$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/894f5841-d37d-4595-b79e-b8108bb28136.roa File: 894f5841-d37d-4595-b79e-b8108bb28136.roa (raw, json) Hash identifier: R6FZTcwCzmECHtxfas9lZfC2zlVkTzXAgmtAexJ2xmQ= Subject key identifier: 88:17:47:94:48:84:B8:D7:19:C3:AB:1F:66:04:59:4D:B7:52:61:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F823C485F2BD845504A9243B742601EE412551A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/894f5841-d37d-4595-b79e-b8108bb28136.roa Signing time: Sat 03 May 2025 00:31:49 +0000 ROA not before: Sat 03 May 2025 00:31:49 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 64.187.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:82:3c:48:5f:2b:d8:45:50:4a:92:43:b7:42:60:1e:e4:12:55:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:49 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=7ce26a830255e6e20242e3aa771a05c835d537782d47a811e36a87f57a6daea6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:95:ad:2a:17:82:87:f3:3f:0c:e4:59:ce: 4c:3c:15:40:a1:70:54:e5:c1:dd:af:72:97:5c:59: 79:6b:b3:52:d8:63:4b:50:98:77:22:68:f4:4a:25: aa:cb:ac:dd:a1:3e:9c:8d:33:e2:4b:9b:3d:04:21: 4f:5d:a4:07:02:cd:e3:fa:a2:d5:8a:75:75:36:fb: 69:93:88:3f:dc:98:c7:e5:7b:80:ff:6e:f7:5f:ce: 0d:e9:b7:97:f6:1a:61:dc:b9:05:96:ad:60:7e:44: 4b:4a:c1:3a:bb:84:b8:f9:3c:28:1a:d3:b0:cb:a6: 0f:68:c3:4c:68:98:e3:c4:3a:d7:78:5d:79:1f:81: 85:08:eb:de:e2:95:4e:da:f0:69:fc:62:de:77:44: 58:5e:2e:26:cd:9f:1d:ff:1f:a6:ed:63:a4:ae:0c: 05:cc:4d:fb:59:08:42:71:ca:00:c8:e3:04:a5:8c: 16:dc:0c:05:bc:6f:d9:c0:de:72:9b:fd:b7:7b:7e: 17:d8:41:06:83:ce:e2:12:e4:7c:61:75:f2:6a:4d: 6e:3a:d8:a4:08:05:67:aa:cc:14:bc:b9:44:21:df: b0:7b:85:73:3c:29:43:82:ad:3f:1a:51:9b:38:d1: a8:d9:92:57:22:97:32:08:df:9d:4c:29:ef:d7:5c: eb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:17:47:94:48:84:B8:D7:19:C3:AB:1F:66:04:59:4D:B7:52:61:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/894f5841-d37d-4595-b79e-b8108bb28136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.187.128.0/20 Signature Algorithm: sha256WithRSAEncryption c8:61:de:ae:e4:e6:69:1b:97:47:4f:67:ad:6a:3c:1f:57:2e: 40:29:cb:b2:4a:e1:2b:76:7a:60:75:9a:19:71:68:1e:b4:bb: c1:dd:ea:0a:bb:25:3e:31:a1:a9:88:73:2f:70:71:9f:c4:fc: 9a:3c:d9:b0:7d:4a:00:91:35:e0:66:c0:a1:1f:ee:e5:e8:07: c2:62:5b:2b:36:b8:44:00:17:56:85:48:36:f7:c8:c5:43:17: 3a:c7:09:48:4c:d7:a9:07:5f:b8:95:55:45:d8:f1:5b:d6:6c: 0e:b1:04:ea:08:d1:ef:3f:89:3a:21:e9:ec:f1:09:d8:fc:c0: 4c:5e:c3:9f:0f:82:36:1f:bd:e6:d4:9b:f8:6e:db:ad:3b:26: d9:ab:21:e6:3a:e1:05:2e:ee:69:3b:52:96:37:3a:7e:b9:db: 14:3e:c6:27:1d:60:61:f6:7c:63:9e:f3:da:cc:a1:44:18:b1: dd:c4:d4:c1:1d:e3:9a:67:f3:57:70:61:e3:66:87:ee:18:41: f3:56:98:6e:e8:6b:39:e6:f4:16:41:12:f8:f9:11:ff:ca:72: d5:33:38:88:75:3e:f1:eb:dd:6a:de:c7:0e:9c:9a:cf:ae:be: 3f:dd:bf:e7:b3:61:63:63:fe:8d:0c:5e:f4:be:35:10:c2:08: 50:cb:4f:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf4I8SF8r2EVQSpJDt0JgHuQSVRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTQ5WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2UyNmE4MzAyNTVlNmUyMDI0MmUzYWE3NzFhMDVjODM1 ZDUzNzc4MmQ0N2E4MTFlMzZhODdmNTdhNmRhZWE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCijpWtKheCh/M/DORZzkw8FUChcFTlwd2vcpdcWXlrs1LY Y0tQmHciaPRKJarLrN2hPpyNM+JLmz0EIU9dpAcCzeP6otWKdXU2+2mTiD/cmMfl e4D/bvdfzg3pt5f2GmHcuQWWrWB+REtKwTq7hLj5PCga07DLpg9ow0xomOPEOtd4 XXkfgYUI697ilU7a8Gn8Yt53RFheLibNnx3/H6btY6SuDAXMTftZCEJxygDI4wSl jBbcDAW8b9nA3nKb/bd7fhfYQQaDzuIS5HxhdfJqTW462KQIBWeqzBS8uUQh37B7 hXM8KUOCrT8aUZs40ajZklcilzII351MKe/XXOvnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiBdHlEiEuNcZw6sfZgRZTbdSYdEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5NGY1ODQxLWQzN2QtNDU5NS1iNzllLWI4MTA4YmIyODEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARAu4AwDQYJKoZIhvcNAQELBQADggEBAMhh3q7k5mkbl0dPZ61qPB9XLkAp y7JK4St2emB1mhlxaB60u8Hd6gq7JT4xoamIcy9wcZ/E/Jo82bB9SgCRNeBmwKEf 7uXoB8JiWys2uEQAF1aFSDb3yMVDFzrHCUhM16kHX7iVVUXY8VvWbA6xBOoI0e8/ iToh6ezxCdj8wExew58PgjYfvebUm/hu2607JtmrIeY64QUu7mk7UpY3On652xQ+ xicdYGH2fGOe89rMoUQYsd3E1MEd45pn81dwYeNmh+4YQfNWmG7oaznm9BZBEvj5 Ef/KctUzOIh1PvHr3Wrexw6cms+uvj/dv+ezYWNj/o0MXvS+NRDCCFDLT5A= -----END CERTIFICATE-----Generated at Tue May 13 10:43:56 2025 by rpki-client