$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa File: 6205efa3-adeb-4c79-a841-af02822a7d3f.roa (raw, json) Hash identifier: ci1ddosXWl86dX2U62x7zr1wQR3jrOuGxoeOK1oD6EM= Subject key identifier: 58:66:80:81:B5:6B:9E:C0:6C:8F:41:50:23:43:D7:1C:12:91:E5:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4317F5BC518B0134CA084E577CD3065FABE0315F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa Signing time: Wed 04 Jun 2025 00:21:07 +0000 ROA not before: Wed 04 Jun 2025 00:21:07 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:17:f5:bc:51:8b:01:34:ca:08:4e:57:7c:d3:06:5f:ab:e0:31:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:21:07 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=030e3628a5c9bcc5c0fbfe72b128e864bcfdd5bd41412af4a00c1d62ffb3bcff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:93:2c:83:65:26:29:ed:4e:5b:24:cf:6d: 11:55:71:38:fe:03:9d:c9:60:26:71:10:6b:62:57: 90:d4:86:83:74:00:03:8f:69:e7:e9:07:e7:3e:9d: 95:73:72:9a:c0:19:16:91:a6:ee:2e:06:2c:47:64: 41:a2:ee:95:e8:76:3d:23:c2:5f:25:57:35:a8:fd: 3e:87:61:a3:77:df:0f:35:93:b5:af:6b:93:84:3b: 3d:9d:45:a4:bf:47:98:8b:2f:08:c1:f7:79:ce:ef: 9f:03:4a:f1:20:6d:9c:69:d0:d4:1a:24:03:15:40: 25:2c:cd:f0:8b:bf:b0:cf:27:3e:1d:7b:29:f2:2b: 45:00:62:58:55:76:84:7c:a8:39:44:16:a7:de:7e: 61:f5:03:3f:64:de:61:b3:d8:03:22:aa:d2:d1:80: 67:f9:43:bd:7d:e2:e0:c3:2c:86:0c:16:ea:41:6e: b3:39:24:64:be:61:a4:e7:6e:9e:79:51:94:60:55: ce:ac:ae:2f:4b:90:13:c7:97:07:9c:5f:cd:4b:b4: 4a:97:98:06:58:c4:39:ff:ed:02:32:b9:d5:a1:af: ee:7c:96:21:0e:71:aa:94:63:5c:e9:20:93:8e:9f: 0e:60:04:ba:3b:66:5b:c6:9e:4b:fd:41:bf:04:bb: 65:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:66:80:81:B5:6B:9E:C0:6C:8F:41:50:23:43:D7:1C:12:91:E5:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.0.0/18 Signature Algorithm: sha256WithRSAEncryption c4:f9:a0:b0:b7:9f:d7:2a:4d:36:36:f7:c0:94:28:01:03:a2: 85:8d:d9:2d:06:af:65:0f:62:d8:27:94:75:f6:a3:fb:b4:11: ee:60:a5:99:24:ba:96:cb:fd:d7:ba:2e:1d:90:a7:14:3f:b4: 81:e8:f3:1e:60:f5:f9:6e:a3:d9:70:72:6f:90:c8:c9:fc:45: 42:47:cc:e0:b8:44:61:1f:88:44:62:b4:d4:02:71:4a:1c:75: fb:c6:ab:5d:97:67:88:d3:79:21:e8:ad:8a:0a:ef:25:08:57: 27:e2:2b:26:3c:21:6e:ae:12:28:5d:10:14:bf:1d:93:81:b8: 93:a9:86:db:02:2b:b5:91:db:96:51:6f:50:b3:e5:ed:aa:23: 7c:f9:d0:48:06:7b:0e:28:c0:81:68:8b:87:b6:d1:6b:87:78: 6f:9c:02:b6:06:04:f7:a3:a2:b4:ee:a9:80:e9:19:d2:98:47: 28:b7:07:ec:27:6e:ba:c9:59:0a:c1:d3:6c:50:e6:63:a0:cf: 86:d1:a4:36:07:20:4f:97:b9:64:77:e2:07:41:1e:25:19:1c: f5:53:8a:96:e4:07:89:81:21:c9:b5:fa:56:82:87:98:54:c3: 64:84:e6:6f:79:8a:4b:4a:e9:e5:b4:26:a3:98:5e:d9:b9:af: 7c:7b:a5:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQxf1vFGLATTKCE5XfNMGX6vgMV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAyMTA3WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzBlMzYyOGE1YzliY2M1YzBmYmZlNzJiMTI4ZTg2NGJj ZmRkNWJkNDE0MTJhZjRhMDBjMWQ2MmZmYjNiY2ZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5EZMsg2UmKe1OWyTPbRFVcTj+A53JYCZxEGtiV5DUhoN0 AAOPaefpB+c+nZVzcprAGRaRpu4uBixHZEGi7pXodj0jwl8lVzWo/T6HYaN33w81 k7Wva5OEOz2dRaS/R5iLLwjB93nO758DSvEgbZxp0NQaJAMVQCUszfCLv7DPJz4d eynyK0UAYlhVdoR8qDlEFqfefmH1Az9k3mGz2AMiqtLRgGf5Q7194uDDLIYMFupB brM5JGS+YaTnbp55UZRgVc6sri9LkBPHlwecX81LtEqXmAZYxDn/7QIyudWhr+58 liEOcaqUY1zpIJOOnw5gBLo7ZlvGnkv9Qb8Eu2V5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWGaAgbVrnsBsj0FQI0PXHBKR5S4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyMDVlZmEzLWFkZWItNGM3OS1hODQxLWFmMDI4MjJhN2QzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCmAAwDQYJKoZIhvcNAQELBQADggEBAMT5oLC3n9cqTTY298CUKAEDooWN 2S0Gr2UPYtgnlHX2o/u0Ee5gpZkkupbL/de6Lh2QpxQ/tIHo8x5g9fluo9lwcm+Q yMn8RUJHzOC4RGEfiERitNQCcUocdfvGq12XZ4jTeSHorYoK7yUIVyfiKyY8IW6u EihdEBS/HZOBuJOphtsCK7WR25ZRb1Cz5e2qI3z50EgGew4owIFoi4e20WuHeG+c ArYGBPejorTuqYDpGdKYRyi3B+wnbrrJWQrB02xQ5mOgz4bRpDYHIE+XuWR34gdB HiUZHPVTipbkB4mBIcm1+laCh5hUw2SE5m95iktK6eW0JqOYXtm5r3x7pSo= -----END CERTIFICATE-----Generated at Sat Jun 14 06:43:26 2025 by rpki-client