$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa File: 570db642-6bdc-4f5f-a286-d6a5418c1967.roa (raw, json) Hash identifier: JcW0hr5zpdKbN4IVTu4gDQWOXDTCUGBjkGv4XE8dgv8= Subject key identifier: 4C:A8:3C:F7:8A:CA:94:B6:A5:EE:20:C2:AC:EC:E2:61:43:78:AB:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 455ABF9528666A0AF35E327676EE0D36A1968E15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa Signing time: Sat 10 May 2025 00:20:12 +0000 ROA not before: Sat 10 May 2025 00:20:12 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:5a:bf:95:28:66:6a:0a:f3:5e:32:76:76:ee:0d:36:a1:96:8e:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:20:12 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=44f2c0d0c727f36651e51a3e129b842e6a59fc3b52479649775e248ff2365cc7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:65:83:b1:1e:26:3e:6b:41:31:cd:bb:5e:1b: 2a:15:4b:06:80:ad:96:2a:72:3b:3f:c6:6d:14:c9: bf:df:f7:16:37:9d:f0:11:33:c2:48:23:8e:0f:f0: 0a:17:61:f3:c0:c2:7b:cc:d9:dd:a9:c2:31:85:9f: 5a:88:20:06:69:b3:8b:1a:af:db:eb:65:b4:7d:e6: a0:f8:23:76:77:c5:0e:f7:ce:d4:32:3b:b1:91:a5: ef:da:53:a7:23:90:82:3a:4e:0a:59:3b:29:ae:26: 85:00:13:f1:f9:74:ba:38:f0:7e:56:8d:a0:f6:96: 22:dc:b8:87:00:25:b7:6c:d6:9d:c4:d4:3e:a6:de: a6:10:5d:59:e8:61:7a:9e:a7:cd:83:cf:ed:9b:d8: 1e:aa:57:64:d1:f3:23:d5:f4:f1:71:e6:c7:69:9e: b1:fc:e7:0b:4e:99:94:42:74:b3:8c:03:54:21:9f: 7b:41:51:63:62:30:85:62:1e:77:d2:76:35:a4:ec: a1:10:ef:93:2a:c0:57:86:88:21:b5:96:a7:ff:a1: 23:b1:95:88:06:c0:b1:5e:a4:5f:f0:13:cd:a9:f4: 6e:88:9a:b8:ad:cb:08:6e:97:10:e3:ae:e0:c6:5e: 3f:21:5a:41:c1:24:62:be:d6:40:10:f1:fe:f3:0d: 16:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A8:3C:F7:8A:CA:94:B6:A5:EE:20:C2:AC:EC:E2:61:43:78:AB:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7c:ee:73:ec:aa:15:bf:18:d1:c0:99:04:00:a0:c2:1e:41:c1: 97:de:99:cc:cd:88:12:bd:02:ad:77:5d:5d:ec:84:d1:8f:6e: 2a:f4:fa:3b:02:95:b8:7a:19:8a:c5:5f:86:5b:68:a0:5c:4a: 7b:e7:f0:07:b8:2f:91:68:7b:2d:78:60:5b:10:7d:f6:4f:8f: b5:03:60:23:11:35:eb:56:39:5b:2c:9c:17:0c:69:17:12:82: cc:24:17:bf:2a:9c:37:1b:9b:52:fd:27:2c:4f:69:c1:75:46: 52:21:0d:25:4a:a8:8a:e1:2d:df:62:9c:a7:47:c0:66:46:06: b8:16:2b:7e:67:a8:bf:f4:f7:02:9c:14:be:0a:c8:ec:a8:83: 0a:02:95:c3:c7:86:7a:50:77:58:1b:5b:e2:5c:df:11:e0:67: e7:22:57:a6:b5:b7:f9:ab:f0:38:83:7d:44:62:75:77:8c:d9: 50:5d:7b:2f:69:08:ff:8b:52:a7:4a:34:2f:45:dc:76:a4:26: 4e:a5:c7:7f:1b:7e:c8:31:61:e7:53:a1:66:10:1e:56:ea:73: 19:ec:86:1f:f7:7e:41:7b:85:a9:a5:04:75:a2:28:5d:64:69: e9:65:a5:00:0b:ac:5f:fc:ec:ae:93:e7:c4:1a:54:e8:44:e5: 6e:fb:e3:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURVq/lShmagrzXjJ2du4NNqGWjhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAyMDEyWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGYyYzBkMGM3MjdmMzY2NTFlNTFhM2UxMjliODQyZTZh NTlmYzNiNTI0Nzk2NDk3NzVlMjQ4ZmYyMzY1Y2M3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsZYOxHiY+a0ExzbteGyoVSwaArZYqcjs/xm0Uyb/f9xY3 nfARM8JII44P8AoXYfPAwnvM2d2pwjGFn1qIIAZps4sar9vrZbR95qD4I3Z3xQ73 ztQyO7GRpe/aU6cjkII6TgpZOymuJoUAE/H5dLo48H5WjaD2liLcuIcAJbds1p3E 1D6m3qYQXVnoYXqep82Dz+2b2B6qV2TR8yPV9PFx5sdpnrH85wtOmZRCdLOMA1Qh n3tBUWNiMIViHnfSdjWk7KEQ75MqwFeGiCG1lqf/oSOxlYgGwLFepF/wE82p9G6I mritywhulxDjruDGXj8hWkHBJGK+1kAQ8f7zDRa3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTKg894rKlLal7iDCrOziYUN4q8cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3MGRiNjQyLTZiZGMtNGY1Zi1hMjg2LWQ2YTU0MThjMTk2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBdSzANBgkqhkiG9w0BAQsFAAOCAQEAfO5z7KoVvxjRwJkEAKDCHkHBl96Z zM2IEr0CrXddXeyE0Y9uKvT6OwKVuHoZisVfhltooFxKe+fwB7gvkWh7LXhgWxB9 9k+PtQNgIxE161Y5WyycFwxpFxKCzCQXvyqcNxubUv0nLE9pwXVGUiENJUqoiuEt 32Kcp0fAZkYGuBYrfmeov/T3ApwUvgrI7KiDCgKVw8eGelB3WBtb4lzfEeBn5yJX prW3+avwOIN9RGJ1d4zZUF17L2kI/4tSp0o0L0XcdqQmTqXHfxt+yDFh51OhZhAe VupzGeyGH/d+QXuFqaUEdaIoXWRp6WWlAAusX/zsrpPnxBpU6ETlbvvjEA== -----END CERTIFICATE-----Generated at Sat May 10 16:21:46 2025 by rpki-client