$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa File: 75f1294d-03e7-415c-8881-5227f1076874.roa (raw, json) Hash identifier: pcAMqEFkDE58WZuqC5X1eqAh3wzGSixZCgP9Vd9RmcQ= Subject key identifier: C5:75:D8:26:1A:1E:DA:56:A3:66:5B:41:10:71:41:09:EE:38:FB:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FBA9BF8F8000C473E0CCEB33AAA804487A487B1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa Signing time: Tue 03 Jun 2025 00:10:13 +0000 ROA not before: Tue 03 Jun 2025 00:10:13 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ba:9b:f8:f8:00:0c:47:3e:0c:ce:b3:3a:aa:80:44:87:a4:87:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 00:10:13 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=46266f4fbbc7a3bbd6390f4a3c26df1701ff91605fa093696b755c897a90a1fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:19:cd:ea:16:81:ca:a5:99:21:e8:c7:23:44: 4c:13:af:49:23:b9:fc:37:8f:66:c3:49:fb:98:b3: 4a:e8:89:45:32:43:38:ae:69:c6:69:2c:8f:50:0b: 2a:6c:38:41:2d:ca:00:80:a4:e8:4e:5e:6d:3c:68: b1:c1:5d:98:f9:0c:fa:e2:c0:b1:36:99:af:95:ab: 5a:d6:84:69:24:df:51:42:10:27:89:01:c2:40:65: 36:fd:07:0c:58:32:f8:c9:ae:1e:e0:1f:a7:36:82: 4a:35:c7:4c:bf:78:75:02:b0:b3:95:e4:ab:a9:3a: 6b:71:5e:a3:67:e5:2e:01:ae:6f:50:d7:d1:fd:39: c4:23:1e:85:df:0e:32:bd:db:70:8a:d7:f9:bc:54: 27:6b:0f:ef:74:56:dd:e5:5f:eb:9f:94:ed:fe:58: 7f:c9:20:9d:b7:72:54:53:a4:cf:88:d5:fd:27:73: ae:0a:3b:b0:87:c7:f9:bd:96:83:11:fe:ef:60:9c: 09:c9:37:62:21:a7:95:1c:23:76:02:06:00:9d:65: b0:e7:83:34:ad:a0:c9:0e:4b:62:15:b0:62:f5:ab: cd:2e:8e:78:1e:53:d5:a4:a4:e5:62:98:b4:de:f5: 29:6d:07:8a:cf:44:c3:2d:34:31:7f:0b:fc:f9:48: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:75:D8:26:1A:1E:DA:56:A3:66:5B:41:10:71:41:09:EE:38:FB:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.152.0/22 Signature Algorithm: sha256WithRSAEncryption c3:8c:a5:ab:e7:7b:4c:29:3d:76:8b:06:b0:64:5c:f5:ae:cc: 01:2f:f0:79:43:a9:8f:57:c7:26:ff:64:2b:0c:90:c7:43:83: 79:2b:9e:f1:f8:e0:a9:19:d7:01:d5:31:c1:40:33:e7:5d:ed: c6:99:17:72:09:e4:24:ed:8f:50:6d:b6:a8:a5:92:29:7a:36: e6:3c:65:02:ff:d7:07:91:fb:05:e4:48:99:a5:ae:0d:3e:83: a6:4b:8f:fd:3e:31:f4:c0:71:74:51:ae:de:89:c6:5c:da:9a: 61:38:a3:3f:3f:af:7f:e7:a3:35:18:09:2c:03:4f:60:ac:34: 3f:40:6c:70:41:cb:2a:3b:b1:db:3f:67:be:69:b5:38:4f:0e: be:e8:e2:f7:9c:5b:25:df:a3:71:d0:48:76:d0:46:c9:fb:fa: 0d:bd:97:1c:32:70:66:0b:ba:17:e1:ad:97:c0:99:6d:67:ac: d0:d2:00:f9:bd:e1:74:23:9c:3f:3e:df:01:af:96:60:94:56: 80:bc:72:6f:e1:99:df:b9:c8:e0:7a:12:58:3a:ea:e8:7b:e6: 54:5e:b5:9e:76:d7:61:a7:3b:49:08:9c:bb:9a:18:e7:2f:82: 15:66:6c:71:f3:b4:d5:37:b0:eb:59:05:7c:c9:68:a7:03:e3: 30:bf:36:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP7qb+PgADEc+DM6zOqqARIekh7EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMDAxMDEzWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjI2NmY0ZmJiYzdhM2JiZDYzOTBmNGEzYzI2ZGYxNzAx ZmY5MTYwNWZhMDkzNjk2Yjc1NWM4OTdhOTBhMWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkGc3qFoHKpZkh6McjREwTr0kjufw3j2bDSfuYs0roiUUy QziuacZpLI9QCypsOEEtygCApOhOXm08aLHBXZj5DPriwLE2ma+Vq1rWhGkk31FC ECeJAcJAZTb9BwxYMvjJrh7gH6c2gko1x0y/eHUCsLOV5KupOmtxXqNn5S4Brm9Q 19H9OcQjHoXfDjK923CK1/m8VCdrD+90Vt3lX+uflO3+WH/JIJ23clRTpM+I1f0n c64KO7CHx/m9loMR/u9gnAnJN2Ihp5UcI3YCBgCdZbDngzStoMkOS2IVsGL1q80u jngeU9WkpOVimLTe9SltB4rPRMMtNDF/C/z5SNRlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxXXYJhoe2lajZltBEHFBCe44+68wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZjEyOTRkLTAzZTctNDE1Yy04ODgxLTUyMjdmMTA3Njg3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEpgwDQYJKoZIhvcNAQELBQADggEBAMOMpavne0wpPXaLBrBkXPWuzAEv 8HlDqY9Xxyb/ZCsMkMdDg3krnvH44KkZ1wHVMcFAM+dd7caZF3IJ5CTtj1Bttqil kil6NuY8ZQL/1weR+wXkSJmlrg0+g6ZLj/0+MfTAcXRRrt6JxlzammE4oz8/r3/n ozUYCSwDT2CsND9AbHBByyo7sds/Z75ptThPDr7o4vecWyXfo3HQSHbQRsn7+g29 lxwycGYLuhfhrZfAmW1nrNDSAPm94XQjnD8+3wGvlmCUVoC8cm/hmd+5yOB6Elg6 6uh75lRetZ5212GnO0kInLuaGOcvghVmbHHztNU3sOtZBXzJaKcD4zC/Nqg= -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:57 2025 by rpki-client