$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/408bfdaa-b91c-4b0b-b2cc-d19587d1ff46.roa File: 408bfdaa-b91c-4b0b-b2cc-d19587d1ff46.roa (raw, json) Hash identifier: R/c/do2vip4gWXXBTlmSgeDkvw18cNFKS5WaXvkyHqc= Subject key identifier: 41:08:D0:44:64:AB:F5:C6:DE:F6:8F:E0:CC:DD:BA:F7:8D:A8:4D:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 023BE9EAF00ED39B4A9ED5696E2363BE9585D4CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/408bfdaa-b91c-4b0b-b2cc-d19587d1ff46.roa Signing time: Thu 08 May 2025 19:06:56 +0000 ROA not before: Thu 08 May 2025 19:06:56 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.152.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:3b:e9:ea:f0:0e:d3:9b:4a:9e:d5:69:6e:23:63:be:95:85:d4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 19:06:56 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=08761a0c5cf4103ab711fa626e1408d00030904bdc59209108f2886925d6fa87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ee:73:8b:13:28:98:30:5e:9c:cc:6c:4b:82: 96:3b:c8:6b:bd:43:bc:06:64:e3:40:80:50:92:ba: c8:4f:b4:3e:8d:d4:24:de:b5:45:16:21:ce:a9:22: e1:3e:bb:16:9c:4c:5e:3d:dc:05:a3:7b:c7:25:39: 69:2d:f0:ce:10:c5:44:1d:02:14:27:f1:9d:9f:01: ec:f5:6b:cb:42:aa:26:cc:dc:85:1e:f8:8f:04:ac: f6:35:82:2b:62:78:35:b6:5f:ef:84:96:84:4f:d6: b1:cd:27:eb:10:6f:a3:c0:e2:04:26:9b:8f:17:b0: 45:f8:44:e1:ae:a8:39:0b:94:34:5b:49:a2:6c:4f: de:b6:4b:be:3f:e8:d5:2d:d7:c0:4c:f9:10:fa:bf: 46:2b:5a:0e:f4:5a:d0:76:f7:88:51:87:0d:8a:2b: b4:72:f7:2c:3b:b8:c6:83:bd:4c:27:27:c8:f6:42: 9d:ce:d3:f3:19:91:4f:55:3a:1c:4e:25:a5:4a:38: 34:cf:e0:be:e4:27:84:a2:d0:67:3a:f5:73:65:9a: 79:7b:5c:a8:cc:77:64:e6:63:61:cb:37:82:de:c5: 8a:82:de:c1:e3:18:96:58:f7:7b:9c:79:15:65:69: 1f:2f:24:00:15:14:de:18:f4:66:66:21:aa:f6:62: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:08:D0:44:64:AB:F5:C6:DE:F6:8F:E0:CC:DD:BA:F7:8D:A8:4D:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/408bfdaa-b91c-4b0b-b2cc-d19587d1ff46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.152.0.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:ed:c2:2f:7e:19:18:49:95:0f:a2:5b:31:50:e1:6b:a4:f5: f8:1f:61:4b:40:af:09:39:4d:f5:38:1f:d7:4e:b2:f1:8c:7c: ed:37:8d:64:fd:9d:a5:bb:79:25:bf:6e:ee:e1:21:88:82:59: 65:3c:ce:17:f9:10:be:d2:a1:ac:93:9a:ca:3b:a4:8d:94:8e: 49:f8:57:f1:38:15:f9:3e:c5:74:ce:5d:be:93:aa:b1:9c:35: d0:f4:e0:1d:ba:95:a3:26:3f:8d:b4:6e:7e:77:c5:c7:d2:6e: c4:33:2b:79:77:be:f5:13:26:63:c7:9f:4a:11:83:5b:9b:74: a0:63:64:f6:70:8e:09:74:54:cb:43:4f:4d:7b:81:25:e1:98: 2a:71:68:6d:31:d3:15:d0:d2:7d:f0:a1:ef:63:a8:83:7f:ed: cb:82:a0:03:e6:1e:21:2b:23:0e:01:07:fb:f9:7b:6d:40:79: 7a:44:2c:ae:87:d5:eb:e2:10:8d:68:77:e4:b2:8b:f4:5e:40: ac:5c:7d:28:bc:dd:1c:d3:c8:a9:fb:f6:05:b2:57:13:c1:70: 13:3b:eb:29:1d:d1:73:f8:99:d1:95:2c:62:ff:ae:47:b8:14: b9:9d:1d:43:4e:77:76:75:d9:99:67:53:c2:f7:49:4e:74:2b: d3:95:67:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAjvp6vAO05tKntVpbiNjvpWF1M4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTkwNjU2WhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODc2MWEwYzVjZjQxMDNhYjcxMWZhNjI2ZTE0MDhkMDAw MzA5MDRiZGM1OTIwOTEwOGYyODg2OTI1ZDZmYTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy7nOLEyiYMF6czGxLgpY7yGu9Q7wGZONAgFCSushPtD6N 1CTetUUWIc6pIuE+uxacTF493AWje8clOWkt8M4QxUQdAhQn8Z2fAez1a8tCqibM 3IUe+I8ErPY1gitieDW2X++EloRP1rHNJ+sQb6PA4gQmm48XsEX4ROGuqDkLlDRb SaJsT962S74/6NUt18BM+RD6v0YrWg70WtB294hRhw2KK7Ry9yw7uMaDvUwnJ8j2 Qp3O0/MZkU9VOhxOJaVKODTP4L7kJ4Si0Gc69XNlmnl7XKjMd2TmY2HLN4LexYqC 3sHjGJZY93uceRVlaR8vJAAVFN4Y9GZmIar2Yp5rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQQjQRGSr9cbe9o/gzN26942oTdkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwOGJmZGFhLWI5MWMtNGIwYi1iMmNjLWQxOTU4N2QxZmY0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNmAAwDQYJKoZIhvcNAQELBQADggEBAJvtwi9+GRhJlQ+iWzFQ4Wuk9fgf YUtArwk5TfU4H9dOsvGMfO03jWT9naW7eSW/bu7hIYiCWWU8zhf5EL7SoayTmso7 pI2Ujkn4V/E4Ffk+xXTOXb6TqrGcNdD04B26laMmP420bn53xcfSbsQzK3l3vvUT JmPHn0oRg1ubdKBjZPZwjgl0VMtDT017gSXhmCpxaG0x0xXQ0n3woe9jqIN/7cuC oAPmHiErIw4BB/v5e21AeXpELK6H1eviEI1od+Syi/ReQKxcfSi83RzTyKn79gWy VxPBcBM76ykd0XP4mdGVLGL/rke4FLmdHUNOd3Z12ZlnU8L3SU50K9OVZ8I= -----END CERTIFICATE-----Generated at Mon May 12 02:07:21 2025 by rpki-client