$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa File: 9ad79ef8-03ba-465e-9dba-c97d158539bc.roa (raw, json) Hash identifier: C/hbdv7NYOG+z9tinTcQffP5WB51t4a+D7vWm0jK3hU= Subject key identifier: CB:E0:E9:3A:2F:A1:25:22:93:C4:45:A2:58:C4:28:05:C7:E8:E5:8D Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 472C8449D4786D23C77109D27DAFE174F0C6BB7C Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa Signing time: Fri 25 Apr 2025 15:20:12 +0000 ROA not before: Fri 25 Apr 2025 15:20:12 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2c:84:49:d4:78:6d:23:c7:71:09:d2:7d:af:e1:74:f0:c6:bb:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:12 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=97fb0a6ada02c47c88a9246504b23da57eeb07ab4116af67d4604d513803d87b, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:70:0a:61:5c:f9:2b:d5:ab:6a:6c:96:01: 7c:e9:38:8c:65:05:59:18:0b:7e:62:9d:6d:b5:fe: d0:d3:85:ea:27:53:61:80:7b:a2:53:b7:ca:66:9a: 01:3c:28:bb:53:76:9b:2c:0d:c4:7c:01:32:22:61: d0:4e:01:11:7b:ee:13:36:48:9c:41:4e:10:43:46: 40:ce:91:10:6f:72:52:c1:d8:77:35:d5:83:d2:10: 23:67:15:1e:e6:d2:04:09:3c:34:cc:8b:3d:e0:ae: 42:6e:b4:fe:79:80:c6:49:66:39:c8:b1:45:51:17: ba:bb:61:21:45:77:c2:b8:59:1c:01:3b:30:42:16: 9a:9f:9b:9f:0c:4c:5b:e4:af:55:33:ba:15:a3:14: 6b:3f:4c:81:a7:fe:17:2f:47:f3:79:a8:79:3c:96: e9:a1:ac:7d:13:dc:53:a8:4c:50:c6:57:c3:1a:f1: 80:54:c1:39:3c:b1:c3:2f:60:29:2f:12:cd:26:74: f2:17:b6:c1:a0:9e:31:35:d1:11:55:dd:e8:66:ed: 54:01:3c:da:60:0f:03:ec:49:2c:1b:9d:79:b9:e3: 87:c5:ff:06:11:2b:ab:6d:fc:a5:1a:6d:e0:52:51: c1:f7:f3:d8:2c:75:61:52:3c:09:e5:e7:2a:2c:92: bc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E0:E9:3A:2F:A1:25:22:93:C4:45:A2:58:C4:28:05:C7:E8:E5:8D X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.224.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:05:06:19:8b:8a:12:4a:f6:d4:72:15:42:bf:c4:6b:be:b0: 2d:7c:39:80:d2:9c:c9:95:29:f1:81:c4:dd:e5:fe:f4:87:8b: b5:55:fe:4d:30:56:85:d7:7b:d5:ed:8f:f6:31:29:bb:e9:38: e4:52:71:5c:38:f7:6e:02:f5:79:7e:04:fa:3d:20:09:de:0e: ca:a2:bb:39:f7:cc:42:4f:ea:5a:85:41:53:4c:50:31:6f:d9: 4e:3d:7c:d7:27:a8:e0:fb:5c:d1:ac:09:cb:dc:7d:39:d6:32: 1b:f2:41:45:fe:40:0b:84:cf:f9:39:ef:01:85:ce:cc:9e:64: b7:3d:e7:e3:8d:89:95:82:63:93:cb:9a:16:cb:b5:b7:64:28: c2:8a:02:10:f8:95:21:4a:b9:7f:04:2b:db:6c:e9:e0:d7:c0: 7d:18:3c:77:bb:78:4e:57:73:69:6a:ae:d0:0a:32:00:46:41: 1f:52:bc:32:43:51:bf:bb:7d:5a:9d:71:67:5d:f4:7e:fe:fd: a3:b3:e5:41:b7:c8:58:55:99:77:9d:3d:eb:b7:1e:e4:77:65: af:f6:8d:8d:08:16:06:c1:d4:b0:16:13:d0:fe:3f:63:5f:48: b7:c4:0d:ba:92:b1:66:3d:c2:32:76:b7:b0:ab:f1:d3:af:16: 3c:7e:e1:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURyyESdR4bSPHcQnSfa/hdPDGu3wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDEyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2ZiMGE2YWRhMDJjNDdjODhhOTI0NjUwNGIyM2RhNTdl ZWIwN2FiNDExNmFmNjdkNDYwNGQ1MTM4MDNkODdiMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB/XAKYVz5K9WramyWAXzpOIxlBVkYC35inW21/tDTheon U2GAe6JTt8pmmgE8KLtTdpssDcR8ATIiYdBOARF77hM2SJxBThBDRkDOkRBvclLB 2Hc11YPSECNnFR7m0gQJPDTMiz3grkJutP55gMZJZjnIsUVRF7q7YSFFd8K4WRwB OzBCFpqfm58MTFvkr1UzuhWjFGs/TIGn/hcvR/N5qHk8lumhrH0T3FOoTFDGV8Ma 8YBUwTk8scMvYCkvEs0mdPIXtsGgnjE10RFV3ehm7VQBPNpgDwPsSSwbnXm544fF /wYRK6tt/KUabeBSUcH389gsdWFSPAnl5yoskrz7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy+DpOi+hJSKTxEWiWMQoBcfo5Y0wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzlhZDc5ZWY4LTAzYmEtNDY1ZS05ZGJhLWM5N2QxNTg1MzliYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycOAwDQYJKoZIhvcNAQELBQADggEBAF4FBhmLihJK9tRyFUK/xGu+sC18 OYDSnMmVKfGBxN3l/vSHi7VV/k0wVoXXe9Xtj/YxKbvpOORScVw4924C9Xl+BPo9 IAneDsqiuzn3zEJP6lqFQVNMUDFv2U49fNcnqOD7XNGsCcvcfTnWMhvyQUX+QAuE z/k57wGFzsyeZLc95+ONiZWCY5PLmhbLtbdkKMKKAhD4lSFKuX8EK9ts6eDXwH0Y PHe7eE5Xc2lqrtAKMgBGQR9SvDJDUb+7fVqdcWdd9H7+/aOz5UG3yFhVmXedPeu3 HuR3Za/2jY0IFgbB1LAWE9D+P2NfSLfEDbqSsWY9wjJ2t7Cr8dOvFjx+4aM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:46:10 2025 by rpki-client