$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa File: 9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa (raw, json) Hash identifier: EgQ+FYRBk/NMPEBdlylPyBZkdtwIbD1Bcj8ocMCerjk= Subject key identifier: D7:4E:93:B2:A4:1B:AE:63:1E:82:43:1E:3F:BD:2C:7E:1D:E8:A8:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2471076BDAD022E57F987C984646DA213E74D31C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa Signing time: Mon 12 May 2025 15:30:13 +0000 ROA not before: Mon 12 May 2025 15:30:13 +0000 ROA not after: Mon 16 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:71:07:6b:da:d0:22:e5:7f:98:7c:98:46:46:da:21:3e:74:d3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 15:30:13 2025 GMT Not After : Jun 16 23:59:59 2025 GMT Subject: serialNumber=fd2282031132e64e1211d8587342efd48ab6890f384310addc7660c6b57790c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ae:f1:ea:e6:86:ca:f6:d0:48:39:b2:3c:b3: 04:3d:3c:8c:40:fd:ec:a0:b6:6e:80:50:ba:78:7f: 06:cd:ad:b0:12:9a:ba:9f:f7:d2:39:40:0e:d6:59: 1d:e1:1d:63:09:1a:28:35:49:67:63:a7:56:38:1a: 6d:1b:32:1c:96:ec:1a:cb:7f:b4:3f:1a:c3:05:6e: f0:5d:d9:4e:53:a3:af:eb:be:dc:0a:d2:fc:8c:77: 4c:f3:6e:88:c7:47:eb:5a:34:e3:a8:be:31:d8:8b: d3:e1:9c:74:0a:d2:ef:24:7c:d9:2a:4f:b7:50:1e: c7:e9:f6:7c:ad:7b:e1:d6:d6:4c:13:11:3e:71:49: b7:c3:ea:f9:42:d1:cb:1a:50:f1:83:f9:b3:8f:8f: ac:87:b4:bb:3c:1d:99:83:7a:08:a0:d4:fa:85:08: 7e:4e:f0:99:0d:c9:c9:d2:e2:69:4b:d1:f4:7f:84: 6f:c8:49:38:cb:ec:a8:b3:a3:2d:f6:47:98:2a:70: 12:48:97:f8:bc:73:34:77:10:e0:25:96:10:74:9a: 58:6f:39:a7:41:aa:cd:e4:45:4a:1e:ec:6b:fa:44: b4:a0:72:bf:95:f9:e1:4b:9d:f7:88:e1:5f:59:d4: 6c:f3:e8:7a:31:e0:b1:26:64:b2:26:ce:86:20:24: 97:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4E:93:B2:A4:1B:AE:63:1E:82:43:1E:3F:BD:2C:7E:1D:E8:A8:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.61.0/24 Signature Algorithm: sha256WithRSAEncryption 19:a4:7b:42:d8:69:57:d8:9d:66:18:af:f0:76:8f:a5:db:61: 39:3f:f7:01:18:e0:6b:be:5f:ea:f0:02:9d:85:a5:d3:2c:4e: 6e:6d:1d:7a:54:d0:fe:34:48:3b:3b:cd:b2:53:fd:80:98:dc: 5c:23:5a:16:a2:ca:30:a1:fd:ce:ee:96:c6:2a:51:25:4c:b8: 0d:1f:2f:a4:04:33:42:52:4e:3e:f3:4d:50:02:fc:9f:c9:ab: f7:5a:a4:f1:c8:1f:80:bf:a5:8e:04:a3:59:a9:b4:cc:f3:9d: 43:f4:81:66:bb:47:d9:6a:48:d1:28:ed:f9:f6:4d:40:55:99: 85:a6:61:67:41:62:01:ed:52:05:63:4d:87:8b:af:c4:45:bc: 89:85:8d:d1:51:06:23:b9:00:f5:95:c8:23:f2:d2:8a:f9:4b: f2:5c:ab:b7:5c:99:98:da:6b:1a:5b:47:01:5d:74:94:f3:da: da:a4:52:3c:db:b5:90:14:70:81:0d:e8:38:da:92:94:d6:27: b4:5f:97:79:a8:9a:91:16:ed:1b:55:cc:e4:38:ce:61:cb:93: 34:32:f4:88:bd:98:30:93:33:f7:e1:0e:94:e1:ff:09:19:c1: ad:09:d2:ca:17:65:de:f7:f9:5c:5c:a0:0a:0c:cb:7a:ca:9d: 2f:18:a3:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJHEHa9rQIuV/mHyYRkbaIT500xwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEyMTUzMDEzWhcNMjUwNjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDIyODIwMzExMzJlNjRlMTIxMWQ4NTg3MzQyZWZkNDhh YjY4OTBmMzg0MzEwYWRkYzc2NjBjNmI1Nzc5MGMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbrvHq5obK9tBIObI8swQ9PIxA/eygtm6AULp4fwbNrbAS mrqf99I5QA7WWR3hHWMJGig1SWdjp1Y4Gm0bMhyW7BrLf7Q/GsMFbvBd2U5To6/r vtwK0vyMd0zzbojHR+taNOOovjHYi9PhnHQK0u8kfNkqT7dQHsfp9nyte+HW1kwT ET5xSbfD6vlC0csaUPGD+bOPj6yHtLs8HZmDegig1PqFCH5O8JkNycnS4mlL0fR/ hG/ISTjL7Kizoy32R5gqcBJIl/i8czR3EOAllhB0mlhvOadBqs3kRUoe7Gv6RLSg cr+V+eFLnfeI4V9Z1Gzz6Hox4LEmZLImzoYgJJcXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU106TsqQbrmMegkMeP70sfh3oqB4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhY2ExYWY1LTcwYWQtNDZmOC05NDM1LTdhMzVhOTdjZWYxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODD0wDQYJKoZIhvcNAQELBQADggEBABmke0LYaVfYnWYYr/B2j6XbYTk/ 9wEY4Gu+X+rwAp2FpdMsTm5tHXpU0P40SDs7zbJT/YCY3FwjWhaiyjCh/c7ulsYq USVMuA0fL6QEM0JSTj7zTVAC/J/Jq/dapPHIH4C/pY4Eo1mptMzznUP0gWa7R9lq SNEo7fn2TUBVmYWmYWdBYgHtUgVjTYeLr8RFvImFjdFRBiO5APWVyCPy0or5S/Jc q7dcmZjaaxpbRwFddJTz2tqkUjzbtZAUcIEN6DjakpTWJ7Rfl3mompEW7RtVzOQ4 zmHLkzQy9Ii9mDCTM/fhDpTh/wkZwa0J0soXZd73+VxcoAoMy3rKnS8Yo9s= -----END CERTIFICATE-----Generated at Tue May 13 10:34:47 2025 by rpki-client