b53eb569d11b6008af36ee3fae9e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:3e:fa:a5:c4:34:d4:a3:9e:aa:62:bf:cd: 39:72:2d:b3:e7:0b:5f:10:8d:7f:42:0d:b9:91:8a: 34:35:3d:b9:86:62:87:d4:76:c4:aa:bb:b6:8e:02: f4:04:1c:35:1c:69:d2:d2:38:6d:5d:ef:1c:86:85: 78:de:d3:6b:14:ab:d7:64:a9:39:a1:f9:35:81:08: ec:a8:eb:16:aa:ec:c8:66:ed:47:e0:c5:6b:cf:fd: 93:d9:58:57:b2:e6:39:a6:32:2b:b1:bb:2f:a2:4a: 25:32:53:2a:aa:68:0b:67:c2:e5:9a:f8:33:2d:18: da:3e:dd:6e:f4:6d:a5:49:86:a4:ed:69:12:41:87: 13:e4:f4:f0:e5:3d:2b:0a:a6:b0:69:08:c0:72:39: 67:32:1d:fa:ce:9a:d0:2e:3e:18:e4:0b:e6:d7:13: 21:ac:a6:f0:ff:de:f7:7e:40:57:43:e9:ee:2e:6b: 3f:33:91:63:4f:14:11:40:dd:ec:e9:d4:eb:5f:c9: 17:20:d0:87:ea:a0:ba:d5:bb:6c:81:ce:d8:34:46: 14:25:22:4a:67:50:c8:b4:b0:71:ff:e6:cd:88:0e: 83:e9:41:00:04:45:42:02:2c:c5:4d:83:21:ee:9e: 0c:20:32:42:b7:c7:06:e1:04:1a:b3:f3:90:71:48: 24:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2C:79:71:84:76:78:D1:3F:CD:2C:51:A3:1B:32:C2:AD:ED:F6:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.16.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:33:3a:a0:0b:9c:54:ce:ba:c8:f3:a9:8a:43:40:88:ba:b2: 29:cc:45:14:3f:be:cb:c1:1f:9a:9f:8f:76:64:8d:94:14:cf: 38:f7:c5:e7:db:90:f6:66:7b:6a:da:42:c7:ac:0d:10:13:33: 9d:6a:d2:28:74:79:49:87:d0:41:49:57:e0:ec:3e:22:ff:6d: b6:3c:41:fb:26:0e:dd:fc:ad:6a:2f:39:00:24:eb:87:98:4b: bb:5e:2e:18:e9:53:c2:e1:ff:b2:b0:de:c9:fb:3f:91:12:b0: c0:5b:e7:67:64:ed:28:e8:e1:6d:46:a0:48:a3:f6:62:7f:37: 1c:b9:ce:1f:ce:2c:c1:86:02:76:2b:9b:91:5b:c5:86:0c:d8: eb:b3:50:aa:fa:bc:70:c8:44:cd:cd:23:1b:bc:19:e3:92:b5: f7:40:4e:f1:b5:88:dc:0d:c2:ca:ce:46:3b:dd:6f:de:d1:61: 0e:62:5b:9e:6a:bb:d3:d4:5a:7a:1b:bb:37:e8:4a:64:55:21: b5:7e:e5:e8:3a:c2:4b:53:61:1e:98:6d:c5:f7:ff:f7:86:72: b1:38:4d:42:39:47:e2:12:fd:2f:b9:09:a9:fe:eb:b9:7d:71: 5b:f5:81:50:e5:8b:5f:5b:91:3a:25:9a:53:a3:17:21:d1:9a: 5a:25:2e:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEXsHxZ/Rk6dVe1573vohPGQRQsQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAwMDI2WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzVmNTU5NTkzMTdkNjA3YWVlN2E3OWM4YTQ2ZjdmODI3 OGI1M2ViNTY5ZDExYjYwMDhhZjM2ZWUzZmFlOWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4JT76pcQ01KOeqmK/zTlyLbPnC18QjX9CDbmRijQ1PbmG YofUdsSqu7aOAvQEHDUcadLSOG1d7xyGhXje02sUq9dkqTmh+TWBCOyo6xaq7Mhm 7UfgxWvP/ZPZWFey5jmmMiuxuy+iSiUyUyqqaAtnwuWa+DMtGNo+3W70baVJhqTt aRJBhxPk9PDlPSsKprBpCMByOWcyHfrOmtAuPhjkC+bXEyGspvD/3vd+QFdD6e4u az8zkWNPFBFA3ezp1OtfyRcg0IfqoLrVu2yBztg0RhQlIkpnUMi0sHH/5s2IDoPp QQAERUICLMVNgyHungwgMkK3xwbhBBqz85BxSCRjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwyx5cYR2eNE/zSxRoxsywq3t9iMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlYjFhMGRiLWM2ZTctNDU3OC1iNTA4LTg0YjE1Yzk2YjUyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQYbhAwDQYJKoZIhvcNAQELBQADggEBAAszOqALnFTOusjzqYpDQIi6sinM RRQ/vsvBH5qfj3ZkjZQUzzj3xefbkPZme2raQsesDRATM51q0ih0eUmH0EFJV+Ds PiL/bbY8QfsmDt38rWovOQAk64eYS7teLhjpU8Lh/7Kw3sn7P5ESsMBb52dk7Sjo 4W1GoEij9mJ/Nxy5zh/OLMGGAnYrm5FbxYYM2OuzUKr6vHDIRM3NIxu8GeOStfdA TvG1iNwNwsrORjvdb97RYQ5iW55qu9PUWnobuzfoSmRVIbV+5eg6wktTYR6YbcX3 //eGcrE4TUI5R+IS/S+5Can+67l9cVv1gVDli19bkTolmlOjFyHRmlolLus= -----END CERTIFICATE-----Generated at Sat Apr 26 17:40:45 2025 by rpki-client