$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa File: fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa (raw, json) Hash identifier: gWK7QxvMgOX7Byxgl57oy3fX+wg0BZInoLFrxrhogOc= Subject key identifier: 3E:E3:C1:C9:CA:0B:C7:62:EE:3D:3F:AB:B6:DC:D4:7A:0D:90:FD:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 708D4F6ECE8C57A290570D14BA2C91839B9D06CA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa Signing time: Wed 23 Apr 2025 00:31:54 +0000 ROA not before: Wed 23 Apr 2025 00:31:54 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.184.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8d:4f:6e:ce:8c:57:a2:90:57:0d:14:ba:2c:91:83:9b:9d:06:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:31:54 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=14b20a74eb53f6c6c2d1870063a74f606e7b8842aba35398632ca92a72481af2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7f:eb:cc:5d:0e:7c:19:48:75:4d:77:56:52: 5b:aa:d8:f4:54:1d:18:ea:b8:68:5a:eb:33:aa:67: 26:ef:a8:b3:08:d0:f3:80:64:91:aa:72:29:ea:19: a6:f6:89:74:b4:e6:fb:7e:d8:4d:70:8e:8f:94:42: 99:a2:4f:3d:22:a1:72:2c:f4:3f:f8:59:89:62:a6: 77:a6:a9:fa:3b:53:a5:3f:90:7e:d1:2f:56:71:90: f4:2e:58:ba:82:59:78:de:ea:7b:4e:53:e7:44:c7: 57:c1:40:ff:c8:55:2d:39:c1:77:2b:6f:fa:74:77: 71:73:ca:6d:c6:2e:9a:54:9e:b2:b0:e4:6b:96:f7: be:79:9c:d7:e5:1d:a1:01:0c:8e:f5:db:1e:27:05: 93:d0:e8:69:2f:1c:9e:57:86:ab:b5:2f:41:84:12: 55:f5:e8:53:29:54:ab:5d:f9:de:7d:96:77:2b:7b: 1f:07:e0:da:51:2b:51:b1:42:7a:92:96:35:90:19: fa:4b:4e:54:38:83:31:fb:6c:d0:ed:8f:d6:b1:49: 69:7d:da:33:12:6e:fc:c4:23:6a:7f:cd:bd:bc:db: 0b:87:eb:58:ac:af:ee:f1:1f:55:78:35:1f:4b:a1: 19:89:fd:8b:dc:82:a0:97:c4:94:74:89:9d:52:ab: 2e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E3:C1:C9:CA:0B:C7:62:EE:3D:3F:AB:B6:DC:D4:7A:0D:90:FD:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.184.128.0/17 Signature Algorithm: sha256WithRSAEncryption 4b:47:17:eb:4f:80:43:c4:39:9e:26:d4:67:4c:f6:70:e4:e0: 14:cc:7a:a3:d1:9d:f5:47:2f:f1:77:5f:f4:96:2c:36:54:b3: 17:8f:87:d6:7a:48:12:37:02:1d:a2:45:ee:17:5d:9f:b1:9c: e6:12:69:1b:09:77:aa:6f:87:be:17:de:97:60:8b:b3:2b:cc: 53:22:ef:75:4e:9c:cc:9d:f2:a4:ce:97:1e:e0:8f:20:11:7d: 93:64:12:bc:67:d1:ef:1b:78:d4:94:17:1a:bb:f3:97:ea:10: 78:4f:84:6a:38:05:f9:0a:00:14:01:75:bf:3a:24:6a:47:ee: 58:95:64:38:e0:a8:07:5d:d8:ea:a6:bb:91:20:d8:e5:02:ef: 0f:8a:ef:a1:c5:75:42:e7:d9:bf:3d:1a:12:8f:3d:93:57:7b: 36:ef:25:f2:fd:5c:80:6a:af:55:97:f6:39:ad:b1:7e:31:c6: b8:14:4e:24:64:4d:8d:a2:4a:bc:a5:e0:de:76:7c:ee:f2:4b: fd:b2:f8:05:9a:ff:12:2e:cf:96:40:3a:cf:19:d2:88:92:94: c6:8e:94:c7:bc:56:db:55:93:8c:de:a0:82:97:db:a2:13:d2: e5:15:21:ec:81:b1:2f:ae:0b:3e:85:14:62:bf:22:d6:f7:8e: 0d:dc:21:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcI1Pbs6MV6KQVw0UuiyRg5udBsowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMTU0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGIyMGE3NGViNTNmNmM2YzJkMTg3MDA2M2E3NGY2MDZl N2I4ODQyYWJhMzUzOTg2MzJjYTkyYTcyNDgxYWYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMf+vMXQ58GUh1TXdWUluq2PRUHRjquGha6zOqZybvqLMI 0POAZJGqcinqGab2iXS05vt+2E1wjo+UQpmiTz0ioXIs9D/4WYlipnemqfo7U6U/ kH7RL1ZxkPQuWLqCWXje6ntOU+dEx1fBQP/IVS05wXcrb/p0d3Fzym3GLppUnrKw 5GuW9755nNflHaEBDI712x4nBZPQ6GkvHJ5Xhqu1L0GEElX16FMpVKtd+d59lncr ex8H4NpRK1GxQnqSljWQGfpLTlQ4gzH7bNDtj9axSWl92jMSbvzEI2p/zb282wuH 61isr+7xH1V4NR9LoRmJ/YvcgqCXxJR0iZ1Sqy7JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPuPBycoLx2LuPT+rttzUeg2Q/YkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZWI3MGY0LTY2MGMtNGMxZi05MjRhLWY5YWFiYzc1NzcyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQuIAwDQYJKoZIhvcNAQELBQADggEBAEtHF+tPgEPEOZ4m1GdM9nDk4BTM eqPRnfVHL/F3X/SWLDZUsxePh9Z6SBI3Ah2iRe4XXZ+xnOYSaRsJd6pvh74X3pdg i7MrzFMi73VOnMyd8qTOlx7gjyARfZNkErxn0e8beNSUFxq785fqEHhPhGo4BfkK ABQBdb86JGpH7liVZDjgqAdd2Oqmu5Eg2OUC7w+K76HFdULn2b89GhKPPZNXezbv JfL9XIBqr1WX9jmtsX4xxrgUTiRkTY2iSryl4N52fO7yS/2y+AWa/xIuz5ZAOs8Z 0oiSlMaOlMe8VttVk4zeoIKX26IT0uUVIeyBsS+uCz6FFGK/Itb3jg3cITk= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:13 2025 by rpki-client