$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa File: 764f43c2-e082-43ab-bc88-6880529588f0.roa (raw, json) Hash identifier: nHThHhqXMwsPpB6YF0pXkkw44v2R0nCGH4HgQ5Q18pc= Subject key identifier: 64:1A:E9:14:3C:E3:3A:BE:41:98:2E:D6:C3:E3:02:69:6E:D5:60:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DD4CEFAEC82F3CB84FB187210AE28392BD6803C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa Signing time: Fri 09 May 2025 00:21:29 +0000 ROA not before: Fri 09 May 2025 00:21:29 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d4:ce:fa:ec:82:f3:cb:84:fb:18:72:10:ae:28:39:2b:d6:80:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:21:29 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=9eb406fe2cb52ed05e5d8053cf5892ec629b6dd3ec1863c73ff113d0e44a8963, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f8:b7:70:86:38:c9:08:68:42:72:e0:9d:59: 1e:66:d0:14:24:88:8c:4b:58:3e:8f:12:fd:51:85: 97:3b:96:52:5e:af:92:32:0c:50:24:fc:ad:81:21: 64:e3:34:e9:b2:43:c8:20:52:ce:28:49:da:75:8e: d5:33:11:00:b1:80:11:4d:cb:ec:47:c7:09:48:25: fa:04:7e:86:0a:1c:9a:b3:30:52:ab:5f:ae:38:93: c4:93:4a:a7:a1:96:09:2d:04:4c:cf:0f:9b:c4:00: 0b:c1:95:23:96:5b:2d:90:38:2d:2d:b7:73:d5:32: 19:80:7a:9a:72:4e:60:62:33:be:3d:56:ee:e1:81: 4b:d7:bb:90:ba:4f:be:77:1a:a2:f4:fc:67:cb:a0: b9:6c:c5:c8:6b:db:b0:00:a7:e6:c9:4a:34:ce:2f: 0c:de:ae:62:6c:7c:a4:1e:74:25:73:88:07:a1:74: 88:93:1f:84:29:4d:60:2a:b5:25:81:ed:fc:17:2b: 89:bd:dc:46:68:ed:07:7a:21:53:35:32:12:73:3a: b8:93:3e:77:0b:75:9c:6f:be:0f:1b:bb:83:9a:d9: a6:f7:df:58:07:ca:06:73:c2:3f:59:a9:3e:b4:e7: ef:50:28:1f:8c:e7:f8:ba:6b:26:02:81:66:72:60: ab:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1A:E9:14:3C:E3:3A:BE:41:98:2E:D6:C3:E3:02:69:6E:D5:60:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.0.0/17 Signature Algorithm: sha256WithRSAEncryption ae:9a:37:94:fa:42:70:e9:56:a0:a2:29:4c:32:f3:d3:68:a2: ab:ff:e8:6a:4e:cd:e3:b3:26:01:6f:4e:2c:23:02:12:bf:cb: 51:e1:40:b4:09:9d:47:a3:89:d4:54:93:64:74:a8:90:67:11: 8e:d2:ae:6c:7c:b7:3f:ac:5d:6f:b7:75:9a:3e:47:72:65:9a: 14:c6:ef:38:60:ca:e6:38:4f:2f:d2:84:0e:20:27:52:46:30: 3f:5c:67:05:b0:12:8f:a5:88:84:76:f2:b9:32:7a:52:d6:e8: 0a:f5:db:ff:64:bb:3f:62:a1:7e:50:cc:50:cb:1c:22:c0:45: ff:2c:4c:13:40:c8:ef:04:8e:b5:d6:d2:49:73:cf:50:44:15: 67:79:9b:71:9e:84:c5:50:58:1b:ac:08:4b:1b:9d:0a:e0:d8: ce:78:c8:42:56:af:ab:98:24:54:d6:50:24:5e:ff:92:e3:6e: 37:53:26:13:64:59:ee:e2:53:87:c2:fb:18:05:69:1c:5a:ce: 9a:9c:87:ea:37:c0:50:83:4a:5f:ec:55:a6:79:df:8e:0b:63: 32:72:e0:5c:70:88:de:5f:9b:0f:a1:c7:e0:65:5f:71:8c:79: 23:1b:c9:28:e8:f6:c1:42:26:8f:b0:d9:8f:73:2d:26:02:99: 40:a7:d9:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDdTO+uyC88uE+xhyEK4oOSvWgDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMTI5WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWI0MDZmZTJjYjUyZWQwNWU1ZDgwNTNjZjU4OTJlYzYy OWI2ZGQzZWMxODYzYzczZmYxMTNkMGU0NGE4OTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDs+LdwhjjJCGhCcuCdWR5m0BQkiIxLWD6PEv1RhZc7llJe r5IyDFAk/K2BIWTjNOmyQ8ggUs4oSdp1jtUzEQCxgBFNy+xHxwlIJfoEfoYKHJqz MFKrX644k8STSqehlgktBEzPD5vEAAvBlSOWWy2QOC0tt3PVMhmAeppyTmBiM749 Vu7hgUvXu5C6T753GqL0/GfLoLlsxchr27AAp+bJSjTOLwzermJsfKQedCVziAeh dIiTH4QpTWAqtSWB7fwXK4m93EZo7Qd6IVM1MhJzOriTPncLdZxvvg8bu4Oa2ab3 31gHygZzwj9ZqT605+9QKB+M5/i6ayYCgWZyYKtdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZBrpFDzjOr5BmC7Ww+MCaW7VYLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2NGY0M2MyLWUwODItNDNhYi1iYzg4LTY4ODA1Mjk1ODhmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe4SQAwDQYJKoZIhvcNAQELBQADggEBAK6aN5T6QnDpVqCiKUwy89Nooqv/ 6GpOzeOzJgFvTiwjAhK/y1HhQLQJnUejidRUk2R0qJBnEY7Srmx8tz+sXW+3dZo+ R3JlmhTG7zhgyuY4Ty/ShA4gJ1JGMD9cZwWwEo+liIR28rkyelLW6Ar12/9kuz9i oX5QzFDLHCLARf8sTBNAyO8EjrXW0klzz1BEFWd5m3GehMVQWBusCEsbnQrg2M54 yEJWr6uYJFTWUCRe/5LjbjdTJhNkWe7iU4fC+xgFaRxazpqch+o3wFCDSl/sVaZ5 344LYzJy4FxwiN5fmw+hx+BlX3GMeSMbySjo9sFCJo+w2Y9zLSYCmUCn2UU= -----END CERTIFICATE-----Generated at Tue May 13 02:43:58 2025 by rpki-client