$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa File: 9846244a-41d6-4a61-bc45-ec42cedff928.roa (raw, json) Hash identifier: WixT1zB0l91XoWbOVtWQT3LCWoe5u/R/KHnK6M89EAI= Subject key identifier: 41:21:F9:8B:B4:C0:5D:65:72:B3:C4:7C:83:80:43:93:E2:69:E5:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1464795BB1E0A700DED59AC34BBE2195B0F5949A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa Signing time: Sat 14 Jun 2025 00:41:31 +0000 ROA not before: Sat 14 Jun 2025 00:41:31 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:64:79:5b:b1:e0:a7:00:de:d5:9a:c3:4b:be:21:95:b0:f5:94:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:41:31 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=a767eb18809117b94226461df5a87323c30681272bbdf3218a8b3da04200bf7f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fc:49:4c:d0:db:3f:f2:24:be:5e:c9:05:08: 23:c5:8b:77:7e:da:af:0a:94:6d:cd:ca:2a:8d:50: 5e:21:c0:4c:e7:a9:16:ee:f4:90:5b:6c:57:2a:0b: 55:f9:ab:ac:03:95:c3:47:81:cb:20:66:80:09:42: 04:a5:05:29:18:19:db:53:44:45:07:3b:93:48:d7: 8e:c5:b8:18:f4:f1:5f:e1:9d:f8:ef:58:82:00:46: e3:80:36:70:cc:cc:1d:e8:fd:0c:47:ff:75:c6:86: ad:78:76:9d:eb:09:b0:9e:19:47:36:6b:bb:f0:6d: 69:75:9d:13:11:c2:98:8e:f7:23:92:2e:b5:b3:1d: 63:04:e1:88:39:49:0e:66:1b:22:b9:e7:ca:69:ed: 66:53:c8:29:36:2b:ab:92:c1:01:d4:82:3b:ce:a3: 99:d1:ef:94:e2:98:c3:d2:60:f0:b7:0d:c1:66:e7: 8d:1c:b1:5a:7e:45:3b:1e:26:1c:e5:79:8e:67:1b: af:a1:d3:e7:69:61:fc:82:ea:9f:d5:f6:82:67:47: b8:04:aa:bf:45:e2:b1:11:22:45:62:3b:0b:16:15: 26:0c:c9:29:19:d3:4e:64:1b:2b:7b:d6:de:51:b4: 98:89:2e:b4:5d:f4:6c:12:ed:78:33:aa:61:88:a5: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:21:F9:8B:B4:C0:5D:65:72:B3:C4:7C:83:80:43:93:E2:69:E5:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4a:e6:a6:5e:8c:0a:e1:7a:cf:9a:39:56:6a:cf:7b:1b:30:5e: 40:86:ed:13:5f:ff:1e:f8:86:1d:c3:1f:b9:11:c2:7a:57:b2: 08:70:4a:f0:3e:af:a6:5a:6f:87:f4:54:30:96:83:61:e8:9b: 98:33:75:43:e5:80:37:68:29:19:24:ce:fd:26:8d:bf:80:d0: 5f:d0:ef:56:0e:b1:b5:3c:a6:42:4f:97:93:66:28:ee:39:79: 90:99:cf:f8:e4:b7:78:a6:3c:1b:79:7b:fd:d6:d1:47:6a:22: f6:a4:99:a1:42:56:60:34:a0:13:6c:bf:37:25:22:b0:b7:81: 9e:5d:f4:58:9a:5b:ad:63:40:97:ef:9a:d6:4d:a0:49:32:d0: e3:ee:7f:da:8a:b7:ec:81:25:f1:cb:93:2f:72:c8:23:98:f9: 5e:ff:0a:cd:74:73:32:49:22:2b:2e:b1:89:ba:9c:35:35:97: fe:af:93:ae:2a:9a:37:d8:cb:ea:0d:29:bf:8d:42:dc:14:56: 6c:20:28:82:6b:ae:cd:0c:35:0d:b9:1e:b4:09:52:b0:13:78: 3f:f3:d9:19:21:39:27:f7:4d:ce:9e:b1:6b:75:6f:02:25:82: 67:73:f4:cf:70:91:0f:34:40:f4:0b:4c:e0:fa:84:b9:9a:98: 89:14:00:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFGR5W7HgpwDe1ZrDS74hlbD1lJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA0MTMxWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzY3ZWIxODgwOTExN2I5NDIyNjQ2MWRmNWE4NzMyM2Mz MDY4MTI3MmJiZGYzMjE4YThiM2RhMDQyMDBiZjdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDz/ElM0Ns/8iS+XskFCCPFi3d+2q8KlG3NyiqNUF4hwEzn qRbu9JBbbFcqC1X5q6wDlcNHgcsgZoAJQgSlBSkYGdtTREUHO5NI147FuBj08V/h nfjvWIIARuOANnDMzB3o/QxH/3XGhq14dp3rCbCeGUc2a7vwbWl1nRMRwpiO9yOS LrWzHWME4Yg5SQ5mGyK558pp7WZTyCk2K6uSwQHUgjvOo5nR75TimMPSYPC3DcFm 540csVp+RTseJhzleY5nG6+h0+dpYfyC6p/V9oJnR7gEqr9F4rERIkViOwsWFSYM ySkZ005kGyt71t5RtJiJLrRd9GwS7XgzqmGIpdLhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQSH5i7TAXWVys8R8g4BDk+Jp5fowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NDYyNDRhLTQxZDYtNGE2MS1iYzQ1LWVjNDJjZWRmZjkyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo0DANBgkqhkiG9w0BAQsFAAOCAQEASuamXowK4XrPmjlWas97GzBeQIbt E1//HviGHcMfuRHCeleyCHBK8D6vplpvh/RUMJaDYeibmDN1Q+WAN2gpGSTO/SaN v4DQX9DvVg6xtTymQk+Xk2Yo7jl5kJnP+OS3eKY8G3l7/dbRR2oi9qSZoUJWYDSg E2y/NyUisLeBnl30WJpbrWNAl++a1k2gSTLQ4+5/2oq37IEl8cuTL3LII5j5Xv8K zXRzMkkiKy6xibqcNTWX/q+TriqaN9jL6g0pv41C3BRWbCAogmuuzQw1DbketAlS sBN4P/PZGSE5J/dNzp6xa3VvAiWCZ3P0z3CRDzRA9AtM4PqEuZqYiRQAWg== -----END CERTIFICATE-----Generated at Sat Jun 14 07:04:46 2025 by rpki-client