$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa File: 119594d3-1a17-4118-856d-889f2bef824e.roa (raw, json) Hash identifier: +Zf3hEqTOPgX/UZpWQe0zhjte9jQHt5Tt8DUw6hJNVc= Subject key identifier: 8F:F1:61:94:43:70:E3:9F:32:2E:EA:09:C7:06:15:7A:17:2B:E6:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33CAC3D5A7752720092AC9DF3F16391A7B48DD9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa Signing time: Thu 08 May 2025 18:37:03 +0000 ROA not before: Thu 08 May 2025 18:37:03 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ca:c3:d5:a7:75:27:20:09:2a:c9:df:3f:16:39:1a:7b:48:dd:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 18:37:03 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=e790af3ed35a31698a3457fb16392f18395320fcb78fa17de94cc9445419f8a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bf:09:f8:81:51:1b:4c:94:17:c0:f0:94:6b: de:df:0c:b8:42:08:95:8c:bd:46:10:fb:a6:ae:6e: 89:d3:eb:f8:d7:91:26:23:9e:2c:57:db:e8:5d:ce: 5b:09:46:ad:38:6e:31:1e:06:c4:8d:5a:c1:8b:59: 90:f6:24:09:24:06:09:0d:b9:13:a1:34:e2:b4:f6: d3:df:73:f9:03:0d:62:cd:c0:4d:47:e7:9d:f7:b5: 4d:91:7f:51:4d:b1:58:0e:b7:cb:4f:97:28:61:33: 4a:4e:a2:85:7c:c3:02:75:ac:56:da:37:c5:4d:e6: b5:1e:57:af:b4:cf:1e:57:0e:3d:34:d3:82:2d:e1: 9e:17:cb:fa:c5:c1:61:aa:7a:27:a9:cf:3e:97:bb: c1:61:1f:fe:fb:3c:3b:d3:22:9b:41:e6:16:e5:8a: 6f:c3:25:2e:c0:b0:1e:4d:c4:d4:57:fe:22:54:5b: 29:e8:be:66:fe:fe:35:14:e3:73:fb:dd:02:21:68: ed:f8:3e:ab:60:3a:46:09:a8:2e:95:0c:f0:ec:77: 2f:2e:e1:ba:58:cc:9e:b2:2d:bc:0a:22:76:56:50: 55:fc:60:f4:dd:a2:e5:c9:f7:ea:ee:fa:85:dd:e1: 02:60:35:87:b8:fc:af:36:9c:12:20:0d:a7:e5:a8: 34:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F1:61:94:43:70:E3:9F:32:2E:EA:09:C7:06:15:7A:17:2B:E6:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.168.0/21 Signature Algorithm: sha256WithRSAEncryption 87:7c:18:b5:cb:88:1a:75:8f:e6:c9:41:be:86:da:2d:f7:40: ad:66:82:97:11:bb:4e:96:bf:06:fa:3b:01:fc:90:42:64:f4: c2:7d:72:46:3d:a1:d0:a2:e6:c4:36:01:59:85:45:6f:23:4e: 15:e1:f6:b6:73:93:f7:0b:52:11:1b:0b:10:81:f6:9b:2e:82: 83:4c:3c:8d:a2:38:1e:5d:07:5d:18:13:f9:ad:95:9c:ef:a7: b7:d7:95:f5:e4:07:bb:26:2f:c8:3e:c4:57:64:7f:96:91:b0: 83:c4:df:ae:4c:3b:6e:ac:fd:ab:fe:8c:f2:9b:ca:77:f8:d2: 96:96:87:c5:1e:71:60:7a:bc:16:9c:40:5d:5c:27:f6:1c:55: e0:2a:b8:0a:03:d5:59:86:fd:35:95:72:64:d3:93:2a:0a:64: 49:af:e7:c1:67:1f:76:58:8b:ae:54:a9:71:fc:e0:a9:61:db: 3d:6b:1f:46:53:23:49:ac:19:7a:b0:15:e7:58:99:4d:78:27: d4:e2:fe:c6:4a:90:96:08:7d:06:0a:be:74:e7:43:27:c7:66: 7e:aa:c1:e1:7d:b8:1c:f4:2a:36:c0:0b:0c:fc:5e:38:92:bd: 4f:33:90:ad:b6:03:a8:73:07:d2:a4:e5:59:90:fe:5a:74:06: d0:8a:95:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM8rD1ad1JyAJKsnfPxY5GntI3ZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTgzNzAzWhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzkwYWYzZWQzNWEzMTY5OGEzNDU3ZmIxNjM5MmYxODM5 NTMyMGZjYjc4ZmExN2RlOTRjYzk0NDU0MTlmOGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSvwn4gVEbTJQXwPCUa97fDLhCCJWMvUYQ+6aubonT6/jX kSYjnixX2+hdzlsJRq04bjEeBsSNWsGLWZD2JAkkBgkNuROhNOK09tPfc/kDDWLN wE1H5533tU2Rf1FNsVgOt8tPlyhhM0pOooV8wwJ1rFbaN8VN5rUeV6+0zx5XDj00 04It4Z4Xy/rFwWGqeiepzz6Xu8FhH/77PDvTIptB5hblim/DJS7AsB5NxNRX/iJU Wynovmb+/jUU43P73QIhaO34PqtgOkYJqC6VDPDsdy8u4bpYzJ6yLbwKInZWUFX8 YPTdouXJ9+ru+oXd4QJgNYe4/K82nBIgDaflqDRRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj/FhlENw458yLuoJxwYVehcr5rwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExOTU5NGQzLTFhMTctNDExOC04NTZkLTg4OWYyYmVmODI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMFrqgwDQYJKoZIhvcNAQELBQADggEBAId8GLXLiBp1j+bJQb6G2i33QK1m gpcRu06Wvwb6OwH8kEJk9MJ9ckY9odCi5sQ2AVmFRW8jThXh9rZzk/cLUhEbCxCB 9psugoNMPI2iOB5dB10YE/mtlZzvp7fXlfXkB7smL8g+xFdkf5aRsIPE365MO26s /av+jPKbynf40paWh8UecWB6vBacQF1cJ/YcVeAquAoD1VmG/TWVcmTTkyoKZEmv 58FnH3ZYi65UqXH84Klh2z1rH0ZTI0msGXqwFedYmU14J9Ti/sZKkJYIfQYKvnTn QyfHZn6qweF9uBz0KjbACwz8XjiSvU8zkK22A6hzB9Kk5VmQ/lp0BtCKlV8= -----END CERTIFICATE-----Generated at Sun May 11 18:14:29 2025 by rpki-client