$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa File: 2a3aefdd-2281-4c50-a86b-248569ce3189.roa (raw, json) Hash identifier: jB99QXXHmuGs9vtBi+JFVYYZBTwPlyqIuUAg6sn4St0= Subject key identifier: 4E:07:2F:10:13:36:AC:B9:3B:13:52:82:EF:03:27:9F:48:CF:A5:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75C4B6EED5C9B2A3AA858B94E2A5738E2DC7D9DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa Signing time: Sat 03 May 2025 00:42:17 +0000 ROA not before: Sat 03 May 2025 00:42:17 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:c4:b6:ee:d5:c9:b2:a3:aa:85:8b:94:e2:a5:73:8e:2d:c7:d9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:42:17 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=e2c45255c8bb0308cdf89af6491ed30ab56c27ab57124496ef255878460981de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:22:7f:0b:80:2e:8f:c5:d1:86:43:5e:c1:eb: 7e:70:ae:6f:39:34:8c:ca:16:62:6b:10:e9:36:df: ca:fa:0d:3a:3d:86:4c:da:64:7a:17:e5:2f:81:64: d3:8b:95:ba:48:cf:cf:54:f4:3d:13:48:6e:d3:68: 25:5b:2c:52:4f:a6:4d:2c:d6:0d:22:d3:80:9e:3a: e7:63:a1:6b:48:35:73:f7:a7:c6:52:b3:39:ca:1e: f8:39:79:d4:da:17:75:ba:3a:18:93:b2:ed:9d:f0: 55:12:cc:2a:c6:09:a0:1a:0e:db:0e:00:5f:83:c3: 43:80:a1:5b:f1:6c:27:54:10:fe:80:81:fe:16:3e: 13:17:28:2a:8f:94:f2:5d:87:07:35:b7:a6:27:15: d9:e4:5e:40:35:6b:2c:2b:85:d1:c6:ce:54:d2:e8: 63:82:2d:54:5b:84:0f:cd:dd:7c:e7:95:f5:33:ee: 56:b9:ee:7d:9f:8d:be:d3:7a:90:b7:11:73:b4:70: 15:6a:9e:89:6b:a6:a2:03:2f:6d:c2:43:76:63:4b: a0:78:f0:5c:0a:79:83:b0:6a:21:5d:45:ae:56:da: 13:8e:6b:15:dc:ae:ca:61:99:94:d4:f0:38:77:55: bb:bc:63:e9:09:b7:70:13:fa:e5:b4:72:5d:e7:9c: 53:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:07:2F:10:13:36:AC:B9:3B:13:52:82:EF:03:27:9F:48:CF:A5:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:76:d3:a2:0f:d2:b4:50:4e:6f:62:8f:7b:de:1d:dc:1a:e9: 79:ed:49:bf:18:24:3f:52:55:27:89:7d:e6:7a:f1:0b:af:12: 50:86:d5:0d:b1:70:96:8e:db:74:a5:09:ce:74:26:f4:e8:76: a5:a8:d6:23:69:c7:c8:4b:5a:07:b2:8f:f5:a7:b6:ce:d5:b1: 9f:1b:37:11:71:c9:19:10:c1:bb:d5:85:f5:38:7f:e7:62:1e: b2:38:b9:4f:18:47:04:f5:d2:82:53:85:60:cb:ec:8e:6d:98: 17:b4:39:7e:f0:c5:0d:d3:8f:e0:cb:13:7c:c8:9b:0a:e3:be: 9a:96:d3:03:10:f1:b2:59:3f:c8:b6:c4:7f:f3:0c:29:a1:dd: 06:96:fc:ce:69:14:f7:f1:12:f5:e9:bb:c0:82:57:de:72:51: f6:5e:92:0f:79:81:f0:2a:d1:42:b1:59:df:bc:d8:b5:40:37: 87:b5:62:bf:f2:be:f9:d7:c5:e0:04:9b:29:c1:5f:02:64:4e: c4:3f:01:1b:8b:13:2e:2c:05:4a:0a:18:5c:53:14:df:46:98: 14:04:26:b2:a5:6b:0a:c3:e9:a9:15:4f:b3:b7:b7:63:ca:d6: 83:db:f9:5b:93:63:d0:7a:83:f1:4f:df:42:b7:bb:28:d1:ed: d5:01:1e:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdcS27tXJsqOqhYuU4qVzji3H2dwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MjE3WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmM0NTI1NWM4YmIwMzA4Y2RmODlhZjY0OTFlZDMwYWI1 NmMyN2FiNTcxMjQ0OTZlZjI1NTg3ODQ2MDk4MWRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfIn8LgC6PxdGGQ17B635wrm85NIzKFmJrEOk238r6DTo9 hkzaZHoX5S+BZNOLlbpIz89U9D0TSG7TaCVbLFJPpk0s1g0i04CeOudjoWtINXP3 p8ZSsznKHvg5edTaF3W6OhiTsu2d8FUSzCrGCaAaDtsOAF+Dw0OAoVvxbCdUEP6A gf4WPhMXKCqPlPJdhwc1t6YnFdnkXkA1aywrhdHGzlTS6GOCLVRbhA/N3XznlfUz 7la57n2fjb7TepC3EXO0cBVqnolrpqIDL23CQ3ZjS6B48FwKeYOwaiFdRa5W2hOO axXcrsphmZTU8Dh3Vbu8Y+kJt3AT+uW0cl3nnFM3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTgcvEBM2rLk7E1KC7wMnn0jPpRswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhM2FlZmRkLTIyODEtNGM1MC1hODZiLTI0ODU2OWNlMzE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBIljANBgkqhkiG9w0BAQsFAAOCAQEAPnbTog/StFBOb2KPe94d3Brpee1J vxgkP1JVJ4l95nrxC68SUIbVDbFwlo7bdKUJznQm9Oh2pajWI2nHyEtaB7KP9ae2 ztWxnxs3EXHJGRDBu9WF9Th/52Iesji5TxhHBPXSglOFYMvsjm2YF7Q5fvDFDdOP 4MsTfMibCuO+mpbTAxDxslk/yLbEf/MMKaHdBpb8zmkU9/ES9em7wIJX3nJR9l6S D3mB8CrRQrFZ37zYtUA3h7Viv/K++dfF4ASbKcFfAmROxD8BG4sTLiwFSgoYXFMU 30aYFAQmsqVrCsPpqRVPs7e3Y8rWg9v5W5Nj0HqD8U/fQre7KNHt1QEe7Q== -----END CERTIFICATE-----Generated at Sat May 10 19:42:10 2025 by rpki-client