$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa File: 75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa (raw, json) Hash identifier: 1e9bZ9U8OyDCVCIefTvyhfO4upaPhXTPDIe7p/laa0E= Subject key identifier: 4F:B6:44:E1:CF:38:C3:9E:AF:45:18:11:13:59:6A:CE:88:3D:84:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 478B0B749B3C56F42AE1DE7757A05580998D4DC5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa Signing time: Sat 03 May 2025 00:02:07 +0000 ROA not before: Sat 03 May 2025 00:02:07 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.15.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8b:0b:74:9b:3c:56:f4:2a:e1:de:77:57:a0:55:80:99:8d:4d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:02:07 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=a5361ee5096ef76836067a0324b21950924ba770929a8c7a03abcb696bfb60be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:60:b8:56:05:5e:30:56:8d:c3:51:e2:d9: 10:3c:db:f2:59:bd:9f:2c:4e:95:f5:52:35:4b:15: cc:cd:f6:b3:81:f9:2b:06:40:1c:e1:62:e3:d2:d0: 4f:8c:19:ba:53:d1:50:4c:b4:e9:e0:f8:c9:7d:e5: 30:4d:9e:04:cd:1a:42:89:13:62:4e:c9:fc:a2:b3: 6a:13:6f:ae:8d:8d:1c:d1:76:93:d8:46:45:91:65: e6:fd:3d:e0:ce:2d:9c:5e:17:8e:5a:a8:71:6b:f7: 88:54:43:65:0b:b4:20:e2:d7:47:12:65:4f:6d:48: 1d:82:00:da:88:3b:ae:92:e2:a0:1b:21:c1:5d:d9: fd:e8:b5:51:59:22:dc:4a:6b:b2:0d:a6:96:c5:ff: 66:23:d3:d3:ad:ef:4d:c9:2c:99:7c:61:93:11:9e: f0:c2:c1:ec:32:70:6b:ce:56:30:0e:51:2d:12:26: 42:03:83:a3:d0:3f:4f:45:c2:0e:09:69:8c:12:50: c0:7c:3e:b2:14:5a:c2:70:ba:ea:18:3f:dc:dc:b9: fd:40:d5:e4:28:4b:1f:a5:0c:5c:5a:bc:b5:66:e3: bc:f0:42:85:88:56:af:66:43:87:ad:78:8a:c6:a7: 02:4a:2d:be:8b:e8:fe:7a:45:d8:3b:0b:a7:23:c4: 50:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B6:44:E1:CF:38:C3:9E:AF:45:18:11:13:59:6A:CE:88:3D:84:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.15.72.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:f0:f5:cb:bb:cb:20:0b:ae:d8:18:22:4d:61:0b:6b:fb:38: 79:8c:a6:8f:aa:bc:ee:e6:92:3c:6a:0a:8e:8d:a1:b2:52:8d: 8f:8c:e9:93:b0:86:8d:af:15:c7:0b:03:31:35:72:20:fc:ed: 1b:30:2a:7a:e6:6b:9c:af:14:8f:50:ba:34:92:7b:a9:78:3a: aa:e1:84:e4:94:0e:73:f8:93:99:02:fe:0e:f6:34:f1:99:93: 4e:6f:8f:82:55:64:fb:37:b6:7f:20:83:1e:13:b6:15:a1:7c: 4c:79:d6:29:3e:70:f7:b4:c3:64:ae:37:dd:eb:83:6a:18:c2: c4:b8:54:e5:dc:d4:2c:3b:45:dc:c0:df:89:d0:18:46:34:0e: bc:5c:27:09:c2:be:75:84:f8:b6:e3:50:82:bc:ab:42:04:51: 17:79:63:23:ff:1c:56:94:7a:01:a7:e5:12:dd:47:e3:e3:fa: be:f3:1d:55:31:00:5b:73:e2:c5:fe:a4:b0:af:1c:5d:ad:44: 21:7a:6f:a7:14:e2:33:b4:d5:6f:c7:24:2c:3c:5b:81:72:f2: 54:10:be:2b:61:c3:24:2f:5b:f0:ab:70:d9:c3:be:a4:6b:5d: d7:72:00:02:e1:29:bb:52:9f:b9:8f:0c:e1:0e:14:c7:6b:75: e9:38:e4:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR4sLdJs8VvQq4d53V6BVgJmNTcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAwMjA3WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTM2MWVlNTA5NmVmNzY4MzYwNjdhMDMyNGIyMTk1MDky NGJhNzcwOTI5YThjN2EwM2FiY2I2OTZiZmI2MGJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgD2C4VgVeMFaNw1Hi2RA82/JZvZ8sTpX1UjVLFczN9rOB +SsGQBzhYuPS0E+MGbpT0VBMtOng+Ml95TBNngTNGkKJE2JOyfyis2oTb66NjRzR dpPYRkWRZeb9PeDOLZxeF45aqHFr94hUQ2ULtCDi10cSZU9tSB2CANqIO66S4qAb IcFd2f3otVFZItxKa7INppbF/2Yj09Ot703JLJl8YZMRnvDCwewycGvOVjAOUS0S JkIDg6PQP09Fwg4JaYwSUMB8PrIUWsJwuuoYP9zcuf1A1eQoSx+lDFxavLVm47zw QoWIVq9mQ4eteIrGpwJKLb6L6P56Rdg7C6cjxFBzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT7ZE4c84w56vRRgRE1lqzog9hDowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZDlmY2Y0LTQyMjgtNDlkNS1iZDdiLWQwNDM5MTQxZmI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMD0gwDQYJKoZIhvcNAQELBQADggEBAE3w9cu7yyALrtgYIk1hC2v7OHmM po+qvO7mkjxqCo6NobJSjY+M6ZOwho2vFccLAzE1ciD87RswKnrma5yvFI9QujSS e6l4OqrhhOSUDnP4k5kC/g72NPGZk05vj4JVZPs3tn8ggx4TthWhfEx51ik+cPe0 w2SuN93rg2oYwsS4VOXc1Cw7RdzA34nQGEY0DrxcJwnCvnWE+LbjUIK8q0IEURd5 YyP/HFaUegGn5RLdR+Pj+r7zHVUxAFtz4sX+pLCvHF2tRCF6b6cU4jO01W/HJCw8 W4Fy8lQQvithwyQvW/CrcNnDvqRrXddyAALhKbtSn7mPDOEOFMdrdek45AY= -----END CERTIFICATE-----Generated at Sat May 10 19:27:42 2025 by rpki-client