$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa File: 98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa (raw, json) Hash identifier: Y6RPo44l+VQsnDdf1hJCOXApNRquLFnVPfszjgIdJQw= Subject key identifier: DB:D3:B0:18:FD:EA:B7:E8:D0:87:A5:26:74:A5:1D:C7:3E:E8:7B:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B368EB4C214862F020DDCC3ED2F40D82804DC6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa Signing time: Sat 07 Jun 2025 00:21:07 +0000 ROA not before: Sat 07 Jun 2025 00:21:07 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 124.24.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:36:8e:b4:c2:14:86:2f:02:0d:dc:c3:ed:2f:40:d8:28:04:dc:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:21:07 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=0baa6577b6f3b0eb2e4a6c4bbb1d85eecdf7e050d0478888d4139f7a9fb7d6a7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:81:52:7b:74:fa:2f:97:d7:62:6f:79:fe:23: 56:3f:eb:2d:59:24:88:16:6d:b3:39:ed:ad:39:f1: 11:21:d7:e9:85:62:8e:d1:34:c1:84:4a:e5:fa:e2: 3b:69:41:45:e8:b7:95:19:9a:a7:97:5a:af:b1:ca: 06:b2:d2:d7:1d:fa:82:8d:3c:08:af:c4:41:bd:19: d5:31:cd:d7:64:6e:e1:9f:8c:82:5f:fc:a4:7e:26: 99:58:7b:c3:f6:e5:6a:0e:df:a5:f8:75:8c:90:54: 31:55:da:24:50:05:4c:5f:82:99:48:04:86:70:d1: d3:e4:9c:38:8f:0e:20:63:37:e2:ba:96:07:7e:18: 92:5e:18:83:9e:47:f0:fa:44:fd:c3:3c:a7:03:db: cd:e7:7d:c8:35:c6:5e:67:47:7d:78:4e:d9:91:3c: 4b:05:23:81:70:d6:bd:1c:51:93:2a:1a:e4:a9:82: f3:0c:32:55:89:f6:45:a5:c1:48:24:76:2b:88:27: 56:2a:1a:70:69:ce:e0:b3:10:c5:ca:f8:44:0e:e8: e5:ff:3c:38:0e:56:b1:6b:86:a4:37:89:63:33:64: 84:ad:73:5d:76:04:60:fd:a9:c0:52:6a:2a:ef:d3: 46:cd:ce:b0:bd:c8:0f:c2:e6:1e:92:ae:7b:ef:2c: db:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D3:B0:18:FD:EA:B7:E8:D0:87:A5:26:74:A5:1D:C7:3E:E8:7B:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.24.192.0/18 Signature Algorithm: sha256WithRSAEncryption b6:e4:87:fd:26:25:20:5b:29:30:ce:fa:0e:e4:29:bd:cd:dd: e7:61:70:e3:e3:e3:45:5d:3b:e9:c1:82:70:5b:a0:1f:7c:6d: 0d:c1:07:c2:08:37:ae:08:c8:83:1c:71:01:4e:19:3c:d8:fe: f7:21:cb:f1:a1:17:9f:25:8c:e2:5b:99:bc:af:42:35:52:25: 62:6a:72:74:ae:97:d9:d0:1d:9a:aa:13:06:56:69:d0:35:74: 41:60:97:79:15:56:41:8a:47:2a:f8:fb:75:be:fe:4a:86:2d: f2:22:e7:a0:4b:aa:8c:f6:1f:51:4d:1c:c4:b4:46:75:bd:fc: c9:b9:02:4e:8c:68:94:70:22:4c:4a:87:36:2e:18:bd:ca:57: a5:ba:51:1d:31:07:cd:56:1d:e5:96:c1:02:1b:d4:ec:c9:9e: f9:44:56:0b:99:d9:50:8e:b1:e2:77:cd:b8:39:07:43:21:c3: 78:c4:e5:39:ac:e7:9d:a0:06:4f:4a:eb:f1:d0:09:da:6f:fe: fe:b5:ed:21:e0:18:ce:e8:9d:44:4f:e2:aa:3f:a4:22:1c:e1: 9c:f7:78:25:0e:85:e5:0b:79:cd:48:d4:3a:b5:d6:50:09:63: 6d:8d:af:dd:c9:cf:59:e3:d2:fd:40:0a:2f:47:64:72:69:00: 6e:98:b8:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSzaOtMIUhi8CDdzD7S9A2CgE3GwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDAyMTA3WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmFhNjU3N2I2ZjNiMGViMmU0YTZjNGJiYjFkODVlZWNk ZjdlMDUwZDA0Nzg4ODhkNDEzOWY3YTlmYjdkNmE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCngVJ7dPovl9dib3n+I1Y/6y1ZJIgWbbM57a058REh1+mF Yo7RNMGESuX64jtpQUXot5UZmqeXWq+xygay0tcd+oKNPAivxEG9GdUxzddkbuGf jIJf/KR+JplYe8P25WoO36X4dYyQVDFV2iRQBUxfgplIBIZw0dPknDiPDiBjN+K6 lgd+GJJeGIOeR/D6RP3DPKcD283nfcg1xl5nR314TtmRPEsFI4Fw1r0cUZMqGuSp gvMMMlWJ9kWlwUgkdiuIJ1YqGnBpzuCzEMXK+EQO6OX/PDgOVrFrhqQ3iWMzZISt c112BGD9qcBSairv00bNzrC9yA/C5h6SrnvvLNuFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU29OwGP3qt+jQh6UmdKUdxz7oe0cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YjViZmYxLTQxYzQtNDE0MS05MmZiLTIwZTVkODYwMGY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ8GMAwDQYJKoZIhvcNAQELBQADggEBALbkh/0mJSBbKTDO+g7kKb3N3edh cOPj40VdO+nBgnBboB98bQ3BB8IIN64IyIMccQFOGTzY/vchy/GhF58ljOJbmbyv QjVSJWJqcnSul9nQHZqqEwZWadA1dEFgl3kVVkGKRyr4+3W+/kqGLfIi56BLqoz2 H1FNHMS0RnW9/Mm5Ak6MaJRwIkxKhzYuGL3KV6W6UR0xB81WHeWWwQIb1OzJnvlE VguZ2VCOseJ3zbg5B0Mhw3jE5Tms552gBk9K6/HQCdpv/v617SHgGM7onURP4qo/ pCIc4Zz3eCUOheULec1I1Dq11lAJY22Nr93Jz1nj0v1ACi9HZHJpAG6YuEQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:32 2025 by rpki-client