$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa File: a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa (raw, json) Hash identifier: pmKy5Ey9FoksSNAvW9Nplqeo1V1oHiQ76ZyaL9TsQoA= Subject key identifier: 28:32:C5:FB:11:94:BB:BF:C3:61:37:AD:C4:A5:D2:B2:D8:5F:6F:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 277668E37234DC5226623203040905B41F7EFFD2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa Signing time: Fri 13 Jun 2025 16:11:20 +0000 ROA not before: Fri 13 Jun 2025 16:11:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:76:68:e3:72:34:dc:52:26:62:32:03:04:09:05:b4:1f:7e:ff:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:11:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=a264cfd2dccd08fa9820963139194dba37a567e5b45c1ac0d6a6308bae6455be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:69:0a:26:bc:4e:5a:43:02:0c:b6:a3:98:66: 7e:5a:1e:c6:95:9f:39:13:ee:db:41:75:5c:45:5d: 4a:c5:f9:14:68:e0:89:66:d5:4b:4e:05:61:59:0c: ef:ee:6a:0c:07:65:77:06:b5:d2:af:4a:6f:76:88: c3:0e:cf:9f:5c:d4:2d:eb:e7:b8:03:9a:c6:6d:60: 66:24:d8:d2:dd:6f:71:84:a9:66:f8:f1:a0:bf:6e: bc:6b:45:48:48:89:18:86:cc:3f:bb:0c:e3:28:0e: 63:1f:a1:9f:5b:69:3f:d6:c9:2f:d8:5b:3c:32:ea: 72:70:7a:0e:79:91:33:99:2f:c5:b2:bf:a6:5f:c3: f1:93:e4:fe:e7:6e:f6:28:90:83:17:d6:93:ca:0a: bf:18:3c:b2:72:48:15:c6:28:eb:cf:96:ed:1e:52: 37:ab:fc:51:a9:4c:2d:4f:64:ca:23:93:47:c6:8c: ad:98:b9:01:2a:b8:53:2b:b5:2d:c1:67:41:3b:a8: 25:df:e1:bd:27:ef:cd:fd:2c:1b:3c:2f:66:e2:0c: a8:41:df:10:a9:a1:1d:8f:5c:c4:5b:c5:a9:e4:59: 95:8d:99:81:ee:e5:91:17:a1:29:49:5e:7c:ea:81: b8:de:3c:16:db:ed:31:a7:35:ed:d9:2d:d8:3a:f2: fd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:32:C5:FB:11:94:BB:BF:C3:61:37:AD:C4:A5:D2:B2:D8:5F:6F:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.0.0/15 Signature Algorithm: sha256WithRSAEncryption 08:f5:ad:e6:7f:db:ef:b3:d1:27:5d:f7:65:65:f7:07:60:fc: b9:7b:08:d2:6d:d2:f8:be:e9:7a:f8:e1:c6:35:77:93:ac:6b: 5e:38:96:32:6d:f1:b6:43:02:5e:59:f4:d8:30:84:6e:17:ff: cd:09:b5:33:b2:f1:44:5a:4b:fa:eb:6c:63:29:5e:88:de:05: c3:7e:8f:72:49:c5:bf:5b:a5:27:0d:98:90:42:31:f6:5b:43: 83:5b:05:f9:26:f7:18:09:c9:a1:ce:82:be:56:cf:ac:ce:00: 13:fe:67:49:98:80:8f:ff:b4:61:63:e3:3a:f2:8c:fa:a3:08: 3e:dd:6a:80:ea:01:70:2a:b4:fe:dc:f3:e0:dc:00:50:a8:60: 18:1e:7a:bd:2e:7b:9e:56:9c:70:b6:c9:12:85:a5:8a:14:59: a8:ad:4c:3a:11:a5:dc:1e:9d:19:8a:e3:fd:2d:d2:ab:0a:20: a6:14:36:86:8d:25:66:40:ad:24:14:da:3f:05:2f:cb:7e:dc: 3c:dc:10:e5:13:ec:43:82:60:02:7a:14:2b:7a:2f:ee:0b:ef: d9:9e:91:dc:89:d8:1b:56:bf:b5:c9:6e:53:16:b0:bc:d9:7c: ab:6a:b0:a8:87:ac:9e:cf:d6:cb:10:eb:91:f5:d0:09:2a:a4: 28:2d:cb:ad -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ3Zo43I03FImYjIDBAkFtB9+/9IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYxMTIwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjY0Y2ZkMmRjY2QwOGZhOTgyMDk2MzEzOTE5NGRiYTM3 YTU2N2U1YjQ1YzFhYzBkNmE2MzA4YmFlNjQ1NWJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdaQomvE5aQwIMtqOYZn5aHsaVnzkT7ttBdVxFXUrF+RRo 4Ilm1UtOBWFZDO/uagwHZXcGtdKvSm92iMMOz59c1C3r57gDmsZtYGYk2NLdb3GE qWb48aC/brxrRUhIiRiGzD+7DOMoDmMfoZ9baT/WyS/YWzwy6nJweg55kTOZL8Wy v6Zfw/GT5P7nbvYokIMX1pPKCr8YPLJySBXGKOvPlu0eUjer/FGpTC1PZMojk0fG jK2YuQEquFMrtS3BZ0E7qCXf4b0n7839LBs8L2biDKhB3xCpoR2PXMRbxankWZWN mYHu5ZEXoSlJXnzqgbjePBbb7TGnNe3ZLdg68v3RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKDLF+xGUu7/DYTetxKXSsthfb48wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTJmNmE4LTNlNjktNGQ4Ny04MmE5LWFiMDZiZmE4ZGMyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGDANBgkqhkiG9w0BAQsFAAOCAQEACPWt5n/b77PRJ133ZWX3B2D8uXsI 0m3S+L7pevjhxjV3k6xrXjiWMm3xtkMCXln02DCEbhf/zQm1M7LxRFpL+utsYyle iN4Fw36PcknFv1ulJw2YkEIx9ltDg1sF+Sb3GAnJoc6CvlbPrM4AE/5nSZiAj/+0 YWPjOvKM+qMIPt1qgOoBcCq0/tzz4NwAUKhgGB56vS57nlaccLbJEoWlihRZqK1M OhGl3B6dGYrj/S3SqwogphQ2ho0lZkCtJBTaPwUvy37cPNwQ5RPsQ4JgAnoUK3ov 7gvv2Z6R3InYG1a/tcluUxawvNl8q2qwqIesns/WyxDrkfXQCSqkKC3LrQ== -----END CERTIFICATE-----Generated at Sat Jun 14 06:19:11 2025 by rpki-client