$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3736fb83-358c-4ea5-a82f-fa5a7eea0836.roa File: 3736fb83-358c-4ea5-a82f-fa5a7eea0836.roa (raw, json) Hash identifier: 8xh9lg+uNd2cj0mjPBsJhEBBFPMYwJM5btLlr8T4Ewc= Subject key identifier: 38:FB:4E:B9:A3:DB:B3:27:C4:23:86:FC:01:BF:7E:65:82:32:05:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F1E5814BC5531109E351E0FA87912C6FC3CE641 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3736fb83-358c-4ea5-a82f-fa5a7eea0836.roa Signing time: Mon 05 May 2025 15:41:05 +0000 ROA not before: Mon 05 May 2025 15:41:05 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1e:58:14:bc:55:31:10:9e:35:1e:0f:a8:79:12:c6:fc:3c:e6:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:41:05 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=1a2279c3e2e7bade09826a443b736f61b1982d0cdefad4d6ef1c6c6fa7006516, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:35:8c:f4:75:8b:ff:05:cd:d4:b7:eb:1f:3c: c8:d2:35:b4:7d:93:5b:bb:ec:7b:25:58:31:2f:67: 2e:ac:9e:09:0c:2c:98:0e:06:ba:c2:93:4b:33:26: 87:ab:53:4f:41:e2:d3:03:e1:7f:c8:76:91:a2:13: 98:93:ed:88:bd:15:62:3c:ac:b6:df:ab:0e:78:8b: cf:42:39:56:d2:2b:7b:d3:b7:43:77:9a:ba:b1:3a: 03:af:9e:ce:f7:d1:15:96:8e:3a:16:6e:18:5a:fa: 71:2e:b1:d9:74:19:01:c4:9a:b9:d3:3e:05:2a:d6: f6:0c:f7:c6:cf:c4:dd:47:c4:7f:e4:57:b7:c1:61: bc:56:d9:3f:ce:40:52:6d:f0:28:90:ae:5f:3c:bc: 72:72:f1:c1:fc:ac:c4:6a:a9:fd:ad:56:01:a6:c0: 18:65:9b:be:63:b3:5b:85:6d:d0:62:c6:85:f6:d9: ec:d3:29:04:e8:49:35:28:6e:65:fd:48:61:cf:5b: bb:15:a2:59:90:91:dc:9d:fa:b0:b1:cc:96:c5:e5: 49:69:f9:c7:6b:4b:c9:e3:a8:4b:ae:2e:db:d7:b6: 9e:28:f6:56:75:a7:cc:a9:14:1d:c8:8d:86:1e:c9: 1f:c5:37:bc:b9:67:3b:f3:4e:8c:5a:8d:53:f1:10: 04:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FB:4E:B9:A3:DB:B3:27:C4:23:86:FC:01:BF:7E:65:82:32:05:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3736fb83-358c-4ea5-a82f-fa5a7eea0836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.172.0/22 Signature Algorithm: sha256WithRSAEncryption cb:1a:38:87:07:b2:42:c8:10:f7:06:c5:fb:b9:94:f5:9a:a8: 99:5c:70:e5:0a:9a:28:72:36:fa:33:75:b9:7c:da:45:0c:13: a8:42:02:11:b9:54:8d:41:96:c1:c7:d6:55:48:45:74:0f:72: b9:7c:92:62:25:d5:4e:3f:c6:67:30:27:08:c3:86:94:7a:20: e0:55:61:54:42:10:58:3e:f2:cf:2f:5b:70:92:f3:8f:2c:77: a4:f7:58:08:13:2a:31:02:ff:a8:e8:c8:b9:64:6a:39:ef:eb: cd:1a:35:32:d6:99:e8:70:37:89:5e:66:f6:59:b8:19:c7:41: 9c:3d:66:3d:85:d5:36:dd:fe:47:97:08:ca:5d:2a:ab:84:fe: a1:2c:8a:52:2a:f1:3b:ed:5a:a0:5f:b2:78:70:51:50:18:84: 82:dc:96:eb:ff:38:80:31:70:c6:5d:3d:df:10:c2:09:d6:72: da:72:7f:b8:7d:cd:92:7c:58:43:4b:aa:e3:53:9b:8d:cc:45: 28:b7:21:fa:94:eb:7a:55:ee:5c:21:c2:e5:22:26:45:46:72: f3:c5:9e:c6:f8:77:70:d8:e0:e9:e7:0c:5a:d7:bb:2b:6f:9a: 9e:f8:76:80:24:54:6f:20:60:94:45:58:9e:ee:e4:d7:44:2d: 51:45:0c:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDx5YFLxVMRCeNR4PqHkSxvw85kEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTU0MTA1WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTIyNzljM2UyZTdiYWRlMDk4MjZhNDQzYjczNmY2MWIx OTgyZDBjZGVmYWQ0ZDZlZjFjNmM2ZmE3MDA2NTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUNYz0dYv/Bc3Ut+sfPMjSNbR9k1u77HslWDEvZy6sngkM LJgOBrrCk0szJoerU09B4tMD4X/IdpGiE5iT7Yi9FWI8rLbfqw54i89COVbSK3vT t0N3mrqxOgOvns730RWWjjoWbhha+nEusdl0GQHEmrnTPgUq1vYM98bPxN1HxH/k V7fBYbxW2T/OQFJt8CiQrl88vHJy8cH8rMRqqf2tVgGmwBhlm75js1uFbdBixoX2 2ezTKQToSTUobmX9SGHPW7sVolmQkdyd+rCxzJbF5Ulp+cdrS8njqEuuLtvXtp4o 9lZ1p8ypFB3IjYYeyR/FN7y5ZzvzToxajVPxEAR1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOPtOuaPbsyfEI4b8Ab9+ZYIyBZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzZmYjgzLTM1OGMtNGVhNS1hODJmLWZhNWE3ZWVhMDgzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJM36wwDQYJKoZIhvcNAQELBQADggEBAMsaOIcHskLIEPcGxfu5lPWaqJlc cOUKmihyNvozdbl82kUME6hCAhG5VI1BlsHH1lVIRXQPcrl8kmIl1U4/xmcwJwjD hpR6IOBVYVRCEFg+8s8vW3CS848sd6T3WAgTKjEC/6joyLlkajnv680aNTLWmehw N4leZvZZuBnHQZw9Zj2F1Tbd/keXCMpdKquE/qEsilIq8TvtWqBfsnhwUVAYhILc luv/OIAxcMZdPd8QwgnWctpyf7h9zZJ8WENLquNTm43MRSi3IfqU63pV7lwhwuUi JkVGcvPFnsb4d3DY4OnnDFrXuytvmp74doAkVG8gYJRFWJ7u5NdELVFFDJA= -----END CERTIFICATE-----Generated at Fri May 9 20:55:36 2025 by rpki-client