$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa File: 2753f989-5094-40f6-9952-e005b9c4f0d6.roa (raw, json) Hash identifier: HOU6x2DwkmZdectdNKyDocWjfkRpTD3w93qOWeHDv84= Subject key identifier: 59:8F:64:48:35:CC:C3:D5:7E:CF:84:2B:40:67:CB:9B:12:79:DC:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0362B03F619AE0C7FA10B1B3B710123B46FB6F8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa Signing time: Wed 07 May 2025 00:20:51 +0000 ROA not before: Wed 07 May 2025 00:20:51 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.192.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:62:b0:3f:61:9a:e0:c7:fa:10:b1:b3:b7:10:12:3b:46:fb:6f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:51 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=2f4e85932c7de376a9e2858428798987148fbe05309a9928f96cbae882910c53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:ec:92:82:51:41:e2:56:df:56:3d:11:8e: 14:33:57:f1:75:8a:a9:28:50:b6:3a:41:c4:8c:a1: e3:1a:57:19:09:d5:04:db:e9:de:20:71:80:a5:67: 92:1d:76:87:c4:f5:ac:55:5d:b1:e9:3c:55:8e:48: d1:8e:b5:de:fa:e4:e2:28:93:0d:4d:ce:99:89:cf: 74:7a:46:47:72:30:45:93:35:ba:7b:5c:b8:29:1d: f8:7a:c4:68:32:ac:de:a9:9a:ec:34:ab:e5:99:aa: 45:1c:fb:6c:f2:cf:e3:98:cc:bf:58:1f:d7:c8:12: fb:6e:a0:b0:05:da:36:ad:94:48:a2:fb:eb:55:bd: 76:39:82:4e:5e:5f:0c:f2:95:32:47:fc:3e:b8:fb: 39:5e:4a:85:93:fd:ec:b2:6f:6e:02:7b:39:1d:8b: 88:31:d5:9e:78:0a:79:29:32:8c:d3:3f:a4:36:89: eb:9d:59:56:b6:c4:a7:cf:93:67:f8:8d:4f:20:5e: 4f:db:a8:8e:ef:33:97:ff:35:d1:92:c7:14:cf:88: 2c:0e:01:51:1f:47:cf:5e:fb:32:11:9c:47:cb:12: 61:d9:51:96:c4:42:01:0e:e7:00:37:62:07:3f:c1: 83:e6:5b:07:e5:5e:27:ad:16:70:5c:2f:d8:5d:89: 60:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8F:64:48:35:CC:C3:D5:7E:CF:84:2B:40:67:CB:9B:12:79:DC:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2753f989-5094-40f6-9952-e005b9c4f0d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/11 Signature Algorithm: sha256WithRSAEncryption 01:3d:3b:09:c7:49:7a:85:ca:76:da:30:3b:03:32:51:da:0d: e5:bb:3e:e2:de:50:96:35:4b:c7:d3:2c:f4:ab:08:6a:c1:4f: 3f:90:3b:4f:b8:85:f8:30:6b:cc:cc:4f:bd:ca:88:2e:55:9d: be:98:b4:3e:0b:76:fe:3d:93:11:85:ca:e5:52:eb:a2:21:cd: bf:03:3e:20:f6:3d:b0:4d:e2:bb:87:97:46:2b:ec:af:11:7c: ed:71:6b:3c:86:6e:27:2f:b4:28:38:a2:9b:98:04:dc:51:c6: 66:c8:21:63:e3:fa:c1:6a:59:b1:6c:d7:eb:f6:37:cf:fd:33: 63:96:07:79:6a:e4:bc:ce:59:12:10:90:0f:b9:f2:dd:19:97: 7e:90:9b:53:85:27:ed:cc:6d:2a:a3:81:49:4e:44:50:23:cf: 28:c8:86:91:47:5b:de:dc:c6:41:90:a6:d6:7d:88:0c:e5:14: 16:a9:06:7d:a4:57:c8:26:d7:eb:16:ce:7e:3d:63:2d:65:86: ee:a3:8f:99:9b:56:cd:91:d9:31:1b:cc:e8:6a:9d:fa:6a:2e: 04:21:28:92:5f:75:71:38:9d:88:d5:42:38:be:d6:a4:ca:89: 05:a4:f1:9d:3c:a4:96:59:ee:69:18:07:11:63:4b:f1:23:2d: 3f:81:a3:c5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA2KwP2Ga4Mf6ELGztxASO0b7b44wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDUxWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjRlODU5MzJjN2RlMzc2YTllMjg1ODQyODc5ODk4NzE0 OGZiZTA1MzA5YTk5MjhmOTZjYmFlODgyOTEwYzUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6PuySglFB4lbfVj0RjhQzV/F1iqkoULY6QcSMoeMaVxkJ 1QTb6d4gcYClZ5IddofE9axVXbHpPFWOSNGOtd765OIokw1NzpmJz3R6RkdyMEWT Nbp7XLgpHfh6xGgyrN6pmuw0q+WZqkUc+2zyz+OYzL9YH9fIEvtuoLAF2jatlEii ++tVvXY5gk5eXwzylTJH/D64+zleSoWT/eyyb24Cezkdi4gx1Z54CnkpMozTP6Q2 ieudWVa2xKfPk2f4jU8gXk/bqI7vM5f/NdGSxxTPiCwOAVEfR89e+zIRnEfLEmHZ UZbEQgEO5wA3Ygc/wYPmWwflXietFnBcL9hdiWAfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWY9kSDXMw9V+z4QrQGfLmxJ53E4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3NTNmOTg5LTUwOTQtNDBmNi05OTUyLWUwMDViOWM0ZjBkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUswDANBgkqhkiG9w0BAQsFAAOCAQEAAT07CcdJeoXKdtowOwMyUdoN5bs+ 4t5QljVLx9Ms9KsIasFPP5A7T7iF+DBrzMxPvcqILlWdvpi0Pgt2/j2TEYXK5VLr oiHNvwM+IPY9sE3iu4eXRivsrxF87XFrPIZuJy+0KDiim5gE3FHGZsghY+P6wWpZ sWzX6/Y3z/0zY5YHeWrkvM5ZEhCQD7ny3RmXfpCbU4Un7cxtKqOBSU5EUCPPKMiG kUdb3tzGQZCm1n2IDOUUFqkGfaRXyCbX6xbOfj1jLWWG7qOPmZtWzZHZMRvM6Gqd +mouBCEokl91cTidiNVCOL7WpMqJBaTxnTykllnuaRgHEWNL8SMtP4GjxQ== -----END CERTIFICATE-----Generated at Tue May 13 09:24:20 2025 by rpki-client