$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa File: 533f99b1-b818-4380-8b49-b128210a3f25.roa (raw, json) Hash identifier: uRhjmL9sM9r/bKvsSzCIQDYOu42bu3T75wa1YkN4KPw= Subject key identifier: 3E:07:CE:C3:EC:83:70:13:46:1E:18:9E:02:63:04:7D:8C:AF:F5:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6368F099D2A92D7DC5AE574997FED248870481E2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa Signing time: Sat 03 May 2025 00:00:23 +0000 ROA not before: Sat 03 May 2025 00:00:23 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.221.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:68:f0:99:d2:a9:2d:7d:c5:ae:57:49:97:fe:d2:48:87:04:81:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:23 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=da414d02f1234e07ea0ac52249d7d953fedd6e0bf089c8d2ad1a68099bf2eeed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:5c:d0:da:cc:a9:77:4e:d3:af:fb:f2:7c:56: 48:dd:5f:88:25:b1:5b:a5:8d:02:10:a4:79:32:6f: 80:bc:dc:36:38:5d:f9:f7:c8:c0:19:52:27:9e:a1: 3c:a9:8a:9e:3c:be:36:b0:d3:d4:97:dc:94:2c:55: 31:1a:ec:e6:64:73:95:db:a0:0b:4f:83:2e:49:f0: f7:fd:11:3b:e7:14:12:da:ba:dc:79:8e:af:5b:57: d9:76:ec:b0:5e:61:f7:e6:15:30:56:7d:c5:30:29: bf:ae:5a:e8:61:ce:49:0e:51:cc:c8:6b:d8:d2:9b: 01:51:f2:1a:db:2e:1d:a1:97:96:34:8b:1c:a0:5a: 98:cf:48:09:e7:76:84:1d:ae:7f:1b:98:89:13:d5: 6a:17:64:d7:50:3f:90:09:ac:47:a2:7a:92:ff:52: 81:5d:ec:d6:d2:8a:74:5d:10:87:2f:84:50:c4:b3: 4d:75:f5:7c:26:6a:5c:04:dd:36:c1:23:5d:92:fa: 4c:f2:16:e2:15:9c:4f:33:83:f8:7f:ee:5f:9d:a3: f8:49:fb:47:7c:b7:6a:ec:7b:bf:6a:18:f1:40:e0: d2:92:a2:47:69:ee:62:02:8f:a4:8a:7b:bd:53:9f: 50:d4:3d:26:0b:5e:b1:08:9a:5c:e9:56:27:0c:72: 86:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:07:CE:C3:EC:83:70:13:46:1E:18:9E:02:63:04:7D:8C:AF:F5:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.221.0.0/19 Signature Algorithm: sha256WithRSAEncryption c2:e8:78:65:f3:cc:27:ff:55:5f:d8:f7:b2:04:49:a5:c0:4c: 4d:75:c6:cc:d7:19:93:e7:bc:b9:51:08:43:2b:fc:d0:de:fb: af:48:2b:05:7a:42:28:bb:32:ff:39:33:0e:a1:07:9c:5b:e0: 93:2e:fd:7a:e7:9e:89:35:71:54:ea:4c:2d:84:e0:d6:0e:ac: 29:8e:74:39:0f:61:f5:70:91:10:a3:50:3e:e1:f8:87:71:80: 51:fd:89:6e:a1:8f:b5:fc:8d:22:8f:61:ab:e0:50:5b:13:55: c3:60:11:07:b6:ab:f2:d5:07:11:78:a4:3d:ac:46:68:df:82: 0a:b7:20:2f:eb:03:27:15:a7:4b:41:0f:f9:52:3a:c4:18:15: 54:a1:ad:3e:3b:8f:55:98:f0:6d:8e:72:5c:88:e3:6e:2d:e0: 0b:6c:ac:56:69:ad:9e:cb:6c:a4:f7:69:a7:41:7f:23:64:29: 35:84:c3:e1:25:76:5f:25:d3:86:61:15:6e:0b:40:b1:39:01: 4d:68:ed:4a:5e:04:4a:c4:03:96:a1:71:a0:6b:60:33:f8:48: d9:e1:97:50:8d:51:24:19:71:f7:b6:43:eb:87:af:c2:b1:b8: 73:df:1e:ee:a8:ab:0d:fc:0d:1d:4f:1a:d4:f8:ac:0a:1c:08: e0:f5:97:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY2jwmdKpLX3FrldJl/7SSIcEgeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAwMDIzWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTQxNGQwMmYxMjM0ZTA3ZWEwYWM1MjI0OWQ3ZDk1M2Zl ZGQ2ZTBiZjA4OWM4ZDJhZDFhNjgwOTliZjJlZWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEXNDazKl3TtOv+/J8VkjdX4glsVuljQIQpHkyb4C83DY4 Xfn3yMAZUieeoTypip48vjaw09SX3JQsVTEa7OZkc5XboAtPgy5J8Pf9ETvnFBLa utx5jq9bV9l27LBeYffmFTBWfcUwKb+uWuhhzkkOUczIa9jSmwFR8hrbLh2hl5Y0 ixygWpjPSAnndoQdrn8bmIkT1WoXZNdQP5AJrEeiepL/UoFd7NbSinRdEIcvhFDE s0119XwmalwE3TbBI12S+kzyFuIVnE8zg/h/7l+do/hJ+0d8t2rse79qGPFA4NKS okdp7mICj6SKe71Tn1DUPSYLXrEImlzpVicMcoanAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPgfOw+yDcBNGHhieAmMEfYyv9cswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzM2Y5OWIxLWI4MTgtNDM4MC04YjQ5LWIxMjgyMTBhM2YyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXP3QAwDQYJKoZIhvcNAQELBQADggEBAMLoeGXzzCf/VV/Y97IESaXATE11 xszXGZPnvLlRCEMr/NDe+69IKwV6Qii7Mv85Mw6hB5xb4JMu/Xrnnok1cVTqTC2E 4NYOrCmOdDkPYfVwkRCjUD7h+IdxgFH9iW6hj7X8jSKPYavgUFsTVcNgEQe2q/LV BxF4pD2sRmjfggq3IC/rAycVp0tBD/lSOsQYFVShrT47j1WY8G2OclyI424t4Ats rFZprZ7LbKT3aadBfyNkKTWEw+Eldl8l04ZhFW4LQLE5AU1o7UpeBErEA5ahcaBr YDP4SNnhl1CNUSQZcfe2Q+uHr8KxuHPfHu6oqw38DR1PGtT4rAocCOD1l+8= -----END CERTIFICATE-----Generated at Sun May 11 01:12:19 2025 by rpki-client