$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: Hq0zKjvhHERXBvoSvlxToroT7MXRsoMFYbbq+Sosenw= Subject key identifier: 70:CA:41:5F:71:CD:72:EB:21:6D:DF:95:4B:19:53:34:2C:C7:FA:38 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 122D12C8630D098575FDC3AF2C4F0560E9A995FB Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Wed 16 Apr 2025 00:10:29 +0000 ROA not before: Wed 16 Apr 2025 00:10:29 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:2d:12:c8:63:0d:09:85:75:fd:c3:af:2c:4f:05:60:e9:a9:95:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Apr 16 00:10:29 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=a8e17aa8bb604ddb55149f1cc8cd0a02d262a5c4b1bec9c2d5ecda374a2fc16b, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1c:cc:21:d2:90:7a:cb:b5:4f:7c:62:21:18: e6:a1:5e:da:a8:e6:3f:eb:a6:9a:b9:29:01:3c:6f: 04:ef:fc:74:2a:88:ed:01:07:ba:37:e7:83:e8:ba: 31:63:4c:a7:04:90:0f:2a:63:61:a0:fa:15:d7:ab: e3:c2:e9:fa:d5:c8:9c:6a:e4:22:90:e9:62:e3:8f: c5:89:04:b7:66:dd:9e:8b:5d:fa:99:78:5d:69:8c: a5:d6:ea:55:ef:d7:db:0d:3b:a5:91:0a:8b:0b:2a: 0c:1f:c2:fa:8b:ba:16:39:f6:8e:1c:ab:ce:5e:33: 4e:f5:81:fa:20:7d:f5:16:85:16:51:3b:21:db:8c: 81:7a:73:ba:82:d8:4c:44:eb:fa:57:3e:dd:32:a4: ed:fb:ed:95:c8:bf:10:cb:36:07:86:35:03:74:f1: f8:9b:ba:db:6e:de:fe:13:ac:e6:d3:1e:fc:19:d9: c5:50:bb:b3:e4:44:63:3d:02:6f:3a:65:a7:8f:17: 40:a9:00:99:c6:2b:df:48:58:bd:45:53:1b:a2:ec: c6:8b:64:74:24:a7:87:c6:da:f4:34:5f:b5:1a:38: c4:10:b8:b4:b9:1b:fc:0e:65:0e:07:f5:85:ef:21: 52:5c:fe:19:f0:f4:15:2c:70:68:b4:a9:cb:7a:0d: 86:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CA:41:5F:71:CD:72:EB:21:6D:DF:95:4B:19:53:34:2C:C7:FA:38 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:ff:8b:b6:d4:32:cf:dd:f0:5d:7d:c1:0f:40:e7:f6:89:67: 93:60:fc:cc:a8:1b:a5:f7:30:95:b5:b4:6c:2f:3c:dd:45:57: 6e:0c:fc:82:5b:2b:36:d1:37:5e:3e:85:a3:62:91:46:79:ab: f3:b3:45:11:63:61:d3:1c:99:64:a9:43:8c:7b:a6:bc:c4:ce: 1d:47:48:e6:74:c2:f6:f1:71:45:a0:c2:81:2e:7c:8d:14:bd: 71:d5:e1:18:bc:af:24:b7:45:ed:5a:ee:66:26:8a:0d:3f:ba: 9a:0f:16:bb:91:ac:11:93:e7:69:63:5a:0e:9f:79:58:22:d2: 50:f7:a4:9d:35:88:0e:0d:01:83:7b:35:c0:55:e6:21:f6:17: 0d:5d:f0:a4:56:e8:ea:2a:a3:00:8d:1d:5b:70:e3:63:f3:d0: a2:aa:a4:18:89:d2:83:81:3a:55:36:06:d1:98:8e:b6:cc:58: 68:5c:43:52:11:4f:ee:35:80:e0:9f:c9:4c:8c:82:6a:d2:ea: 03:0c:11:af:c8:e4:e6:eb:22:85:f0:55:d6:33:39:aa:15:3f: 3c:7a:92:89:b0:67:7e:3d:a0:5f:9a:07:9c:fa:5d:06:ec:92: 6f:fc:b5:07:06:57:cd:8b:ff:b9:b7:7c:2e:f6:b4:bc:88:c7: e8:ef:cd:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEi0SyGMNCYV1/cOvLE8FYOmplfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNDE2MDAxMDI5WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGUxN2FhOGJiNjA0ZGRiNTUxNDlmMWNjOGNkMGEwMmQy NjJhNWM0YjFiZWM5YzJkNWVjZGEzNzRhMmZjMTZiMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuHMwh0pB6y7VPfGIhGOahXtqo5j/rppq5KQE8bwTv/HQq iO0BB7o354PoujFjTKcEkA8qY2Gg+hXXq+PC6frVyJxq5CKQ6WLjj8WJBLdm3Z6L XfqZeF1pjKXW6lXv19sNO6WRCosLKgwfwvqLuhY59o4cq85eM071gfogffUWhRZR OyHbjIF6c7qC2ExE6/pXPt0ypO377ZXIvxDLNgeGNQN08fibuttu3v4TrObTHvwZ 2cVQu7PkRGM9Am86ZaePF0CpAJnGK99IWL1FUxui7MaLZHQkp4fG2vQ0X7UaOMQQ uLS5G/wOZQ4H9YXvIVJc/hnw9BUscGi0qct6DYZrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcMpBX3HNcushbd+VSxlTNCzH+jgwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAI7/i7bUMs/d8F19wQ9A5/aJZ5Ng /MyoG6X3MJW1tGwvPN1FV24M/IJbKzbRN14+haNikUZ5q/OzRRFjYdMcmWSpQ4x7 przEzh1HSOZ0wvbxcUWgwoEufI0UvXHV4Ri8ryS3Re1a7mYmig0/upoPFruRrBGT 52ljWg6feVgi0lD3pJ01iA4NAYN7NcBV5iH2Fw1d8KRW6OoqowCNHVtw42Pz0KKq pBiJ0oOBOlU2BtGYjrbMWGhcQ1IRT+41gOCfyUyMgmrS6gMMEa/I5ObrIoXwVdYz OaoVPzx6komwZ349oF+aB5z6XQbskm/8tQcGV82L/7m3fC72tLyIx+jvzXI= -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:22 2025 by rpki-client