$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03353232-f773-4ecd-a8d3-0b9aa5dcc857.roa File: 03353232-f773-4ecd-a8d3-0b9aa5dcc857.roa (raw, json) Hash identifier: AS8DUFuolcdM92Gumx3m5Z6x4isDbvoGhWbsG9uvqGA= Subject key identifier: 60:56:22:D5:CD:1F:1A:57:FF:A2:F0:E3:EF:68:E8:FC:EA:68:90:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57AC3EC99AE409F57ABC098091916E755DF93705 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03353232-f773-4ecd-a8d3-0b9aa5dcc857.roa Signing time: Fri 25 Apr 2025 15:10:47 +0000 ROA not before: Fri 25 Apr 2025 15:10:47 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ac:3e:c9:9a:e4:09:f5:7a:bc:09:80:91:91:6e:75:5d:f9:37:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:10:47 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0d15fec5754b591acb20b4762c01f0378a8eb95684e154d23082e1a3c3efb79a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:73:0e:b1:18:2e:00:4c:ca:51:91:f4:8f:b5: 5e:53:e3:67:20:88:f3:21:00:ce:64:c3:53:56:91: f7:50:1a:85:0f:c0:b7:0f:4d:f8:72:5c:19:0d:b2: 49:f6:a3:e0:bd:f2:2a:0d:dc:1e:c4:e9:65:7c:a0: d0:f2:78:d3:2b:31:93:d0:4c:6b:96:3e:7f:78:50: 4d:5b:c7:bc:62:85:1e:b1:27:6b:b2:56:e6:3d:ff: cf:51:8b:a8:f1:65:69:1e:ec:61:0b:0b:9e:3a:94: 79:66:2f:b5:59:06:b2:71:0e:59:b0:4c:75:ab:23: 79:75:fe:5e:15:35:13:e0:c0:0f:2a:da:db:27:51: d8:81:89:70:a6:48:e8:09:5f:57:a4:90:20:4d:99: f1:02:99:e9:2a:55:92:63:be:68:ae:84:c9:0f:f6: 73:bc:e5:74:5a:76:b8:a4:d1:3e:cd:a4:5a:cf:2b: 58:55:6a:af:d2:68:33:af:23:3c:e1:25:06:07:3b: 3c:38:d6:a2:96:69:65:af:62:04:43:09:43:c4:c4: f7:7a:ee:73:c7:e9:20:39:d3:e0:ad:20:6b:0f:a3: 79:de:a8:15:ac:14:69:7e:10:46:bf:17:a5:2a:09: 12:de:20:c2:5a:65:8b:77:4f:5f:3c:da:dd:52:4b: e2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:56:22:D5:CD:1F:1A:57:FF:A2:F0:E3:EF:68:E8:FC:EA:68:90:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03353232-f773-4ecd-a8d3-0b9aa5dcc857.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.128.0/17 Signature Algorithm: sha256WithRSAEncryption 6e:aa:7f:a2:b1:2c:36:cf:de:62:a8:85:27:0c:d1:f5:02:23: 38:c5:41:26:f3:ee:05:4f:e6:a7:fc:81:e5:3a:d6:ca:e4:17: bf:85:cf:fc:db:b1:75:40:0d:43:3a:d2:26:38:2c:2a:95:78: 75:02:c2:4b:1e:ca:6b:c9:cf:9a:ab:27:cb:3c:5f:f4:f5:e9: 89:eb:ed:11:92:63:77:7f:2a:d1:85:fc:3b:be:8c:17:82:5e: a3:c3:ae:8c:33:67:7b:91:86:8e:b9:e9:ce:d2:7b:85:c5:bd: 45:7f:85:b7:0e:19:1f:f2:a9:02:80:ce:61:97:30:d8:18:c4: eb:f4:39:47:bb:59:1f:62:82:7c:88:09:a7:c6:bc:48:7d:9e: 87:52:dd:3f:b5:61:70:2e:41:53:5b:c4:2a:81:15:83:0b:06: 45:d5:e1:0c:6d:12:83:1c:08:c1:23:7a:b2:f5:9d:b8:48:4a: ff:17:eb:d7:43:ac:cb:83:f4:1d:20:be:7a:3a:65:f3:f2:40: da:5d:e2:52:fe:e7:97:4b:9c:6b:03:c8:21:5e:b4:a4:06:14: 01:92:2d:0f:1c:85:8b:b1:be:44:c2:f0:2e:5c:91:f0:4a:67: ec:e3:8b:85:cd:f2:a7:cb:3a:1c:ce:e4:7c:71:00:e1:97:4d: 8f:95:63:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV6w+yZrkCfV6vAmAkZFudV35NwUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUxMDQ3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDE1ZmVjNTc1NGI1OTFhY2IyMGI0NzYyYzAxZjAzNzhh OGViOTU2ODRlMTU0ZDIzMDgyZTFhM2MzZWZiNzlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYcw6xGC4ATMpRkfSPtV5T42cgiPMhAM5kw1NWkfdQGoUP wLcPTfhyXBkNskn2o+C98ioN3B7E6WV8oNDyeNMrMZPQTGuWPn94UE1bx7xihR6x J2uyVuY9/89Ri6jxZWke7GELC546lHlmL7VZBrJxDlmwTHWrI3l1/l4VNRPgwA8q 2tsnUdiBiXCmSOgJX1ekkCBNmfECmekqVZJjvmiuhMkP9nO85XRadrik0T7NpFrP K1hVaq/SaDOvIzzhJQYHOzw41qKWaWWvYgRDCUPExPd67nPH6SA50+CtIGsPo3ne qBWsFGl+EEa/F6UqCRLeIMJaZYt3T1882t1SS+I1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYFYi1c0fGlf/ovDj72jo/OpokEowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzMzUzMjMyLWY3NzMtNGVjZC1hOGQzLTBiOWFhNWRjYzg1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdLZYAwDQYJKoZIhvcNAQELBQADggEBAG6qf6KxLDbP3mKohScM0fUCIzjF QSbz7gVP5qf8geU61srkF7+Fz/zbsXVADUM60iY4LCqVeHUCwkseymvJz5qrJ8s8 X/T16Ynr7RGSY3d/KtGF/Du+jBeCXqPDrowzZ3uRho656c7Se4XFvUV/hbcOGR/y qQKAzmGXMNgYxOv0OUe7WR9ignyICafGvEh9nodS3T+1YXAuQVNbxCqBFYMLBkXV 4QxtEoMcCMEjerL1nbhISv8X69dDrMuD9B0gvno6ZfPyQNpd4lL+55dLnGsDyCFe tKQGFAGSLQ8chYuxvkTC8C5ckfBKZ+zji4XN8qfLOhzO5HxxAOGXTY+VY1E= -----END CERTIFICATE-----Generated at Sat May 10 10:13:15 2025 by rpki-client