$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8199c576-c731-4f10-afdb-bdcaf1db82eb.roa File: 8199c576-c731-4f10-afdb-bdcaf1db82eb.roa (raw, json) Hash identifier: gipx9ffrAxb9dF9iBAUhrh8IRF3xfgDQ7EcvcjSZJEs= Subject key identifier: 7B:13:51:CC:38:8F:18:E8:1C:D5:E5:76:D1:C9:F7:F5:BB:10:E9:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26C523CC627339BC0C6C6DB06377D3CACBBA16F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8199c576-c731-4f10-afdb-bdcaf1db82eb.roa Signing time: Tue 29 Apr 2025 00:20:59 +0000 ROA not before: Tue 29 Apr 2025 00:20:59 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 80.241.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c5:23:cc:62:73:39:bc:0c:6c:6d:b0:63:77:d3:ca:cb:ba:16:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:59 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=3c612caba12ab10d9489661336380a94e4f0cc19a9bea6ae6148bce76ccde7ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:12:9a:65:ab:80:aa:34:6f:f8:f6:d7:eb:2b: 40:15:72:57:20:78:64:79:dd:2b:86:b5:2f:33:1d: d1:70:b1:13:5f:73:f2:36:97:c5:b8:32:41:33:34: b9:00:ea:d3:26:24:09:1e:8a:31:07:51:1f:1d:99: 72:21:9f:6e:65:83:d6:96:b8:6a:de:70:bc:db:76: 89:27:be:63:8e:ba:e0:3c:75:87:a2:27:65:df:cd: 32:dc:63:98:07:bb:d3:92:25:11:45:34:70:98:f9: 09:74:fa:c2:3c:9f:a8:dd:dd:ba:fa:ab:9c:53:a2: 99:66:3a:19:7e:df:c1:95:23:44:69:45:c1:fa:16: d9:34:23:ce:80:1f:6c:13:95:0d:c2:b1:7a:e7:b9: 69:7e:b1:42:d6:53:23:f9:b2:1f:09:16:a9:4c:a9: 60:8b:40:21:08:1d:69:6a:63:5c:51:47:59:ec:f5: d6:f5:9c:7d:96:29:77:63:07:f1:fb:84:e6:f4:74: f9:a3:14:10:ab:0c:e2:38:df:94:ab:0c:b3:d7:ab: 9e:4f:2b:98:53:00:4c:f8:26:6b:30:c1:3b:e5:47: 14:97:b0:6c:e0:92:4a:b9:e7:4c:3c:8c:2c:3e:3d: 33:f7:8d:70:8a:31:e5:16:c3:9f:c0:2f:87:de:53: 55:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:13:51:CC:38:8F:18:E8:1C:D5:E5:76:D1:C9:F7:F5:BB:10:E9:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8199c576-c731-4f10-afdb-bdcaf1db82eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.241.160.0/20 Signature Algorithm: sha256WithRSAEncryption 06:7f:33:7b:b1:de:8f:e6:64:dd:3e:ef:ee:08:1d:7f:bd:61: 1f:f0:27:e9:ee:3e:86:af:ba:50:4d:45:dc:bc:29:29:7b:f4: 8d:d1:9d:cd:da:b4:03:30:4d:8b:7a:9c:4c:37:a3:e7:d4:f1: 29:f4:fe:24:d4:8f:32:06:15:e7:0c:22:59:33:04:6b:f8:1b: fa:62:9e:f9:3d:2a:b5:86:9e:4d:29:f0:6f:9d:f1:31:59:ab: 77:f1:bf:80:61:71:3a:e0:99:a0:d0:43:23:9d:39:31:b4:87: a8:d4:aa:60:84:c7:e5:e5:9e:1b:78:ad:c8:44:3b:2c:18:cb: df:0a:be:0a:59:10:69:b4:c4:eb:aa:bc:88:50:cb:0d:df:d7: d1:15:84:1b:31:99:e7:c8:59:51:10:8a:ac:09:93:df:63:30: 3f:84:b1:0f:00:0c:18:a1:ab:4b:59:94:d4:30:03:a2:3c:4a: fa:11:35:2f:ad:c0:76:74:8e:90:8d:dd:46:e0:ed:3b:44:e4: f5:4e:3d:1f:67:d1:02:9a:27:6a:a4:e3:84:6b:ac:d4:be:1c: 67:73:02:d1:da:f2:81:80:b1:43:90:ce:8f:d1:93:70:82:cc: 5b:d4:d0:d0:61:ed:f5:ad:10:fb:4c:8c:31:88:fa:26:c6:5a: 86:a6:27:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJsUjzGJzObwMbG2wY3fTysu6FvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMDU5WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzYxMmNhYmExMmFiMTBkOTQ4OTY2MTMzNjM4MGE5NGU0 ZjBjYzE5YTliZWE2YWU2MTQ4YmNlNzZjY2RlN2NhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIEpplq4CqNG/49tfrK0AVclcgeGR53SuGtS8zHdFwsRNf c/I2l8W4MkEzNLkA6tMmJAkeijEHUR8dmXIhn25lg9aWuGrecLzbdoknvmOOuuA8 dYeiJ2XfzTLcY5gHu9OSJRFFNHCY+Ql0+sI8n6jd3br6q5xToplmOhl+38GVI0Rp RcH6Ftk0I86AH2wTlQ3CsXrnuWl+sULWUyP5sh8JFqlMqWCLQCEIHWlqY1xRR1ns 9db1nH2WKXdjB/H7hOb0dPmjFBCrDOI435SrDLPXq55PK5hTAEz4JmswwTvlRxSX sGzgkkq550w8jCw+PTP3jXCKMeUWw5/AL4feU1VHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUexNRzDiPGOgc1eV20cn39bsQ6dcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxOTljNTc2LWM3MzEtNGYxMC1hZmRiLWJkY2FmMWRiODJlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARQ8aAwDQYJKoZIhvcNAQELBQADggEBAAZ/M3ux3o/mZN0+7+4IHX+9YR/w J+nuPoavulBNRdy8KSl79I3Rnc3atAMwTYt6nEw3o+fU8Sn0/iTUjzIGFecMIlkz BGv4G/pinvk9KrWGnk0p8G+d8TFZq3fxv4BhcTrgmaDQQyOdOTG0h6jUqmCEx+Xl nht4rchEOywYy98KvgpZEGm0xOuqvIhQyw3f19EVhBsxmefIWVEQiqwJk99jMD+E sQ8ADBihq0tZlNQwA6I8SvoRNS+twHZ0jpCN3Ubg7TtE5PVOPR9n0QKaJ2qk44Rr rNS+HGdzAtHa8oGAsUOQzo/Rk3CCzFvU0NBh7fWtEPtMjDGI+ibGWoamJ80= -----END CERTIFICATE-----Generated at Mon May 5 04:31:56 2025 by rpki-client