$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa File: 3dbee296-ec09-48ec-b119-3d727f285355.roa (raw, json) Hash identifier: lHV6B9sqmJVG+O7P9wXmWwhPaXtpddEK/R18TVemaQg= Subject key identifier: 9C:16:43:CE:E0:FA:67:E6:59:D2:C9:CB:43:57:73:90:B1:A3:EA:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FB9C216699692AFA77DAB08E75F908A81CDAD87 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa Signing time: Tue 06 May 2025 00:10:17 +0000 ROA not before: Tue 06 May 2025 00:10:17 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b9:c2:16:69:96:92:af:a7:7d:ab:08:e7:5f:90:8a:81:cd:ad:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:10:17 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=178d05117fce43bb44d8f6845b348e97f2185922711c376ac4c69604d8374718, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:84:3e:bf:ac:6f:df:21:35:45:ea:df:0f:72: 6e:37:2c:8b:21:33:66:51:ce:a9:d2:b5:8c:49:1a: b0:04:0a:e3:08:42:aa:cd:e1:fd:b5:29:b4:7f:89: 32:29:bc:6a:53:5b:5a:91:9d:84:ce:d5:0c:41:02: 37:93:0e:5b:4c:5f:79:bb:c0:bc:c3:10:d8:55:a1: f6:20:b9:b7:bc:49:7e:5c:b0:9c:1a:39:a5:23:87: 6a:3a:ea:c9:d0:17:06:c2:7f:1a:14:dd:5d:b3:f6: fc:aa:d5:20:79:14:82:1c:25:2d:4a:26:ac:85:a5: 33:76:93:d5:c6:fa:a7:51:15:26:27:a2:6f:08:f2: c6:9d:3b:07:fd:ba:5a:23:68:74:19:63:dd:c1:8c: e8:a1:30:16:b3:dd:f1:73:73:54:ef:e9:66:0f:1f: 49:a5:1e:63:c4:68:d0:4a:7b:b5:56:74:2e:85:63: cf:6e:5e:9b:61:1e:d0:fa:49:51:8c:93:fa:96:d8: 9a:c3:2e:51:cb:66:bc:a2:06:a3:d9:65:17:e3:04: c3:c6:2d:b0:ce:d6:43:cc:f9:48:8d:b1:c0:00:2f: 71:b3:a6:6a:2c:84:69:b6:ab:08:fb:a4:64:67:95: 07:16:34:b1:71:52:08:fe:e4:ed:00:f9:e6:c4:28: 35:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:16:43:CE:E0:FA:67:E6:59:D2:C9:CB:43:57:73:90:B1:A3:EA:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3f:49:99:70:1e:82:d6:db:ad:46:43:00:a5:23:ce:f2:35:d9: c6:b3:fe:89:97:f3:ff:6a:6a:08:15:81:a5:68:75:f0:7d:b1: 03:4b:0b:5f:0f:08:1b:50:4b:56:1d:cc:2a:f6:26:ba:39:1c: 96:9d:91:64:ea:ef:f2:73:13:38:cb:ae:a0:25:10:30:b8:39: 76:4a:6d:72:f2:dc:59:dd:be:73:f4:d4:b9:db:44:8a:fc:01: 8e:47:65:68:93:24:cc:5e:ea:07:50:81:c8:1f:42:09:e9:4f: d6:68:0e:bc:7a:26:d5:3c:d7:4d:89:ec:21:9d:ac:3e:c7:d5: 58:60:a1:e7:88:53:c9:8e:32:18:b5:71:81:a9:b7:a5:b5:81: 25:fb:07:0d:a4:bf:e2:6c:2c:73:29:cf:ff:79:ba:b4:74:50: 1f:55:94:72:c2:50:5a:fa:64:d6:34:6e:53:8c:7e:88:eb:65: 2b:37:f6:f1:67:47:e5:df:86:15:4b:ac:ee:31:b9:b6:21:8b: 13:39:22:72:9b:95:93:6d:41:16:7e:01:c7:28:4a:a4:e3:ce: bc:98:ee:ff:6c:e5:93:54:71:3e:42:24:b4:6b:da:bf:57:01: 70:54:6f:c9:22:b7:6c:a3:77:6a:35:98:dd:6f:f9:f2:db:75: d2:73:64:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf7nCFmmWkq+nfasI51+QioHNrYcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA2MDAxMDE3WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzhkMDUxMTdmY2U0M2JiNDRkOGY2ODQ1YjM0OGU5N2Yy MTg1OTIyNzExYzM3NmFjNGM2OTYwNGQ4Mzc0NzE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMhD6/rG/fITVF6t8Pcm43LIshM2ZRzqnStYxJGrAECuMI QqrN4f21KbR/iTIpvGpTW1qRnYTO1QxBAjeTDltMX3m7wLzDENhVofYgube8SX5c sJwaOaUjh2o66snQFwbCfxoU3V2z9vyq1SB5FIIcJS1KJqyFpTN2k9XG+qdRFSYn om8I8sadOwf9ulojaHQZY93BjOihMBaz3fFzc1Tv6WYPH0mlHmPEaNBKe7VWdC6F Y89uXpthHtD6SVGMk/qW2JrDLlHLZryiBqPZZRfjBMPGLbDO1kPM+UiNscAAL3Gz pmoshGm2qwj7pGRnlQcWNLFxUgj+5O0A+ebEKDWrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnBZDzuD6Z+ZZ0snLQ1dzkLGj6qAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYmVlMjk2LWVjMDktNDhlYy1iMTE5LTNkNzI3ZjI4NTM1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoljANBgkqhkiG9w0BAQsFAAOCAQEAP0mZcB6C1tutRkMApSPO8jXZxrP+ iZfz/2pqCBWBpWh18H2xA0sLXw8IG1BLVh3MKvYmujkclp2RZOrv8nMTOMuuoCUQ MLg5dkptcvLcWd2+c/TUudtEivwBjkdlaJMkzF7qB1CByB9CCelP1mgOvHom1TzX TYnsIZ2sPsfVWGCh54hTyY4yGLVxgam3pbWBJfsHDaS/4mwscynP/3m6tHRQH1WU csJQWvpk1jRuU4x+iOtlKzf28WdH5d+GFUus7jG5tiGLEzkicpuVk21BFn4BxyhK pOPOvJju/2zlk1RxPkIktGvav1cBcFRvySK3bKN3ajWY3W/58tt10nNkrg== -----END CERTIFICATE-----Generated at Sun May 11 11:49:39 2025 by rpki-client