$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa File: 4f0b048d-2305-43d3-a474-0e095ab7e09b.roa (raw, json) Hash identifier: QqhMqcPq7FSIXfjhQT/ujuJEM5nHcNTa+JouL+OXk7s= Subject key identifier: BD:FB:19:15:C4:57:C4:CE:B7:09:88:0B:3D:D8:2E:09:09:DF:AF:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21958952B4C38B7A35E65F24E67726D4D023825B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa Signing time: Wed 04 Jun 2025 00:21:17 +0000 ROA not before: Wed 04 Jun 2025 00:21:17 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.53.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:95:89:52:b4:c3:8b:7a:35:e6:5f:24:e6:77:26:d4:d0:23:82:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:21:17 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=ae9d393937cb0e46069a233747c64ece7750a4a1acae1397a580b05ed12653e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6d:ed:c5:94:cc:6b:62:25:49:08:62:65:26: a4:1c:1c:6c:6f:c4:76:c1:ab:b3:df:59:da:6d:47: 97:99:01:69:6d:da:71:cb:67:b2:5c:22:5d:ab:79: c3:24:a6:aa:a8:82:e0:9c:cf:51:88:b6:d4:27:4e: 96:4d:8f:73:91:9a:b1:91:a9:6c:a9:70:0a:92:c4: cf:ab:64:07:39:fe:bd:37:49:65:02:c4:af:b8:e1: 45:2e:7b:f1:36:4b:53:74:a8:fe:55:e3:ea:99:48: 6a:c3:5c:8e:fc:d4:0f:bf:60:d9:46:c5:1c:d9:92: 79:68:ed:a7:9a:62:bd:44:13:14:1d:41:a5:29:1b: c5:8d:f5:7c:c6:58:fe:50:76:48:64:1e:22:b2:31: 89:80:8a:ec:06:b8:50:9b:aa:3d:b9:bb:a2:f8:c9: e4:78:ba:7e:ae:14:06:64:c4:81:a1:65:ac:6d:65: 9f:9d:ee:73:fc:20:f9:2b:af:43:ab:02:27:53:9d: d6:55:45:71:73:7d:74:eb:c1:63:28:bb:2b:df:68: 2b:4f:5d:97:c7:58:d2:a8:8d:81:66:c4:59:df:66: 8c:a1:d5:bf:71:6b:df:39:99:a9:6c:45:2b:2e:18: e8:4b:c1:e5:a7:68:70:c9:09:be:1f:db:b9:a7:1b: b1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FB:19:15:C4:57:C4:CE:B7:09:88:0B:3D:D8:2E:09:09:DF:AF:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.53.192.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:d5:18:7f:a6:5c:20:a0:ae:dd:a9:bf:ad:0b:2b:33:f0:5e: ac:ee:16:43:0c:e1:7f:95:88:60:f9:20:57:a9:c9:20:58:c1: 2d:49:03:3c:b8:c1:3e:84:84:01:1b:6d:70:e9:42:60:de:ba: a5:3b:3a:4d:db:b4:49:63:8f:a1:ca:37:96:96:71:40:7a:ff: f1:6e:bc:25:36:73:1b:05:ac:99:8e:d3:11:5f:e0:76:72:ad: 54:5e:fe:ba:4f:ee:74:bb:f5:74:a5:fa:8c:c2:25:b1:e9:e2: 14:49:5e:2c:7b:61:1e:1c:9b:74:83:fa:c9:d7:03:6f:6b:7b: 30:a8:59:17:36:eb:15:19:4d:00:ea:ea:e1:4e:3e:da:5b:0f: d6:77:9d:e1:da:8e:fb:27:fa:66:39:20:4f:df:81:f1:ac:6c: 57:ee:79:c0:82:c9:2d:c4:c9:aa:77:2a:b2:3a:d3:d4:ef:ff: 14:ec:da:a5:e1:b5:39:75:02:62:87:58:af:3e:ca:24:99:7b: 30:dc:4b:23:90:59:59:29:90:41:52:ec:37:74:91:ca:6b:54: 9f:30:ea:97:e9:9c:d3:4b:96:59:7c:4f:0c:fb:49:25:51:73: 05:b5:2b:01:6a:b0:d5:6b:2b:7a:1b:6d:bf:bf:60:86:67:1a: 5b:ae:69:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIZWJUrTDi3o15l8k5ncm1NAjglswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAyMTE3WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTlkMzkzOTM3Y2IwZTQ2MDY5YTIzMzc0N2M2NGVjZTc3 NTBhNGExYWNhZTEzOTdhNTgwYjA1ZWQxMjY1M2UxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCybe3FlMxrYiVJCGJlJqQcHGxvxHbBq7PfWdptR5eZAWlt 2nHLZ7JcIl2recMkpqqoguCcz1GIttQnTpZNj3ORmrGRqWypcAqSxM+rZAc5/r03 SWUCxK+44UUue/E2S1N0qP5V4+qZSGrDXI781A+/YNlGxRzZknlo7aeaYr1EExQd QaUpG8WN9XzGWP5QdkhkHiKyMYmAiuwGuFCbqj25u6L4yeR4un6uFAZkxIGhZaxt ZZ+d7nP8IPkrr0OrAidTndZVRXFzfXTrwWMouyvfaCtPXZfHWNKojYFmxFnfZoyh 1b9xa985malsRSsuGOhLweWnaHDJCb4f27mnG7GVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvfsZFcRXxM63CYgLPdguCQnfr38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMGIwNDhkLTIzMDUtNDNkMy1hNDc0LTBlMDk1YWI3ZTA5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFNcAwDQYJKoZIhvcNAQELBQADggEBAC7VGH+mXCCgrt2pv60LKzPwXqzu FkMM4X+ViGD5IFepySBYwS1JAzy4wT6EhAEbbXDpQmDeuqU7Ok3btEljj6HKN5aW cUB6//FuvCU2cxsFrJmO0xFf4HZyrVRe/rpP7nS79XSl+ozCJbHp4hRJXix7YR4c m3SD+snXA29rezCoWRc26xUZTQDq6uFOPtpbD9Z3neHajvsn+mY5IE/fgfGsbFfu ecCCyS3Eyap3KrI609Tv/xTs2qXhtTl1AmKHWK8+yiSZezDcSyOQWVkpkEFS7Dd0 kcprVJ8w6pfpnNNLlll8Twz7SSVRcwW1KwFqsNVrK3obbb+/YIZnGluuaUk= -----END CERTIFICATE-----Generated at Sat Jun 14 06:46:25 2025 by rpki-client