$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43ece126-f995-47cb-b50e-4dba25e127a8.roa File: 43ece126-f995-47cb-b50e-4dba25e127a8.roa (raw, json) Hash identifier: moCFSyGUuBiCQSuFNJZSeq60gryfbF+14wdZOKZbxDw= Subject key identifier: 85:69:ED:65:28:EE:4D:11:68:3A:4A:C9:F0:EA:1A:8E:D0:80:41:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FCCFF348B4ED4F59F1D2AFEED47D806A737E7CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43ece126-f995-47cb-b50e-4dba25e127a8.roa Signing time: Fri 13 Jun 2025 15:01:06 +0000 ROA not before: Fri 13 Jun 2025 15:01:06 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:cc:ff:34:8b:4e:d4:f5:9f:1d:2a:fe:ed:47:d8:06:a7:37:e7:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:01:06 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=564dbe10894f3b6c8cd13d36870b831c5d110fba17e7be61d9919a8ba152d1b3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:7d:c6:32:08:3e:bf:1f:8f:79:18:45:f6: ac:0a:77:90:03:11:a8:06:a2:49:6c:cc:11:c6:05: c2:f0:78:65:a1:7a:fd:1f:27:18:2d:ce:42:f3:43: ac:60:5c:a7:73:b8:c3:1a:9f:6a:97:40:40:da:36: 66:e1:07:81:71:7e:37:79:36:2a:8c:ed:62:19:ab: 83:e5:aa:9e:d9:a6:31:0a:48:a1:f3:f5:07:45:7a: 62:9b:e1:cd:b5:01:36:00:80:e7:4c:30:f3:58:50: fa:58:0c:56:ae:b9:e8:ea:7a:30:a4:96:d0:a1:6c: 27:a0:63:7c:76:1b:6d:aa:8d:68:72:96:3d:6a:69: 1e:22:e8:b4:6a:76:91:a3:b4:38:9e:39:8a:77:9f: 77:65:5a:73:ff:02:05:1c:21:6c:60:c8:af:e5:55: 03:3c:2c:95:e5:ce:88:c7:1d:e2:f1:e0:85:d2:3c: 60:e0:a5:2d:7f:f2:80:e5:22:89:ec:28:52:53:6e: f4:7d:20:df:1d:60:d9:62:3a:54:5e:54:85:31:7e: 3d:35:31:f0:72:9c:5b:b6:9c:bd:70:ed:23:73:18: dd:68:2e:5d:98:b8:ff:f7:c9:d6:16:b1:7b:38:32: 33:ef:5c:4d:19:7c:23:5d:12:3d:40:4b:fa:48:4c: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:69:ED:65:28:EE:4D:11:68:3A:4A:C9:F0:EA:1A:8E:D0:80:41:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43ece126-f995-47cb-b50e-4dba25e127a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:02:42:75:eb:73:0d:9b:d4:c6:0d:41:38:cf:fa:6f:fc:b9: 1f:f2:2c:ef:f5:cf:69:a5:b5:e7:2f:79:71:ef:b4:f6:5c:2f: 5e:f2:55:36:7b:e7:56:1a:87:3a:b9:f2:51:cf:aa:82:71:c9: 08:c5:35:e3:2b:88:6a:4e:a8:5f:7d:ed:b8:1b:c2:ef:68:b7: ec:eb:a7:25:ac:2c:66:06:b9:a6:a7:c3:b9:6f:59:0d:8d:41: 6e:b2:5a:e8:9e:70:4f:39:84:97:d5:26:91:e8:65:00:80:98: 85:fb:5b:d6:71:12:68:5f:cb:54:f0:0d:90:5b:12:b4:e2:27: ab:e4:8d:5a:74:14:ce:42:c4:95:80:a7:03:dd:da:56:6b:95: 6a:56:e9:2c:8a:65:8f:ab:99:82:ef:92:d3:97:80:ae:1a:af: 02:8d:da:07:9b:e0:7d:74:30:34:ec:24:fc:e5:c8:2a:54:67: f4:b3:a0:15:4c:26:7a:2d:44:06:c0:13:b6:69:1f:05:42:be: 3b:04:b9:0e:9c:b6:dc:e0:2f:4d:88:40:36:46:4d:ef:69:5a: 1e:28:04:2c:7b:fa:96:ed:fd:4c:65:75:0f:6d:7d:b7:33:cc: ea:a2:ae:b4:62:de:41:a9:91:6d:23:b9:46:42:72:03:2c:94: b9:17:75:8a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL8z/NItO1PWfHSr+7UfYBqc358swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUwMTA2WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjRkYmUxMDg5NGYzYjZjOGNkMTNkMzY4NzBiODMxYzVk MTEwZmJhMTdlN2JlNjFkOTkxOWE4YmExNTJkMWIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAn33GMgg+vx+PeRhF9qwKd5ADEagGoklszBHGBcLweGWh ev0fJxgtzkLzQ6xgXKdzuMMan2qXQEDaNmbhB4Fxfjd5NiqM7WIZq4Plqp7ZpjEK SKHz9QdFemKb4c21ATYAgOdMMPNYUPpYDFauuejqejCkltChbCegY3x2G22qjWhy lj1qaR4i6LRqdpGjtDieOYp3n3dlWnP/AgUcIWxgyK/lVQM8LJXlzojHHeLx4IXS PGDgpS1/8oDlIonsKFJTbvR9IN8dYNliOlReVIUxfj01MfBynFu2nL1w7SNzGN1o Ll2YuP/3ydYWsXs4MjPvXE0ZfCNdEj1AS/pITFcTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhWntZSjuTRFoOkrJ8OoajtCAQVIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzZWNlMTI2LWY5OTUtNDdjYi1iNTBlLTRkYmEyNWUxMjdhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBrFDANBgkqhkiG9w0BAQsFAAOCAQEAbgJCdetzDZvUxg1BOM/6b/y5H/Is 7/XPaaW15y95ce+09lwvXvJVNnvnVhqHOrnyUc+qgnHJCMU14yuIak6oX33tuBvC 72i37OunJawsZga5pqfDuW9ZDY1BbrJa6J5wTzmEl9UmkehlAICYhftb1nESaF/L VPANkFsStOInq+SNWnQUzkLElYCnA93aVmuValbpLIplj6uZgu+S05eArhqvAo3a B5vgfXQwNOwk/OXIKlRn9LOgFUwmei1EBsATtmkfBUK+OwS5Dpy23OAvTYhANkZN 72laHigELHv6lu39TGV1D219tzPM6qKutGLeQamRbSO5RkJyAyyUuRd1ig== -----END CERTIFICATE-----Generated at Sat Jun 14 06:29:16 2025 by rpki-client