$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa File: cb56cb92-b2af-486c-8e14-550871fce8cf.roa (raw, json) Hash identifier: 0IoGXLR6f1K+Z5QMNTNGzf0gNiIGTCNjwQORT9ZfOuk= Subject key identifier: F1:CD:68:F1:23:3F:22:5F:8E:7F:28:68:0C:D9:FF:FE:B0:EA:1F:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EB3FA492FAFF7041C1113C9132C7D3CD6E34D02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa Signing time: Tue 29 Apr 2025 00:21:48 +0000 ROA not before: Tue 29 Apr 2025 00:21:48 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.131.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b3:fa:49:2f:af:f7:04:1c:11:13:c9:13:2c:7d:3c:d6:e3:4d:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:48 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=eb79dc731e44727408dc4c8af0f9dc6596a19a7f51806b43a99df1bbb9be1fbd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2b:9f:82:73:32:da:50:c7:c1:34:b0:59:1d: 81:50:94:18:e0:0a:a1:95:7f:4c:91:c8:40:b2:80: e5:ee:c3:c8:cc:88:28:a7:7b:4a:61:1f:a9:2e:4b: f6:92:33:e8:dd:e9:7b:eb:de:2d:df:4c:a4:bd:0b: 8f:60:b3:6e:62:e4:4b:2a:3d:4f:62:e5:d3:29:f1: 1d:de:ce:eb:c6:2a:5c:6c:e8:83:4c:f3:a4:14:ba: dd:1a:48:00:76:25:75:85:24:8c:51:bc:9a:e7:b7: 2a:e9:57:f2:ae:83:47:b7:69:8e:a5:76:b2:ad:3c: 3c:22:eb:11:53:e1:82:9c:35:67:db:8e:4c:8a:03: b4:91:6a:a7:4f:2d:9e:a9:06:f9:e6:25:2d:d2:9e: 4a:57:76:9d:b3:49:fc:03:37:ad:de:11:ce:e4:3d: 54:57:f8:85:fa:4a:db:36:4e:04:45:a9:91:2c:02: 80:c2:bb:f5:bb:da:06:de:38:66:77:00:39:72:92: bd:10:c2:a3:3e:4f:d9:84:bc:45:10:53:b0:91:5a: 0a:ae:ce:98:f5:3a:bb:72:81:46:41:9b:6b:1a:54: 74:1c:8b:9d:48:c2:b4:fd:67:80:06:41:8a:d0:9f: 98:2c:0e:76:0c:9c:24:c9:1f:63:0c:01:d1:83:28: 4c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CD:68:F1:23:3F:22:5F:8E:7F:28:68:0C:D9:FF:FE:B0:EA:1F:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.131.192.0/18 Signature Algorithm: sha256WithRSAEncryption 39:ac:a5:5c:3d:24:b7:56:85:d6:6b:80:8c:16:d3:6e:94:81: d1:cf:c0:dd:e0:e1:79:c3:ae:89:33:b1:16:7c:ab:c9:bb:f7: cd:99:d5:93:f0:bb:2f:64:5c:51:bc:a9:1e:9e:fe:e2:79:e6: 87:b7:fc:e2:94:97:21:5e:9c:67:b9:ac:d2:c5:1e:e5:69:21: c8:0e:6f:3c:38:cd:07:ec:00:dd:4a:fb:2c:4f:a4:86:fe:d4: 64:e7:51:fe:81:30:9e:4f:02:12:9d:2a:a6:a0:84:7e:de:f7: 2c:3f:15:27:56:94:54:bc:b3:7e:e4:34:f8:8b:b0:7f:54:55: 63:d5:4b:b0:0c:7c:8b:7f:02:d7:e6:a6:1f:40:a6:83:83:85: 5a:f3:f8:76:eb:5e:a8:1e:18:18:15:6e:d2:83:fd:4d:dc:cd: c8:44:89:d5:96:5e:f6:01:13:86:25:29:9e:ca:a7:7f:6f:24: aa:88:52:2f:43:16:bd:ad:a3:1a:36:29:66:83:43:aa:83:0e: c9:d7:11:4b:9c:10:25:6f:f9:8d:82:e8:47:fb:4c:63:2b:01: 19:06:07:96:6b:06:d8:4f:27:62:e2:2b:ec:69:58:f1:21:55: 5a:c2:d4:85:ae:f4:3e:1d:ed:f1:82:e4:e3:0e:6c:84:9f:02: 40:01:92:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTrP6SS+v9wQcERPJEyx9PNbjTQIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMTQ4WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjc5ZGM3MzFlNDQ3Mjc0MDhkYzRjOGFmMGY5ZGM2NTk2 YTE5YTdmNTE4MDZiNDNhOTlkZjFiYmI5YmUxZmJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjK5+CczLaUMfBNLBZHYFQlBjgCqGVf0yRyECygOXuw8jM iCine0phH6kuS/aSM+jd6Xvr3i3fTKS9C49gs25i5EsqPU9i5dMp8R3ezuvGKlxs 6INM86QUut0aSAB2JXWFJIxRvJrntyrpV/Kug0e3aY6ldrKtPDwi6xFT4YKcNWfb jkyKA7SRaqdPLZ6pBvnmJS3SnkpXdp2zSfwDN63eEc7kPVRX+IX6Sts2TgRFqZEs AoDCu/W72gbeOGZ3ADlykr0QwqM+T9mEvEUQU7CRWgquzpj1OrtygUZBm2saVHQc i51IwrT9Z4AGQYrQn5gsDnYMnCTJH2MMAdGDKEzHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8c1o8SM/Il+OfyhoDNn//rDqH2MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNTZjYjkyLWIyYWYtNDg2Yy04ZTE0LTU1MDg3MWZjZThjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZGg8AwDQYJKoZIhvcNAQELBQADggEBADmspVw9JLdWhdZrgIwW026UgdHP wN3g4XnDrokzsRZ8q8m7982Z1ZPwuy9kXFG8qR6e/uJ55oe3/OKUlyFenGe5rNLF HuVpIcgObzw4zQfsAN1K+yxPpIb+1GTnUf6BMJ5PAhKdKqaghH7e9yw/FSdWlFS8 s37kNPiLsH9UVWPVS7AMfIt/Atfmph9ApoODhVrz+HbrXqgeGBgVbtKD/U3czchE idWWXvYBE4YlKZ7Kp39vJKqIUi9DFr2toxo2KWaDQ6qDDsnXEUucECVv+Y2C6Ef7 TGMrARkGB5ZrBthPJ2LiK+xpWPEhVVrC1IWu9D4d7fGC5OMObISfAkABktE= -----END CERTIFICATE-----Generated at Sun May 11 09:12:36 2025 by rpki-client