$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebaea730-5e58-4690-973d-b99a24f55ff6.roa File: ebaea730-5e58-4690-973d-b99a24f55ff6.roa (raw, json) Hash identifier: c6hOUfZoLzMSWjDktiXBCYzIlR1ODegSylYjfHeFuFw= Subject key identifier: A9:40:E4:DF:10:0D:97:6D:70:B3:FF:B0:9C:B5:5E:2E:D0:6A:03:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 533983BB35F4B75A56122E44A7427449E7559C40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebaea730-5e58-4690-973d-b99a24f55ff6.roa Signing time: Wed 16 Apr 2025 00:00:35 +0000 ROA not before: Wed 16 Apr 2025 00:00:35 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:39:83:bb:35:f4:b7:5a:56:12:2e:44:a7:42:74:49:e7:55:9c:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:35 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=b33b3c7457c10354066cde7649b02a03d5c5a221f6c6ab42c51a3fc81c0b5e0e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2f:50:fd:3c:f8:24:b1:02:5d:e1:20:3e:47: 42:e8:eb:62:fe:2e:f8:46:92:24:7c:93:c6:49:8b: 51:74:73:47:08:69:09:fa:77:fc:27:23:a7:c7:9a: 1f:4b:05:db:94:85:37:22:ba:40:a7:b7:a2:b6:5c: 22:ea:bf:e3:3e:88:09:a5:aa:ee:7e:6c:b8:e0:b1: 09:34:23:7b:86:0a:3a:87:c7:30:f2:73:05:d7:0e: 39:1b:c4:d1:d3:d6:f4:a3:90:62:8e:8c:a7:a6:a8: 5f:5c:3c:c7:de:f2:e9:ba:24:05:33:dc:3d:e7:59: f6:48:2a:97:9a:36:64:83:52:06:4a:54:3f:58:cd: 49:3b:94:ef:c3:9d:f8:50:0b:6a:e1:72:83:6f:23: 85:0d:34:b8:b8:28:f5:72:15:42:ba:aa:18:ca:48: d8:7e:a3:ef:12:49:2b:dc:36:b3:e4:65:7d:9a:07: 3a:13:fd:b8:1a:4e:22:be:1e:1e:01:56:57:94:e3: 71:c2:ec:f2:79:0a:cf:ed:bd:89:d3:57:25:78:53: 80:8f:d0:69:a8:a2:a3:79:4c:bb:7b:79:cc:d2:c2: f0:39:e4:cf:d8:d6:a3:54:be:76:c1:04:78:07:bc: 82:36:06:68:52:87:7f:fe:f2:56:ca:f0:94:72:42: 8d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:40:E4:DF:10:0D:97:6D:70:B3:FF:B0:9C:B5:5E:2E:D0:6A:03:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebaea730-5e58-4690-973d-b99a24f55ff6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:1a:90:da:55:47:46:60:1e:ce:8e:74:c2:0a:62:c0:c1:c6: 3f:a9:6e:72:ec:ce:53:85:5c:66:7a:f8:da:50:7c:1d:5e:87: 3a:0e:48:55:f8:f6:8e:91:64:40:70:84:33:d0:85:42:81:03: 9b:02:26:22:0c:a9:83:7e:aa:68:72:d2:69:47:65:cf:06:43: bf:00:fb:d5:db:d1:d0:91:a7:e7:20:29:e3:99:02:2a:f2:8b: 5d:17:cf:9a:65:86:92:37:ae:c1:67:f7:69:79:c0:25:b3:b5: fd:19:95:30:5c:c7:59:44:8a:02:f9:41:4d:c2:27:3b:66:8b: 84:57:c1:4f:b7:9d:dc:e8:aa:2e:35:8d:8e:11:ac:21:a7:4f: 33:06:d2:82:c7:56:74:af:a6:b8:46:a3:9d:ee:8c:f1:41:d5: 17:5e:1b:6f:39:27:3e:1e:bd:f5:f4:8d:94:6d:19:5f:6d:5b: 13:5c:3d:f8:95:b7:54:68:63:57:54:bd:2a:c0:4b:53:5f:42: 1f:a4:2b:96:37:97:8b:72:72:d6:c4:35:d8:55:58:dd:25:6e: 2f:77:95:cb:f4:53:56:64:fd:ac:f8:9d:e9:af:bb:62:53:08: 6a:44:b0:15:4f:a2:44:93:51:a4:83:9b:15:f2:cb:23:96:82: 2e:d5:2b:d7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUzmDuzX0t1pWEi5Ep0J0SedVnEAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAwMDM1WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzNiM2M3NDU3YzEwMzU0MDY2Y2RlNzY0OWIwMmEwM2Q1 YzVhMjIxZjZjNmFiNDJjNTFhM2ZjODFjMGI1ZTBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOL1D9PPgksQJd4SA+R0Lo62L+LvhGkiR8k8ZJi1F0c0cI aQn6d/wnI6fHmh9LBduUhTciukCnt6K2XCLqv+M+iAmlqu5+bLjgsQk0I3uGCjqH xzDycwXXDjkbxNHT1vSjkGKOjKemqF9cPMfe8um6JAUz3D3nWfZIKpeaNmSDUgZK VD9YzUk7lO/DnfhQC2rhcoNvI4UNNLi4KPVyFUK6qhjKSNh+o+8SSSvcNrPkZX2a BzoT/bgaTiK+Hh4BVleU43HC7PJ5Cs/tvYnTVyV4U4CP0GmooqN5TLt7eczSwvA5 5M/Y1qNUvnbBBHgHvII2BmhSh3/+8lbK8JRyQo1HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqUDk3xANl21ws/+wnLVeLtBqA3YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViYWVhNzMwLTVlNTgtNDY5MC05NzNkLWI5OWEyNGY1NWZmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCC2TANBgkqhkiG9w0BAQsFAAOCAQEAfxqQ2lVHRmAezo50wgpiwMHGP6lu cuzOU4VcZnr42lB8HV6HOg5IVfj2jpFkQHCEM9CFQoEDmwImIgypg36qaHLSaUdl zwZDvwD71dvR0JGn5yAp45kCKvKLXRfPmmWGkjeuwWf3aXnAJbO1/RmVMFzHWUSK AvlBTcInO2aLhFfBT7ed3OiqLjWNjhGsIadPMwbSgsdWdK+muEajne6M8UHVF14b bzknPh699fSNlG0ZX21bE1w9+JW3VGhjV1S9KsBLU19CH6QrljeXi3Jy1sQ12FVY 3SVuL3eVy/RTVmT9rPid6a+7YlMIakSwFU+iRJNRpIObFfLLI5aCLtUr1w== -----END CERTIFICATE-----Generated at Sat May 10 22:16:27 2025 by rpki-client