$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa File: 84098119-db6f-400e-8b50-d3b7152181be.roa (raw, json) Hash identifier: 0SGyOrKcIQ6+TQBUzzR/327boPzCvdlCyliTFAN43KE= Subject key identifier: E0:6E:CA:7D:CB:5A:0F:BD:77:40:8D:29:94:E2:DC:9B:7D:F2:42:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50FBDC167EBDCB913DFBD0A78114111D3DA070D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa Signing time: Mon 05 May 2025 15:00:54 +0000 ROA not before: Mon 05 May 2025 15:00:54 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 166.108.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:fb:dc:16:7e:bd:cb:91:3d:fb:d0:a7:81:14:11:1d:3d:a0:70:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:00:54 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=f80df5ada0ad329d2a3dbe83623fe940ffa420317c6eeca92bacd476b304b133, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5e:b3:d2:ae:4f:a0:d3:fe:58:01:f0:e5:d5: 11:41:23:92:16:4b:1e:68:b9:84:72:35:ac:07:09: 2e:3a:e0:c3:01:9a:9d:35:01:e7:b0:34:e2:1f:a7: ea:6c:e9:bb:27:b7:b3:28:76:f5:ed:a2:10:bf:1e: d5:68:77:d6:af:37:67:91:74:c4:8a:dc:b4:4b:70: 0e:54:51:8a:91:29:a0:14:be:a4:bb:91:b9:ad:c9: bd:72:0c:05:bc:0f:de:b1:04:4f:8a:ea:f1:bc:f7: 50:79:7e:f1:e9:03:13:b9:a3:4f:be:aa:75:e5:39: ed:1d:0e:08:bc:e8:15:2b:57:34:96:fe:00:2b:d7: d8:dc:38:74:5d:d9:ad:12:f3:5c:fa:53:bb:cb:dd: 20:87:7b:dd:93:74:01:6e:77:67:37:03:fa:6c:5d: b0:7e:aa:74:31:69:90:fe:3a:ed:0b:96:88:56:e3: fc:26:3f:fc:62:49:73:54:05:bb:aa:65:2c:9b:97: 10:4f:c8:a7:66:70:b0:8d:1c:47:68:0b:48:4c:52: ee:1c:a8:95:ab:a8:60:a3:9a:1d:04:77:b1:66:24: 33:83:ec:cf:dc:63:d9:34:e3:47:86:68:cf:c8:8c: 7a:ca:f8:fc:33:c9:80:71:7b:aa:69:78:f8:43:61: ea:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:6E:CA:7D:CB:5A:0F:BD:77:40:8D:29:94:E2:DC:9B:7D:F2:42:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.108.0.0/19 Signature Algorithm: sha256WithRSAEncryption a7:30:9e:2d:64:ba:35:a2:19:e9:7a:5b:47:ee:29:bb:93:94: 7a:97:8a:c0:42:6b:0e:68:0a:2a:97:7a:3a:16:00:fe:ea:a7: 65:52:62:ee:4f:6e:13:58:9b:7e:01:38:cf:0b:b8:2e:9b:57: ee:56:75:14:d3:0f:bc:c2:f8:9c:11:93:8b:e4:68:32:7f:44: 2b:8e:03:40:ce:39:d0:0d:94:f5:84:96:a7:ab:5a:53:a4:1a: 24:26:aa:20:0f:5c:45:fd:e5:d3:c8:09:81:39:8a:9e:b5:70: 38:81:f1:41:2d:aa:32:2b:71:68:d6:84:50:a9:6e:03:1e:cb: 3f:de:e7:bc:51:83:b6:81:77:ff:f8:b0:2a:1d:b7:3d:d5:9c: 64:ce:36:e5:c4:99:dc:a0:8a:47:2b:7d:b3:bd:49:cd:2b:d1: 49:c0:50:03:ad:6f:72:e5:ae:59:94:37:0a:73:2d:64:1f:62: fd:10:41:49:9d:cd:b6:78:ad:c4:82:54:6c:3d:fa:9b:3f:dd: f5:ba:d3:7a:49:f0:08:d8:af:c1:ad:32:58:9b:5c:80:d3:83: 66:2e:18:de:28:06:17:ad:41:b7:55:b7:55:f1:20:59:d9:25: 38:94:b4:a9:a0:79:51:20:a6:8e:f5:bb:f4:88:ee:a6:8f:16: 95:e3:9b:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUPvcFn69y5E9+9CngRQRHT2gcNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUwMDU0WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODBkZjVhZGEwYWQzMjlkMmEzZGJlODM2MjNmZTk0MGZm YTQyMDMxN2M2ZWVjYTkyYmFjZDQ3NmIzMDRiMTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgXrPSrk+g0/5YAfDl1RFBI5IWSx5ouYRyNawHCS464MMB mp01AeewNOIfp+ps6bsnt7ModvXtohC/HtVod9avN2eRdMSK3LRLcA5UUYqRKaAU vqS7kbmtyb1yDAW8D96xBE+K6vG891B5fvHpAxO5o0++qnXlOe0dDgi86BUrVzSW /gAr19jcOHRd2a0S81z6U7vL3SCHe92TdAFud2c3A/psXbB+qnQxaZD+Ou0LlohW 4/wmP/xiSXNUBbuqZSyblxBPyKdmcLCNHEdoC0hMUu4cqJWrqGCjmh0Ed7FmJDOD 7M/cY9k040eGaM/IjHrK+PwzyYBxe6ppePhDYeoLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4G7KfctaD713QI0plOLcm33yQs0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0MDk4MTE5LWRiNmYtNDAwZS04YjUwLWQzYjcxNTIxODFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWmbAAwDQYJKoZIhvcNAQELBQADggEBAKcwni1kujWiGel6W0fuKbuTlHqX isBCaw5oCiqXejoWAP7qp2VSYu5PbhNYm34BOM8LuC6bV+5WdRTTD7zC+JwRk4vk aDJ/RCuOA0DOOdANlPWElqerWlOkGiQmqiAPXEX95dPICYE5ip61cDiB8UEtqjIr cWjWhFCpbgMeyz/e57xRg7aBd//4sCodtz3VnGTONuXEmdygikcrfbO9Sc0r0UnA UAOtb3LlrlmUNwpzLWQfYv0QQUmdzbZ4rcSCVGw9+ps/3fW603pJ8AjYr8GtMlib XIDTg2YuGN4oBhetQbdVt1XxIFnZJTiUtKmgeVEgpo71u/SI7qaPFpXjm50= -----END CERTIFICATE-----Generated at Sun May 11 15:18:47 2025 by rpki-client