$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa File: 69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa (raw, json) Hash identifier: UdLdTG/XX+OZKlWJm0ciHzd6lvGHQGVu65XMnyUr2hg= Subject key identifier: 97:9A:27:4B:85:FC:8F:70:DB:A3:1A:45:A0:2B:56:EC:60:77:29:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56EAF2B131E04F709C70C7043791590D3FD369FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa Signing time: Tue 29 Apr 2025 00:20:50 +0000 ROA not before: Tue 29 Apr 2025 00:20:50 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.2.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ea:f2:b1:31:e0:4f:70:9c:70:c7:04:37:91:59:0d:3f:d3:69:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:50 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=693ce8d319e06d6b0017ce11420ce22c631eb776ad0a55ea17d0f84d6d504e21, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:51:6a:83:17:17:72:e6:7a:3c:15:c4:54: d0:7a:85:ca:b4:55:e2:19:08:b7:96:bc:e2:78:7d: 41:22:26:15:77:6b:8e:e0:94:9c:9d:9d:e0:2a:d6: b5:bb:dd:38:7f:70:f7:38:80:c0:f3:4d:0e:3e:69: c1:5f:81:92:1a:9d:d2:81:e6:9e:96:5c:f1:bb:24: 9c:d1:c3:b2:85:72:58:2e:6d:7c:99:1f:e4:00:50: ca:45:59:e0:69:1f:53:09:0f:89:08:11:4e:57:01: 7a:30:0e:f5:67:a3:05:42:56:a1:1a:cf:02:d1:a9: b2:6f:23:f6:5e:4b:53:20:b0:84:34:d2:bd:b6:7a: fc:50:82:9c:83:d5:9a:95:5b:d4:cb:5c:02:7c:91: 9e:41:93:d0:96:0f:51:76:03:a6:9c:1d:ff:02:8d: 5e:f3:59:74:a2:f4:c3:04:35:eb:58:49:5c:e0:19: 56:66:bd:c8:e7:58:6d:0d:5d:c0:8a:e7:e4:53:9e: 50:70:3a:9b:eb:56:fd:59:19:24:f8:8d:05:ee:c0: 42:f1:46:77:43:58:2c:9b:be:bc:da:a0:8e:54:b7: 66:cf:17:15:ee:df:ca:89:cb:7c:85:f6:78:79:1a: 41:f9:cd:d7:17:1f:10:e4:56:d5:00:e5:27:61:55: 61:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9A:27:4B:85:FC:8F:70:DB:A3:1A:45:A0:2B:56:EC:60:77:29:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69644a12-03d8-4112-9ef8-1852d3f0b9a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.2.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:01:5a:93:d2:1c:1e:8b:75:d2:7c:15:e6:e1:1d:d1:5f:15: c8:75:eb:8a:b8:b5:db:e0:84:d8:18:d5:79:2b:ef:01:64:aa: 1e:e8:e6:1c:88:ca:1e:ed:72:c4:b1:66:9a:f4:9d:2c:51:61: 0b:24:b4:bd:18:82:c4:2e:21:7a:80:1f:60:1a:2b:5e:80:2e: 29:11:b2:e4:67:a9:60:da:27:10:a8:d0:e6:04:f5:a2:ea:e0: 4e:60:74:f9:6d:26:4b:02:e4:13:fb:50:7c:5f:f5:8f:50:64: ab:bb:e9:41:7a:08:ce:ab:e7:ff:e8:02:b9:e8:61:c3:75:a2: 82:63:70:83:e7:c9:18:1c:23:5c:2c:0f:c3:d0:d8:d7:8e:19: 5e:2a:e0:8f:98:7e:92:d0:cb:a5:d4:b1:45:b3:17:e1:bd:94: 15:e2:17:e8:bc:12:91:0d:e5:dc:65:b3:66:16:f3:ec:0d:d5: c4:a7:df:4e:ed:cb:a4:17:a0:73:a9:59:89:06:75:4c:c1:c6: c5:c8:23:39:46:83:07:57:1f:d6:67:9c:43:ee:f4:fa:d1:ed: 35:07:d9:f6:37:8a:7e:d0:60:87:79:9f:17:dc:02:8a:b6:8a: 3a:65:4c:d7:40:d8:68:0f:b4:b5:f8:3d:74:ca:36:35:b9:00: b2:66:a9:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVurysTHgT3CccMcEN5FZDT/TafwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMDUwWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTNjZThkMzE5ZTA2ZDZiMDAxN2NlMTE0MjBjZTIyYzYz MWViNzc2YWQwYTU1ZWExN2QwZjg0ZDZkNTA0ZTIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr81FqgxcXcuZ6PBXEVNB6hcq0VeIZCLeWvOJ4fUEiJhV3 a47glJydneAq1rW73Th/cPc4gMDzTQ4+acFfgZIandKB5p6WXPG7JJzRw7KFclgu bXyZH+QAUMpFWeBpH1MJD4kIEU5XAXowDvVnowVCVqEazwLRqbJvI/ZeS1MgsIQ0 0r22evxQgpyD1ZqVW9TLXAJ8kZ5Bk9CWD1F2A6acHf8CjV7zWXSi9MMENetYSVzg GVZmvcjnWG0NXcCK5+RTnlBwOpvrVv1ZGST4jQXuwELxRndDWCybvrzaoI5Ut2bP FxXu38qJy3yF9nh5GkH5zdcXHxDkVtUA5SdhVWFlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl5onS4X8j3DboxpFoCtW7GB3KX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NjQ0YTEyLTAzZDgtNDExMi05ZWY4LTE4NTJkM2YwYjlhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdLAgAwDQYJKoZIhvcNAQELBQADggEBAI8BWpPSHB6LddJ8FebhHdFfFch1 64q4tdvghNgY1Xkr7wFkqh7o5hyIyh7tcsSxZpr0nSxRYQsktL0YgsQuIXqAH2Aa K16ALikRsuRnqWDaJxCo0OYE9aLq4E5gdPltJksC5BP7UHxf9Y9QZKu76UF6CM6r 5//oArnoYcN1ooJjcIPnyRgcI1wsD8PQ2NeOGV4q4I+YfpLQy6XUsUWzF+G9lBXi F+i8EpEN5dxls2YW8+wN1cSn307ty6QXoHOpWYkGdUzBxsXIIzlGgwdXH9ZnnEPu 9PrR7TUH2fY3in7QYId5nxfcAoq2ijplTNdA2GgPtLX4PXTKNjW5ALJmqQM= -----END CERTIFICATE-----Generated at Sun May 11 15:38:42 2025 by rpki-client