$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa File: 4c4e920b-ec71-48a2-8a49-a9e978539728.roa (raw, json) Hash identifier: g/5CgoqcOwHCoc6hxOyXJzB9SNvwKWGMc/DOO9rkk3g= Subject key identifier: 97:38:DC:84:13:8B:46:84:A0:CA:E0:2E:24:DF:89:69:1E:A3:99:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A3B763449D4E39B82CC29170DAC144EE6FDFF46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa Signing time: Wed 28 May 2025 00:20:23 +0000 ROA not before: Wed 28 May 2025 00:20:23 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.136.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:3b:76:34:49:d4:e3:9b:82:cc:29:17:0d:ac:14:4e:e6:fd:ff:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:20:23 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=be56c2ddd49f58627c1da9d2fd7b98785a9291478bb65cb340eb061c4f336ec9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:45:d1:b0:c7:09:49:a2:cd:de:d1:26:75:f5: 74:d8:2e:63:5b:85:9d:ec:32:8c:7e:db:0b:29:cd: 76:a7:bb:13:41:47:d2:4b:2d:1f:bc:6c:3e:9c:c4: 9b:00:7b:e2:37:51:2c:ee:8b:8c:1f:af:84:5e:cd: 00:64:fc:89:a4:cc:c3:c5:77:85:5a:0f:c6:0f:42: 31:91:2e:13:25:24:7d:a6:e8:d3:0d:f9:e9:9c:2f: 86:23:6f:ec:88:38:ed:ea:a0:18:ad:3d:49:0d:7d: 17:88:d9:82:6e:1d:33:84:13:b2:1e:94:a5:41:87: be:e4:da:32:90:34:22:89:9c:24:ac:77:a5:54:ec: ad:79:67:bd:81:5f:51:98:3e:ba:26:90:39:ca:81: 45:cf:67:9a:82:10:6a:cf:01:6a:7b:35:23:19:1b: ef:42:69:6d:19:ed:52:fe:45:fd:8e:44:4d:b8:ff: 6b:6d:cb:46:b1:bd:30:a7:a2:3a:ca:39:60:02:31: 64:e8:8f:b2:82:eb:e2:f7:d2:74:28:ae:a4:12:eb: 7b:17:57:f5:29:a4:43:cf:9d:bb:50:40:b9:48:5d: 3d:a8:aa:6f:78:ac:e3:fe:4e:5e:5f:13:25:03:19: c5:00:c7:90:3f:81:5f:31:be:99:2c:54:c4:9e:1c: 98:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:38:DC:84:13:8B:46:84:A0:CA:E0:2E:24:DF:89:69:1E:A3:99:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 24:c9:f4:3b:b1:e3:41:ae:bb:ac:df:4c:0f:c3:13:29:84:e1: 53:ea:4b:13:09:bf:dc:98:7c:c0:2e:29:2e:22:18:8f:e2:6d: 40:f2:fc:78:11:4d:40:bf:d9:cd:91:9c:52:e0:1c:4d:f8:e3: 16:24:91:f0:fb:b7:f4:64:64:5c:89:f8:f5:70:e0:ca:4b:fe: 9d:0e:d9:eb:63:fe:8d:92:7e:2e:2c:5b:a2:27:69:fb:55:eb: 0d:fd:aa:b9:30:38:3e:58:fe:b6:cd:33:a1:dd:6a:2b:8b:f0: 68:8f:63:27:f2:82:99:85:e6:e4:88:1f:b7:d6:90:f4:19:b2: 63:e8:3a:95:ec:d9:3a:af:15:fb:b9:d2:4a:5b:b1:09:72:e3: 01:fe:0d:d1:9e:8c:ec:f9:77:af:f4:43:89:88:73:41:bc:3b: 43:62:ea:fb:1a:7a:4c:71:6a:8a:00:ac:84:cc:19:c8:4f:8f: ba:ad:64:e3:03:05:ee:1e:cc:15:fe:66:3f:a7:82:31:e0:6f: 5a:0c:ae:e0:72:e3:56:8c:33:a0:ad:52:3c:4a:29:a0:fc:72: 1f:e0:56:6c:cc:6b:80:cd:e5:e9:52:e8:4e:2a:a6:43:55:f3: 2f:75:7b:77:3f:a5:cf:80:be:86:79:49:f9:80:66:8f:54:f0: c9:2e:19:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUejt2NEnU45uCzCkXDawUTub9/0YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMDIzWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTU2YzJkZGQ0OWY1ODYyN2MxZGE5ZDJmZDdiOTg3ODVh OTI5MTQ3OGJiNjVjYjM0MGViMDYxYzRmMzM2ZWM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRRdGwxwlJos3e0SZ19XTYLmNbhZ3sMox+2wspzXanuxNB R9JLLR+8bD6cxJsAe+I3USzui4wfr4RezQBk/ImkzMPFd4VaD8YPQjGRLhMlJH2m 6NMN+emcL4Yjb+yIOO3qoBitPUkNfReI2YJuHTOEE7IelKVBh77k2jKQNCKJnCSs d6VU7K15Z72BX1GYPromkDnKgUXPZ5qCEGrPAWp7NSMZG+9CaW0Z7VL+Rf2ORE24 /2tty0axvTCnojrKOWACMWToj7KC6+L30nQorqQS63sXV/UppEPPnbtQQLlIXT2o qm94rOP+Tl5fEyUDGcUAx5A/gV8xvpksVMSeHJgZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlzjchBOLRoSgyuAuJN+JaR6jmRUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjNGU5MjBiLWVjNzEtNDhhMi04YTQ5LWE5ZTk3ODUzOTcyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2iDANBgkqhkiG9w0BAQsFAAOCAQEAJMn0O7HjQa67rN9MD8MTKYThU+pL Ewm/3Jh8wC4pLiIYj+JtQPL8eBFNQL/ZzZGcUuAcTfjjFiSR8Pu39GRkXIn49XDg ykv+nQ7Z62P+jZJ+Lixboidp+1XrDf2quTA4Plj+ts0zod1qK4vwaI9jJ/KCmYXm 5Igft9aQ9BmyY+g6lezZOq8V+7nSSluxCXLjAf4N0Z6M7Pl3r/RDiYhzQbw7Q2Lq +xp6THFqigCshMwZyE+Puq1k4wMF7h7MFf5mP6eCMeBvWgyu4HLjVowzoK1SPEop oPxyH+BWbMxrgM3l6VLoTiqmQ1XzL3V7dz+lz4C+hnlJ+YBmj1TwyS4Z4g== -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:31 2025 by rpki-client