$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa File: 30daddce-6506-4548-abca-4110cddb5ecf.roa (raw, json) Hash identifier: TmPXMjAaLEbSczeXUGbG0aqgnn9c+UM67H2upyEkBnQ= Subject key identifier: B3:F8:C8:C8:87:79:9E:1C:BE:17:89:F0:D6:C0:8D:49:61:DF:0D:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7058826F7549828A9216056C69719E092760B77C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa Signing time: Wed 07 May 2025 00:20:22 +0000 ROA not before: Wed 07 May 2025 00:20:22 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.216.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:58:82:6f:75:49:82:8a:92:16:05:6c:69:71:9e:09:27:60:b7:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:22 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=d46a7862ad8329895bbf301e5beafea49ad11af34cd7f16619ae9d783ffb5487, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9c:69:c9:f8:a5:71:35:96:8e:fa:d5:15:52: db:eb:7d:b4:6f:17:ac:04:e9:e1:e2:76:d7:ae:30: 46:b9:a4:ae:40:37:2c:ac:61:69:0f:2c:0e:e2:76: 48:65:16:13:c5:2e:ff:22:82:cc:50:97:cc:21:68: 1a:6e:ba:c9:b2:62:98:ed:74:5c:34:90:14:2a:3b: 4a:88:16:f2:43:32:99:3e:bc:9d:17:40:a5:0a:e8: 90:b4:01:5f:c2:21:ed:25:4b:aa:ca:69:5d:b2:89: ed:2c:1b:63:4e:c1:fc:c3:f0:e9:03:e4:9f:3f:0d: 6b:fb:f2:5c:eb:be:bb:81:70:ed:3c:fa:22:9b:f5: 19:a7:50:ef:0f:67:36:a8:18:a3:df:3a:5c:f6:d5: 27:a9:dd:29:86:8d:91:a1:eb:10:5c:41:d8:d6:59: 1c:8f:09:8b:ab:8c:b7:ef:9a:6a:c3:a0:14:1f:9f: 9a:29:d5:0a:f7:29:21:86:4b:14:7f:a0:36:6b:74: 56:d6:ef:f6:a9:40:75:99:75:95:e4:d0:13:d3:01: 00:65:29:b2:f8:28:1b:4b:fd:6e:70:06:85:0a:b5: 80:b8:55:7a:f5:70:e8:b5:f2:d8:a4:76:0f:67:7b: 09:bc:c1:36:20:e5:a8:8d:78:09:98:96:11:04:61: 79:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F8:C8:C8:87:79:9E:1C:BE:17:89:F0:D6:C0:8D:49:61:DF:0D:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.196.0/22 Signature Algorithm: sha256WithRSAEncryption 92:c1:ff:0a:a2:fb:57:ba:e2:74:3b:36:f4:11:ea:35:22:32: 08:7a:0e:13:fc:01:2e:57:83:ec:5f:43:e8:89:43:bf:ca:5a: 87:79:3b:0c:d8:72:da:e0:df:5b:02:cf:d0:97:b6:cc:a8:fb: 6b:94:55:08:cf:20:03:06:46:49:d6:76:24:e8:1a:28:e1:24: 3f:24:37:dd:12:6e:9f:19:c7:0a:54:c5:52:57:f7:7b:fe:15: 51:fc:42:b2:0e:31:c9:cf:56:0e:0a:65:81:e4:37:40:7e:47: 87:10:de:08:d6:35:53:06:d1:ca:da:ca:7e:21:35:11:98:46: bf:a6:a9:45:1c:95:9d:eb:4f:d8:ad:e4:d7:b4:3a:af:ba:4e: 5e:7c:db:1e:0c:23:94:4b:52:77:3c:f8:c0:43:2e:9d:98:fe: cd:a2:00:ea:a5:3a:99:97:c6:5f:7a:d2:e8:91:74:77:9f:77: fb:61:43:2d:0c:3c:55:c3:73:8c:b0:1b:8e:fe:f0:51:c1:e5: 2a:d4:d7:82:36:b7:41:dd:a6:4a:f6:a2:af:a3:61:45:91:93: c2:26:38:63:82:f2:96:c4:74:45:88:c7:69:80:32:5e:74:66: e9:04:b9:b6:90:33:d7:8f:3a:43:ea:d4:37:f5:ee:03:39:5b: 1b:4e:c6:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcFiCb3VJgoqSFgVsaXGeCSdgt3wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDIyWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDZhNzg2MmFkODMyOTg5NWJiZjMwMWU1YmVhZmVhNDlh ZDExYWYzNGNkN2YxNjYxOWFlOWQ3ODNmZmI1NDg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6nGnJ+KVxNZaO+tUVUtvrfbRvF6wE6eHidteuMEa5pK5A NyysYWkPLA7idkhlFhPFLv8igsxQl8whaBpuusmyYpjtdFw0kBQqO0qIFvJDMpk+ vJ0XQKUK6JC0AV/CIe0lS6rKaV2yie0sG2NOwfzD8OkD5J8/DWv78lzrvruBcO08 +iKb9RmnUO8PZzaoGKPfOlz21Sep3SmGjZGh6xBcQdjWWRyPCYurjLfvmmrDoBQf n5op1Qr3KSGGSxR/oDZrdFbW7/apQHWZdZXk0BPTAQBlKbL4KBtL/W5wBoUKtYC4 VXr1cOi18tikdg9newm8wTYg5aiNeAmYlhEEYXm9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs/jIyId5nhy+F4nw1sCNSWHfDZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwZGFkZGNlLTY1MDYtNDU0OC1hYmNhLTQxMTBjZGRiNWVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2MQwDQYJKoZIhvcNAQELBQADggEBAJLB/wqi+1e64nQ7NvQR6jUiMgh6 DhP8AS5Xg+xfQ+iJQ7/KWod5OwzYctrg31sCz9CXtsyo+2uUVQjPIAMGRknWdiTo GijhJD8kN90Sbp8ZxwpUxVJX93v+FVH8QrIOMcnPVg4KZYHkN0B+R4cQ3gjWNVMG 0crayn4hNRGYRr+mqUUclZ3rT9it5Ne0Oq+6Tl582x4MI5RLUnc8+MBDLp2Y/s2i AOqlOpmXxl960uiRdHefd/thQy0MPFXDc4ywG47+8FHB5SrU14I2t0Hdpkr2oq+j YUWRk8ImOGOC8pbEdEWIx2mAMl50ZukEubaQM9ePOkPq1Df17gM5WxtOxsg= -----END CERTIFICATE-----Generated at Sun May 11 22:50:19 2025 by rpki-client