$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa File: 183b2359-812f-4db8-b13a-b849330f3651.roa (raw, json) Hash identifier: Xx+cS+iNe5Bu+SgkiCeSUa+HaRVCNLecj0pUC04fE2Y= Subject key identifier: 54:DC:C0:69:CB:CD:AD:92:1F:B2:53:BA:55:D4:08:D0:57:31:E9:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 193A30F800ED997D33997DDCD830A5EBE6DB1D56 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa Signing time: Mon 05 May 2025 15:01:52 +0000 ROA not before: Mon 05 May 2025 15:01:52 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3a:30:f8:00:ed:99:7d:33:99:7d:dc:d8:30:a5:eb:e6:db:1d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:01:52 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=e4a52b704a3f724e6d77013371a1a0c6bb397e9f8693f4488cea80095654390a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:a2:52:5e:ab:e0:74:3d:9f:c1:18:92:0e: e6:71:9e:6e:d1:8d:17:05:f8:e2:13:fc:9a:f1:88: 1e:6a:05:27:0f:81:c0:ca:7e:d4:f4:5c:b2:2c:08: aa:74:4b:97:96:dd:62:cd:ae:6f:b8:69:b2:fd:af: 05:8e:ea:c1:ea:50:9e:e6:61:54:3f:07:44:db:9b: 10:43:a1:60:02:86:e3:3a:12:82:54:8a:a7:f0:c5: 68:13:e9:32:7d:2b:9e:7d:6f:61:0c:42:a5:10:07: c0:18:bf:cc:4f:38:d0:b1:57:9f:8c:3f:93:36:d0: e6:19:54:86:5e:1f:7b:58:e4:b9:94:a0:eb:1c:d9: 52:da:50:6e:07:b3:3d:4c:11:87:04:32:c7:8c:5f: 28:c8:39:87:f5:af:0a:f9:cc:fe:c6:10:d8:28:de: 57:d6:7c:bf:a1:ed:a7:b5:fb:47:4b:2c:34:08:23: dd:0a:df:41:a3:33:72:73:c9:e8:21:be:f3:88:d3: 5c:8c:03:32:98:40:7e:75:37:47:10:71:1b:96:51: 15:f5:22:2c:5c:68:c8:f2:7c:a7:3c:35:b1:f6:9b: 9e:83:54:78:bf:eb:b5:bf:f3:69:8d:1e:92:89:d0: d0:e6:c2:43:b6:d7:bf:84:cb:48:31:4d:db:93:35: 6c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:C0:69:CB:CD:AD:92:1F:B2:53:BA:55:D4:08:D0:57:31:E9:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.0.0/17 Signature Algorithm: sha256WithRSAEncryption 35:f8:d5:9d:85:75:8e:ca:6a:72:56:8f:d4:6d:93:4c:39:38: ac:86:b1:30:23:40:27:a8:5a:9e:ab:0e:77:ff:4f:44:89:a0: 99:96:8a:f0:2e:a4:a3:b6:02:d7:4f:32:15:47:b5:1f:76:7c: 37:90:32:2f:73:4f:38:35:25:2b:99:bc:10:de:d8:fd:23:f1: f7:c0:94:7b:e3:82:55:94:a4:e4:8a:88:b2:a6:df:b0:19:1e: a5:27:e7:31:68:53:ed:7e:81:87:2d:a5:fb:0b:dc:22:69:e0: a4:f1:c7:65:cd:63:79:c2:9c:93:b2:dd:c7:40:86:ef:e5:70: df:9f:c4:29:e3:0a:89:58:7d:d6:88:50:52:f2:9f:20:ce:d9: fc:09:b4:67:0b:27:d4:aa:70:53:3a:bf:70:71:d0:12:1e:11: 76:e8:e5:38:be:a8:f0:09:5e:87:01:21:b7:2b:18:91:a6:8d: 04:ed:7a:e2:15:54:c9:b9:40:fe:c1:8a:ab:33:15:b9:94:73: c0:1b:32:f6:47:40:0c:ab:18:97:a0:84:68:ec:70:9a:50:b1: 8b:dd:f1:05:bf:1a:cf:e2:8a:d3:a4:12:3e:79:16:4e:86:2e: b6:de:7d:44:69:25:88:27:bc:2a:2a:93:39:da:ac:c3:b3:30: bf:f9:ee:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGTow+ADtmX0zmX3c2DCl6+bbHVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUwMTUyWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGE1MmI3MDRhM2Y3MjRlNmQ3NzAxMzM3MWExYTBjNmJi Mzk3ZTlmODY5M2Y0NDg4Y2VhODAwOTU2NTQzOTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCymKJSXqvgdD2fwRiSDuZxnm7RjRcF+OIT/JrxiB5qBScP gcDKftT0XLIsCKp0S5eW3WLNrm+4abL9rwWO6sHqUJ7mYVQ/B0TbmxBDoWAChuM6 EoJUiqfwxWgT6TJ9K559b2EMQqUQB8AYv8xPONCxV5+MP5M20OYZVIZeH3tY5LmU oOsc2VLaUG4Hsz1MEYcEMseMXyjIOYf1rwr5zP7GENgo3lfWfL+h7ae1+0dLLDQI I90K30GjM3JzyeghvvOI01yMAzKYQH51N0cQcRuWURX1IixcaMjyfKc8NbH2m56D VHi/67W/82mNHpKJ0NDmwkO217+Ey0gxTduTNWylAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVNzAacvNrZIfslO6VdQI0Fcx6b8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4M2IyMzU5LTgxMmYtNGRiOC1iMTNhLWI4NDkzMzBmMzY1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX/gAwDQYJKoZIhvcNAQELBQADggEBADX41Z2FdY7KanJWj9Rtk0w5OKyG sTAjQCeoWp6rDnf/T0SJoJmWivAupKO2AtdPMhVHtR92fDeQMi9zTzg1JSuZvBDe 2P0j8ffAlHvjglWUpOSKiLKm37AZHqUn5zFoU+1+gYctpfsL3CJp4KTxx2XNY3nC nJOy3cdAhu/lcN+fxCnjColYfdaIUFLynyDO2fwJtGcLJ9SqcFM6v3Bx0BIeEXbo 5Ti+qPAJXocBIbcrGJGmjQTteuIVVMm5QP7BiqszFbmUc8AbMvZHQAyrGJeghGjs cJpQsYvd8QW/Gs/iitOkEj55Fk6GLrbefURpJYgnvCoqkznarMOzML/57nc= -----END CERTIFICATE-----Generated at Sat May 10 16:20:47 2025 by rpki-client