$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ad7d350-34e3-4f44-858b-b36ac11a0165.roa File: 5ad7d350-34e3-4f44-858b-b36ac11a0165.roa (raw, json) Hash identifier: ++CkO9xiALyHnpiD2se9zgrSqZouU1WxYG8kizbFadg= Subject key identifier: 36:D1:AA:C7:24:DD:4B:E1:D4:1F:3E:63:7A:93:C1:AD:E6:2F:C1:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 768B9B72BB9DA4AF5BD7FE7428EFD8F2AAB45F3B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ad7d350-34e3-4f44-858b-b36ac11a0165.roa Signing time: Sat 07 Jun 2025 00:20:57 +0000 ROA not before: Sat 07 Jun 2025 00:20:57 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 109.71.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:8b:9b:72:bb:9d:a4:af:5b:d7:fe:74:28:ef:d8:f2:aa:b4:5f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:20:57 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=6c3f6e19bf89b8e120db186559ced6aeaa973f6eabe57c95292eb2618026e37f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:06:ae:62:26:6e:82:86:38:67:2c:d3:6b:66: b8:ec:2f:ec:d0:a8:b4:0a:9f:6d:2b:86:c0:1a:0a: 4e:d5:b4:08:3a:a7:ea:81:48:15:e3:42:54:20:5e: 85:11:50:bc:27:6a:49:d3:27:e7:01:36:f3:e5:0f: c6:20:da:03:0a:70:11:cc:4d:68:15:e8:82:17:ce: ec:81:30:c6:9b:a8:7a:12:aa:c7:94:94:65:c6:05: fa:3c:77:78:21:de:63:a4:d9:0b:36:d4:ac:e5:67: 20:32:76:d3:4d:04:b6:00:3c:07:a8:61:58:28:91: 7b:03:75:78:1c:c0:5d:04:67:8a:40:3d:25:af:82: 34:72:4b:bd:38:14:4e:ff:2b:b2:84:9e:4e:64:ac: f8:23:af:a0:0c:31:6d:66:18:d8:4f:80:7d:7c:a7: 67:9d:fd:0f:3c:ae:8b:32:a5:dc:09:05:64:6c:0b: c6:98:0d:07:8a:ea:ad:cf:e8:43:fe:ac:c4:aa:2d: 45:86:ba:bc:10:49:70:89:c5:4f:3d:58:21:3d:74: 4b:81:36:2b:09:44:54:bb:cd:66:5c:ec:fb:5c:f6: c1:4b:23:8a:49:35:38:35:34:59:76:41:64:97:cd: c2:c9:37:3f:83:c3:8d:07:48:92:8d:4b:e4:fd:49: 55:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D1:AA:C7:24:DD:4B:E1:D4:1F:3E:63:7A:93:C1:AD:E6:2F:C1:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ad7d350-34e3-4f44-858b-b36ac11a0165.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.71.191.0/24 Signature Algorithm: sha256WithRSAEncryption c3:b2:ea:3a:5e:30:58:72:24:13:f1:38:6a:12:b0:00:22:58: fa:3a:11:5d:03:5d:32:6d:44:ae:7c:67:d7:5c:de:d1:ac:87: 9c:9c:3b:c0:c5:f2:98:44:72:76:99:f8:64:09:00:78:59:b6: 99:78:38:3c:36:ce:40:90:31:47:cf:9b:0a:bd:9a:35:11:55: 82:b0:89:1c:38:fb:89:87:92:39:01:82:76:a2:63:32:46:4f: 81:8c:a6:06:b0:7b:20:8f:bc:bb:9c:f9:e7:08:ac:d3:69:d2: 81:fd:f5:c1:1d:d5:6c:9b:c2:d6:65:58:9f:19:c5:21:a5:1d: eb:fd:d9:a1:a1:16:88:94:c4:19:9a:49:2d:b3:ea:32:59:41: 67:1a:a7:0a:86:e3:a4:ec:05:5e:33:11:0d:fb:db:ee:ac:31: c3:cf:4d:42:4c:91:9f:ae:25:cc:1e:80:b8:cf:82:da:5f:2f: d7:66:3d:70:92:80:3d:4a:9b:8b:58:f9:aa:88:bc:99:4b:89: a1:8f:dc:d7:b6:4e:ec:8b:b1:1b:d0:76:19:39:13:16:8e:c3: 9b:8b:3b:5a:55:9a:e6:93:76:b6:e2:fb:48:c1:36:81:f6:01: ab:fd:6a:a7:57:3b:92:f8:b1:bc:ee:a9:22:32:78:bd:f0:b3: 26:5a:39:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdoubcrudpK9b1/50KO/Y8qq0XzswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDAyMDU3WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzNmNmUxOWJmODliOGUxMjBkYjE4NjU1OWNlZDZhZWFh OTczZjZlYWJlNTdjOTUyOTJlYjI2MTgwMjZlMzdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJBq5iJm6ChjhnLNNrZrjsL+zQqLQKn20rhsAaCk7VtAg6 p+qBSBXjQlQgXoURULwnaknTJ+cBNvPlD8Yg2gMKcBHMTWgV6IIXzuyBMMabqHoS qseUlGXGBfo8d3gh3mOk2Qs21KzlZyAydtNNBLYAPAeoYVgokXsDdXgcwF0EZ4pA PSWvgjRyS704FE7/K7KEnk5krPgjr6AMMW1mGNhPgH18p2ed/Q88rosypdwJBWRs C8aYDQeK6q3P6EP+rMSqLUWGurwQSXCJxU89WCE9dEuBNisJRFS7zWZc7Ptc9sFL I4pJNTg1NFl2QWSXzcLJNz+Dw40HSJKNS+T9SVW/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNtGqxyTdS+HUHz5jepPBreYvwSgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZDdkMzUwLTM0ZTMtNGY0NC04NThiLWIzNmFjMTFhMDE2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABtR78wDQYJKoZIhvcNAQELBQADggEBAMOy6jpeMFhyJBPxOGoSsAAiWPo6 EV0DXTJtRK58Z9dc3tGsh5ycO8DF8phEcnaZ+GQJAHhZtpl4ODw2zkCQMUfPmwq9 mjURVYKwiRw4+4mHkjkBgnaiYzJGT4GMpgaweyCPvLuc+ecIrNNp0oH99cEd1Wyb wtZlWJ8ZxSGlHev92aGhFoiUxBmaSS2z6jJZQWcapwqG46TsBV4zEQ372+6sMcPP TUJMkZ+uJcwegLjPgtpfL9dmPXCSgD1Km4tY+aqIvJlLiaGP3Ne2TuyLsRvQdhk5 ExaOw5uLO1pVmuaTdrbi+0jBNoH2Aav9aqdXO5L4sbzuqSIyeL3wsyZaOaA= -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:44 2025 by rpki-client