$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa File: 8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa (raw, json) Hash identifier: ULcC45CFOi7paXR/WEhaEaLNmdmf+9y93z3qIBUfzTo= Subject key identifier: D0:6D:75:EF:7B:D9:73:2C:73:CB:DA:B6:94:47:78:30:EC:AE:AA:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 478D50AB7CE15F009BE6A07491F3D5EC804C83FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa Signing time: Wed 23 Apr 2025 00:51:33 +0000 ROA not before: Wed 23 Apr 2025 00:51:33 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8d:50:ab:7c:e1:5f:00:9b:e6:a0:74:91:f3:d5:ec:80:4c:83:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:51:33 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=95bb8883dcc137e3746916f88b827f615533182a05d8834d29142bc29e91aa18, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5b:c6:af:bd:fb:ba:48:f9:20:cd:af:af:e4: 6c:da:e6:2a:49:92:0c:e9:7f:15:d7:79:a9:94:87: 35:3d:1b:e3:75:1a:42:c1:1b:08:e2:10:23:af:cd: d1:4b:df:bc:b7:67:37:dc:10:dc:da:79:36:ee:f7: d3:95:6b:79:c1:6d:99:d3:17:23:79:b4:14:6b:c5: 1a:97:04:3f:5c:95:d6:bf:e4:c7:b3:9d:94:9d:bc: 01:3e:14:1e:73:05:c2:38:35:41:12:47:8a:77:c7: b0:31:34:79:77:52:79:41:d8:bf:77:72:08:b0:4e: f4:16:38:e6:f6:3c:a2:4c:88:8b:ba:39:cb:ca:b8: 37:ab:28:e5:dd:50:66:58:dd:49:67:61:9f:8b:c3: 3c:ad:30:7d:ff:e4:d6:11:b1:d1:8b:da:a3:5a:c0: 60:5c:f9:a8:f9:38:3d:fd:87:af:9d:0b:dc:94:c9: 2b:6f:d9:f9:5b:a2:84:dd:23:20:f6:c2:d0:80:f8: 8c:f4:69:92:39:bf:a4:2c:c6:87:86:04:28:0a:e5: 0a:71:f0:86:9a:db:bc:9b:62:1d:4a:e8:ab:a5:24: b8:e4:a7:36:ba:12:51:ce:63:27:02:d1:09:51:a3: 75:1a:6a:be:f6:e9:c9:1e:5b:1b:bd:bf:3d:68:72: 0b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6D:75:EF:7B:D9:73:2C:73:CB:DA:B6:94:47:78:30:EC:AE:AA:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d9d5bd7-2808-4dcf-96a8-29fc3a603307.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.44.0/22 Signature Algorithm: sha256WithRSAEncryption c7:6d:bb:d0:ad:44:d2:86:31:f6:76:2d:73:b9:1e:29:0a:d3: 95:36:31:81:25:2b:f9:63:05:13:8f:47:48:a1:c4:4b:c7:bb: 42:fd:4d:70:62:bd:27:1e:01:26:3a:a5:8c:d2:4d:44:94:66: ad:cc:33:b4:56:72:ae:b7:45:00:ea:51:e6:7e:74:fe:ef:db: 9b:da:7d:33:a3:44:55:bf:6a:d7:45:21:ff:87:f6:ce:e7:77: 4f:c7:72:77:88:e8:c6:4b:01:04:01:7d:89:ae:ab:ed:7c:39: b9:e4:6e:0a:0e:e0:0a:b4:1d:6b:83:f0:ad:45:bc:53:c9:ba: 67:eb:9b:88:59:49:cb:52:f8:80:95:91:42:ff:fd:b5:88:b9: 86:33:a7:13:72:72:8e:50:2d:57:8c:e9:c0:78:44:cb:23:01: 3b:9b:4a:e8:9f:6a:99:2f:51:b5:09:47:21:9b:b7:53:e3:7c: ef:ef:28:8c:92:32:d2:7e:28:42:e4:a5:5e:01:fe:2c:dd:1c: dd:45:b0:ed:f9:6c:f3:57:46:48:dc:a4:e1:64:b4:95:58:3b: 8f:f1:4b:8d:4c:87:a8:21:0a:7a:3f:23:b7:83:cc:19:fd:4d: fb:9e:ad:24:36:79:6a:36:c3:bf:ce:e3:0f:31:ab:6c:4a:ea: b7:27:7a:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR41Qq3zhXwCb5qB0kfPV7IBMg/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA1MTMzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWJiODg4M2RjYzEzN2UzNzQ2OTE2Zjg4YjgyN2Y2MTU1 MzMxODJhMDVkODgzNGQyOTE0MmJjMjllOTFhYTE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnW8avvfu6SPkgza+v5Gza5ipJkgzpfxXXeamUhzU9G+N1 GkLBGwjiECOvzdFL37y3ZzfcENzaeTbu99OVa3nBbZnTFyN5tBRrxRqXBD9clda/ 5MeznZSdvAE+FB5zBcI4NUESR4p3x7AxNHl3UnlB2L93cgiwTvQWOOb2PKJMiIu6 OcvKuDerKOXdUGZY3UlnYZ+LwzytMH3/5NYRsdGL2qNawGBc+aj5OD39h6+dC9yU yStv2flbooTdIyD2wtCA+Iz0aZI5v6QsxoeGBCgK5Qpx8Iaa27ybYh1K6KulJLjk pza6ElHOYycC0QlRo3Uaar726ckeWxu9vz1ocgsbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0G1173vZcyxzy9q2lEd4MOyuqhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkOWQ1YmQ3LTI4MDgtNGRjZi05NmE4LTI5ZmMzYTYwMzMwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKugSwwDQYJKoZIhvcNAQELBQADggEBAMdtu9CtRNKGMfZ2LXO5HikK05U2 MYElK/ljBROPR0ihxEvHu0L9TXBivSceASY6pYzSTUSUZq3MM7RWcq63RQDqUeZ+ dP7v25vafTOjRFW/atdFIf+H9s7nd0/HcneI6MZLAQQBfYmuq+18ObnkbgoO4Aq0 HWuD8K1FvFPJumfrm4hZSctS+ICVkUL//bWIuYYzpxNyco5QLVeM6cB4RMsjATub SuifapkvUbUJRyGbt1PjfO/vKIySMtJ+KELkpV4B/izdHN1FsO35bPNXRkjcpOFk tJVYO4/xS41Mh6ghCno/I7eDzBn9TfuerSQ2eWo2w7/O4w8xq2xK6rcnevk= -----END CERTIFICATE-----Generated at Sun May 11 10:25:19 2025 by rpki-client