$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa File: aeffd414-e038-4f94-8262-5f843fa8634d.roa (raw, json) Hash identifier: lrqV84jWF5zmiQFloGYzLRAEp4uoqnsrxtd1nCQc3DY= Subject key identifier: E9:EB:A3:E6:D6:8E:F8:6A:09:09:AB:FF:ED:A4:57:CA:8C:89:84:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C2D6C9F21678F6EF7D3B4146DEBCDD045D7760F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa Signing time: Sat 14 Jun 2025 00:31:41 +0000 ROA not before: Sat 14 Jun 2025 00:31:41 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.20.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:2d:6c:9f:21:67:8f:6e:f7:d3:b4:14:6d:eb:cd:d0:45:d7:76:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:31:41 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=9ba96a2e14965f27b21af6fbd74e91f29b98d99e7b415bc9986df0895ccb3733, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:42:18:64:0c:3d:b8:62:6a:77:44:93:ea: fd:e8:56:38:2c:1b:15:b4:38:d4:fb:34:ee:c2:a3: 0b:77:86:60:40:7e:a7:bd:0a:1a:e0:1a:9e:9a:65: d0:bf:a9:53:8b:43:0f:97:68:ee:aa:3f:4c:fb:b6: 2b:5b:33:19:f2:0c:cc:6b:9f:17:1e:ee:1b:68:25: 4c:35:e9:b7:86:c7:07:2a:e8:dc:af:c3:8a:59:2f: ad:94:fa:cf:f9:e3:df:dd:15:90:3f:27:85:bc:5e: 58:a1:b2:07:da:ea:3d:3f:73:59:38:36:d9:87:59: bb:4a:65:55:29:b8:00:d7:62:53:cd:f6:cd:28:dd: 53:7c:42:4a:43:f8:c1:4e:86:91:f0:b1:eb:57:43: 81:6f:ec:87:71:11:ee:73:6b:ba:a5:42:fc:83:b3: 1d:8f:90:fd:f6:ad:a4:32:63:7b:00:7a:0e:fc:11: 52:c7:b4:3d:86:39:c4:15:ad:f0:b1:3c:82:70:f7: b6:f7:f8:e1:9d:6a:cf:87:f4:fb:7e:4a:69:f4:bb: 29:00:02:5e:a2:08:a0:fa:d5:60:4a:24:c6:4b:c2: de:41:4d:94:6d:6a:01:38:75:81:95:a6:15:5c:b7: 8a:f2:96:78:ab:d8:a7:4f:0c:06:f1:bf:5c:b9:c5: 53:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EB:A3:E6:D6:8E:F8:6A:09:09:AB:FF:ED:A4:57:CA:8C:89:84:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 89:6e:9f:4b:37:57:d6:6b:05:62:8b:e0:1d:fb:6c:43:e3:4d: f1:15:1d:a5:6c:6d:9c:a1:18:1d:a0:df:7d:71:d4:cd:bd:28: 08:2d:f8:e9:ed:31:6a:b2:2d:57:15:b0:61:ea:18:99:86:ba: f1:6e:49:30:9f:f6:2d:97:1c:1d:8e:ad:70:e2:6e:df:d6:21: f6:9d:bd:43:18:5f:c1:50:2e:7a:d3:d9:31:0d:d2:fe:7c:ca: 38:00:27:d1:7c:58:2d:60:94:c4:01:59:5a:22:9b:b3:fc:38: 04:76:9d:74:79:73:bb:8a:cc:04:46:38:e2:ad:9f:4e:38:71: fb:a0:99:be:f7:ee:8f:9b:27:48:b6:37:fd:ea:f2:d2:09:4e: c3:b4:78:95:f0:d5:2a:aa:17:c7:db:fb:29:27:c4:79:d0:9b: 9d:2b:0d:a7:cf:7d:e9:2c:cf:74:fc:86:9e:2b:b0:2d:2f:f9: e8:3e:2c:56:99:8d:e4:d7:26:39:20:ee:fd:80:17:20:63:8e: e2:6e:79:10:e6:86:dd:e6:f2:1e:74:93:7c:88:0d:5d:dd:d0: 4f:d3:e1:46:18:e4:98:be:88:b8:ca:b0:c2:8f:8a:b5:23:5f: 42:8f:3b:d6:f7:ea:32:ca:58:ee:0d:87:22:9e:92:b0:59:2d: c9:ba:ae:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXC1snyFnj27307QUbevN0EXXdg8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAzMTQxWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmE5NmEyZTE0OTY1ZjI3YjIxYWY2ZmJkNzRlOTFmMjli OThkOTllN2I0MTViYzk5ODZkZjA4OTVjY2IzNzMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2sUIYZAw9uGJqd0ST6v3oVjgsGxW0ONT7NO7Cowt3hmBA fqe9ChrgGp6aZdC/qVOLQw+XaO6qP0z7titbMxnyDMxrnxce7htoJUw16beGxwcq 6Nyvw4pZL62U+s/549/dFZA/J4W8Xlihsgfa6j0/c1k4NtmHWbtKZVUpuADXYlPN 9s0o3VN8QkpD+MFOhpHwsetXQ4Fv7IdxEe5za7qlQvyDsx2PkP32raQyY3sAeg78 EVLHtD2GOcQVrfCxPIJw97b3+OGdas+H9Pt+Smn0uykAAl6iCKD61WBKJMZLwt5B TZRtagE4dYGVphVct4rylnir2KdPDAbxv1y5xVNNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6euj5taO+GoJCav/7aRXyoyJhBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZmZkNDE0LWUwMzgtNGY5NC04MjYyLTVmODQzZmE4NjM0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIXFDANBgkqhkiG9w0BAQsFAAOCAQEAiW6fSzdX1msFYovgHftsQ+NN8RUd pWxtnKEYHaDffXHUzb0oCC346e0xarItVxWwYeoYmYa68W5JMJ/2LZccHY6tcOJu 39Yh9p29QxhfwVAuetPZMQ3S/nzKOAAn0XxYLWCUxAFZWiKbs/w4BHaddHlzu4rM BEY44q2fTjhx+6CZvvfuj5snSLY3/ery0glOw7R4lfDVKqoXx9v7KSfEedCbnSsN p8996SzPdPyGniuwLS/56D4sVpmN5NcmOSDu/YAXIGOO4m55EOaG3ebyHnSTfIgN Xd3QT9PhRhjkmL6IuMqwwo+KtSNfQo871vfqMspY7g2HIp6SsFktybquaw== -----END CERTIFICATE-----Generated at Sun Jun 15 20:37:24 2025 by rpki-client