$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: HSUEjm3gLwFNPr2XqRv9A3/zcD3dCq6qeMuSG13VziM= Subject key identifier: BE:7F:F4:21:40:CD:AC:30:72:A6:C1:81:CE:66:E6:48:05:E0:9C:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AC218F0F1680934FC67D547D5E429275334F9BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Sat 14 Jun 2025 00:10:57 +0000 ROA not before: Sat 14 Jun 2025 00:10:57 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c2:18:f0:f1:68:09:34:fc:67:d5:47:d5:e4:29:27:53:34:f9:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:10:57 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=d149414b6220c6bea5f2620968d1d0c94722a337895f35a21ef6bcd4882dca44, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:58:f5:b6:5e:b5:34:fb:06:ef:ff:43:3b:8d: e0:ec:92:cf:46:d8:7c:21:e3:8a:57:e3:06:e6:67: e3:9b:c2:af:c1:a5:56:72:fe:62:b0:8b:31:f0:85: 26:98:c2:14:51:84:bc:da:99:a7:e2:a5:ff:b6:a2: e8:10:79:bf:34:8d:51:40:df:0b:09:da:08:43:6f: fe:10:f9:26:f2:23:fa:ec:0d:4a:04:e6:e0:42:b8: 9e:83:30:00:d9:db:8c:f2:be:c8:ee:84:6f:88:0b: 18:ad:91:2a:28:50:da:f4:65:9c:f5:cc:00:5b:75: 43:e9:4c:84:33:79:a5:a9:99:db:91:6e:62:01:3f: 45:f7:34:2b:12:6b:c9:54:39:41:24:44:05:dd:e2: bc:c4:05:50:fa:a1:27:ea:8a:fd:22:00:90:9b:bc: 5a:97:6f:c0:bf:18:6b:12:b3:b0:d0:83:57:cd:fa: 60:c1:7c:b0:3d:65:3a:66:47:f0:7d:62:73:8f:68: 3c:13:25:bc:7a:99:34:ef:c5:e7:43:62:c0:85:a4: b9:6a:a4:91:78:9a:ca:d6:1b:55:5c:16:06:36:07: a7:8d:67:19:a6:4a:0c:87:35:19:28:d3:7e:11:62: eb:aa:3e:3a:21:ad:67:f6:f1:de:50:84:dd:21:f3: 68:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:7F:F4:21:40:CD:AC:30:72:A6:C1:81:CE:66:E6:48:05:E0:9C:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 39:5f:d9:a2:dd:f1:a0:bf:9a:c5:79:6e:97:e9:8a:e8:7f:c9: 50:73:cb:f8:a6:bc:ef:02:e3:52:a1:ad:89:bc:b4:e9:96:09: da:b9:c8:79:d0:e0:69:c3:70:dc:ee:d8:9d:93:dc:cd:f9:f5: 4d:86:c3:eb:d2:c4:d3:85:a2:c9:d9:37:27:c2:f1:97:d9:68: 43:15:d3:48:5c:d6:12:ed:8c:67:ce:4c:70:49:1f:a6:f0:f7: 96:2e:07:6a:cf:3c:61:cb:f5:f6:2b:ca:76:ce:e3:37:50:d9: 66:80:cf:6f:77:a5:0c:ee:40:9f:e0:b8:cb:d5:44:62:e6:0c: 26:5a:1f:9d:33:99:f6:90:7d:47:57:da:be:7c:a7:02:5b:ab: 0f:1d:91:8e:16:de:6f:b4:26:db:97:3c:3c:5f:20:5c:cd:e5: ed:e2:79:a2:55:12:98:02:4d:2d:b1:50:92:88:ef:b1:a5:49: 53:4f:0a:0b:e2:3d:2d:bc:fa:8d:07:5c:0f:59:f5:53:2f:b4: 0a:cc:48:7e:72:f4:b3:41:6e:de:b5:b6:e7:83:3d:71:0e:40: d9:72:83:50:af:51:e0:b8:17:a9:2b:b4:71:0a:fd:04:5d:58: 39:d6:f1:f0:dc:7b:ff:af:f4:f5:65:2c:81:a8:ee:83:e9:94: 95:f6:5c:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKsIY8PFoCTT8Z9VH1eQpJ1M0+bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAxMDU3WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTQ5NDE0YjYyMjBjNmJlYTVmMjYyMDk2OGQxZDBjOTQ3 MjJhMzM3ODk1ZjM1YTIxZWY2YmNkNDg4MmRjYTQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXWPW2XrU0+wbv/0M7jeDsks9G2Hwh44pX4wbmZ+Obwq/B pVZy/mKwizHwhSaYwhRRhLzamafipf+2ougQeb80jVFA3wsJ2ghDb/4Q+SbyI/rs DUoE5uBCuJ6DMADZ24zyvsjuhG+ICxitkSooUNr0ZZz1zABbdUPpTIQzeaWpmduR bmIBP0X3NCsSa8lUOUEkRAXd4rzEBVD6oSfqiv0iAJCbvFqXb8C/GGsSs7DQg1fN +mDBfLA9ZTpmR/B9YnOPaDwTJbx6mTTvxedDYsCFpLlqpJF4msrWG1VcFgY2B6eN ZxmmSgyHNRko034RYuuqPjohrWf28d5QhN0h82j3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvn/0IUDNrDBypsGBzmbmSAXgnHwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBADlf2aLd8aC/msV5bpfpiuh/yVBz y/imvO8C41KhrYm8tOmWCdq5yHnQ4GnDcNzu2J2T3M359U2Gw+vSxNOFosnZNyfC 8ZfZaEMV00hc1hLtjGfOTHBJH6bw95YuB2rPPGHL9fYrynbO4zdQ2WaAz293pQzu QJ/guMvVRGLmDCZaH50zmfaQfUdX2r58pwJbqw8dkY4W3m+0JtuXPDxfIFzN5e3i eaJVEpgCTS2xUJKI77GlSVNPCgviPS28+o0HXA9Z9VMvtArMSH5y9LNBbt61tueD PXEOQNlyg1CvUeC4F6krtHEK/QRdWDnW8fDce/+v9PVlLIGo7oPplJX2XLw= -----END CERTIFICATE-----Generated at Sat Jun 14 18:58:27 2025 by rpki-client