$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/7c53740e-7300-4028-b024-414ad3814267.roa File: 7c53740e-7300-4028-b024-414ad3814267.roa (raw, json) Hash identifier: 4jr52FvgAfmhTjkgSQWOjWmYjHpDdNRjL7WVWV6BFjc= Subject key identifier: 8B:B4:A0:03:B8:C4:16:FF:7F:C6:E5:3E:65:DF:6C:D8:4C:7C:FA:EA Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 5527076A5CD4A15D8078E261250C43FD167B80A9 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/7c53740e-7300-4028-b024-414ad3814267.roa Signing time: Fri 25 Apr 2025 15:20:09 +0000 ROA not before: Fri 25 Apr 2025 15:20:09 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:27:07:6a:5c:d4:a1:5d:80:78:e2:61:25:0c:43:fd:16:7b:80:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:09 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=e47e8b06bbb02a376eafb4538236017aff42ce4e7a0061d200342a86df52b13e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:33:bb:8d:e0:17:29:df:97:0f:24:c6:56: 52:c1:27:2a:d1:c2:7b:ee:02:15:b3:aa:2f:ed:ee: 38:90:61:65:a7:51:c4:42:93:a1:f1:40:83:5e:ce: 04:64:6a:2c:a3:49:ad:59:9d:ab:9f:70:ef:19:0f: ce:14:87:c0:86:b2:8c:f4:48:2a:40:61:1c:32:bd: 9f:cd:13:dc:bf:0a:c0:11:d8:27:e8:98:50:c2:ab: ee:cb:2d:4b:fc:82:01:86:ed:93:1e:e3:09:af:77: 33:18:ec:9b:19:ac:6f:f7:31:c3:3e:a8:a1:86:60: fb:d9:5b:56:ee:ff:7b:39:1d:bb:d8:f3:78:f6:e6: ed:37:6f:31:ea:2d:f5:ff:d0:aa:bc:c7:a0:a8:e3: d0:97:6a:9f:0d:d8:1a:35:a4:fa:69:1c:87:bb:a9: 47:46:a5:18:e0:70:cd:f0:3f:96:98:97:09:ff:5c: 36:fd:bb:4a:98:7e:90:3b:5f:3a:9b:1b:d4:29:83: 38:7c:37:23:19:1c:12:6f:63:0d:5e:ad:bb:40:52: a2:21:ef:0f:7b:03:26:eb:eb:0a:c0:74:8b:56:30: 14:08:2e:7e:2f:76:19:26:c7:3d:2d:d1:fa:c9:69: 60:f2:99:b6:0a:ed:7f:13:73:96:0f:ba:46:47:55: 45:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B4:A0:03:B8:C4:16:FF:7F:C6:E5:3E:65:DF:6C:D8:4C:7C:FA:EA X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/7c53740e-7300-4028-b024-414ad3814267.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.4.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:50:d9:f7:24:1a:9a:47:39:5a:82:59:1c:f3:14:6d:42:c5: d8:d6:82:8e:59:cb:91:60:34:c1:16:ad:aa:8f:ca:94:26:17: 2c:8d:cf:a7:1d:8c:42:56:7d:d8:24:f7:62:ba:33:e4:ce:0e: fa:bf:08:7f:a7:65:ee:d1:6c:91:a1:d8:02:4d:ad:ba:00:65: 64:c4:61:0f:f4:62:c3:82:79:88:9e:5b:ac:e5:96:c3:af:93: 20:4d:4d:a7:21:c1:51:76:d7:a9:f6:ab:da:64:28:14:a1:34: 35:07:ca:85:17:79:14:b5:94:dd:84:6a:72:b2:b5:bd:68:c0: a8:c5:03:1f:a5:9b:fd:4b:6f:30:f5:74:24:93:25:3b:65:c1: b7:f3:c3:16:24:f0:c6:94:a9:58:ba:92:7f:96:fb:84:01:f0: c3:71:42:5f:35:6d:82:6d:6b:ca:67:12:f7:1a:d0:54:62:9a: 4d:a7:7a:6e:f9:0a:c5:24:f5:48:98:f6:95:d4:62:f6:0e:9f: 1b:d9:1c:0c:0d:a0:9e:6a:91:ef:1f:ac:2d:f3:87:09:4d:5e: 1c:7e:d5:5d:8e:2c:09:92:ac:c9:f0:18:62:d4:3a:00:95:42: 80:96:e7:2e:f4:58:9f:05:26:d4:1d:47:c5:a0:e5:47:8d:38: ba:74:d6:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVScHalzUoV2AeOJhJQxD/RZ7gKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDA5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDdlOGIwNmJiYjAyYTM3NmVhZmI0NTM4MjM2MDE3YWZm NDJjZTRlN2EwMDYxZDIwMDM0MmE4NmRmNTJiMTNlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCytTO7jeAXKd+XDyTGVlLBJyrRwnvuAhWzqi/t7jiQYWWn UcRCk6HxQINezgRkaiyjSa1ZnaufcO8ZD84Uh8CGsoz0SCpAYRwyvZ/NE9y/CsAR 2CfomFDCq+7LLUv8ggGG7ZMe4wmvdzMY7JsZrG/3McM+qKGGYPvZW1bu/3s5HbvY 83j25u03bzHqLfX/0Kq8x6Co49CXap8N2Bo1pPppHIe7qUdGpRjgcM3wP5aYlwn/ XDb9u0qYfpA7XzqbG9Qpgzh8NyMZHBJvYw1erbtAUqIh7w97Aybr6wrAdItWMBQI Ln4vdhkmxz0t0frJaWDymbYK7X8Tc5YPukZHVUV/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi7SgA7jEFv9/xuU+Zd9s2Ex8+uowHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzdjNTM3NDBlLTczMDAtNDAyOC1iMDI0LTQxNGFkMzgxNDI2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIycAQwDQYJKoZIhvcNAQELBQADggEBAHxQ2fckGppHOVqCWRzzFG1CxdjW go5Zy5FgNMEWraqPypQmFyyNz6cdjEJWfdgk92K6M+TODvq/CH+nZe7RbJGh2AJN rboAZWTEYQ/0YsOCeYieW6zllsOvkyBNTachwVF216n2q9pkKBShNDUHyoUXeRS1 lN2EanKytb1owKjFAx+lm/1LbzD1dCSTJTtlwbfzwxYk8MaUqVi6kn+W+4QB8MNx Ql81bYJta8pnEvca0FRimk2nem75CsUk9UiY9pXUYvYOnxvZHAwNoJ5qke8frC3z hwlNXhx+1V2OLAmSrMnwGGLUOgCVQoCW5y70WJ8FJtQdR8Wg5UeNOLp01jo= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:51 2025 by rpki-client