$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa File: aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa (raw, json) Hash identifier: QXVYehAj+V34DAJMOntIyp5Ivan7g11OSgSYuoGLi00= Subject key identifier: C7:DC:89:FA:99:02:65:C1:D5:EA:37:C6:85:2D:50:05:FF:85:EE:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75EB543E8877E45A950020F4D99629B8F42A1410 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa Signing time: Mon 02 Jun 2025 15:00:23 +0000 ROA not before: Mon 02 Jun 2025 15:00:23 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:eb:54:3e:88:77:e4:5a:95:00:20:f4:d9:96:29:b8:f4:2a:14:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:00:23 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=73dafa7832dd22510f48eebb6759eb0dc376a517b3fc0b480586ba0753815355, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f8:89:4f:26:63:80:1a:0a:ef:dc:e7:9e:f2: 3f:48:05:48:18:60:21:19:f4:38:41:12:92:c3:3c: dd:3c:d2:63:79:ea:86:40:2c:20:dc:51:1a:4e:5f: 62:f4:96:2a:d7:fe:78:14:de:b8:26:34:3c:23:1d: f6:a0:d1:49:1d:f7:51:0b:77:4e:68:84:4d:ba:52: 08:c2:15:98:b9:14:24:af:2e:9c:11:f8:64:ad:7f: c5:35:74:09:f0:f5:91:80:26:9f:c1:16:fa:cb:68: 21:0c:01:6d:95:cd:a9:d3:44:ae:94:a8:85:ac:59: 48:82:8c:b9:4e:86:c9:1a:f7:32:ea:11:e9:3c:e0: a9:9e:ba:be:ba:a9:17:65:8a:2f:f1:1e:69:e5:3d: a0:1a:fd:19:dd:04:e8:04:f0:76:5c:49:84:a3:97: 79:2c:e2:c0:f2:9a:48:38:40:25:99:43:16:96:7a: 26:7d:2e:de:79:71:a9:57:fa:ad:e4:a2:e7:86:96: 96:7f:a1:f1:4d:6f:df:42:bf:7d:9e:c1:6d:f5:7a: 51:55:80:4e:e9:8c:50:09:0d:9e:55:12:19:2a:9c: 5e:a6:65:41:8b:c4:b8:85:9e:70:87:80:d4:64:4b: 5a:b1:64:36:d0:f0:cc:53:4b:36:1a:6c:60:10:6d: 31:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DC:89:FA:99:02:65:C1:D5:EA:37:C6:85:2D:50:05:FF:85:EE:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.128.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:90:07:0c:52:69:e7:15:79:6b:e4:06:64:17:eb:92:b7:e9: a4:32:15:d4:9c:44:3a:ac:c6:44:31:5d:36:b8:41:88:f7:d5: 94:71:d6:76:44:74:9c:48:61:c5:37:56:e9:87:66:d0:e6:65: 73:09:03:78:56:dc:d0:18:5c:69:19:14:97:10:58:4a:7f:68: 18:28:74:6e:f6:cd:f5:99:cf:27:51:f2:af:be:02:73:53:a6: 98:12:eb:c9:a1:21:50:7a:93:b2:9b:5e:98:89:22:d5:a3:99: 6d:18:29:6e:75:bd:52:e2:3c:fa:2c:8b:a7:0f:f1:00:29:dc: f5:f3:08:5b:01:c2:77:18:d0:19:27:66:b9:c9:12:33:66:07: 60:ef:64:ac:bb:01:ea:d0:de:63:08:9b:ff:f6:65:15:06:c9: 3c:93:6e:7f:cb:bd:f3:c9:44:98:00:ed:ed:ac:aa:a6:4f:86: a0:9c:f3:ac:40:49:66:1a:61:1b:38:22:bd:6e:e5:56:45:81: 26:46:fb:d4:19:6c:ad:c3:ff:e0:b5:52:b2:ce:ad:19:87:5f: 68:d5:a4:6b:cb:41:d6:69:1e:d5:ed:2b:bc:4d:38:32:18:d8: 72:eb:70:c5:99:e4:ab:5e:12:67:fb:b8:36:9e:c1:be:16:c5: fb:64:7a:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdetUPoh35FqVACD02ZYpuPQqFBAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUwMDIzWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2RhZmE3ODMyZGQyMjUxMGY0OGVlYmI2NzU5ZWIwZGMz NzZhNTE3YjNmYzBiNDgwNTg2YmEwNzUzODE1MzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1+IlPJmOAGgrv3Oee8j9IBUgYYCEZ9DhBEpLDPN080mN5 6oZALCDcURpOX2L0lirX/ngU3rgmNDwjHfag0Ukd91ELd05ohE26UgjCFZi5FCSv LpwR+GStf8U1dAnw9ZGAJp/BFvrLaCEMAW2VzanTRK6UqIWsWUiCjLlOhska9zLq Eek84Kmeur66qRdlii/xHmnlPaAa/RndBOgE8HZcSYSjl3ks4sDymkg4QCWZQxaW eiZ9Lt55calX+q3koueGlpZ/ofFNb99Cv32ewW31elFVgE7pjFAJDZ5VEhkqnF6m ZUGLxLiFnnCHgNRkS1qxZDbQ8MxTSzYabGAQbTGDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx9yJ+pkCZcHV6jfGhS1QBf+F7oQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmZjVmNmJhLWYwZmMtNDExMS1iMmRiLTJlYjZkMjU5MTY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgIAwDQYJKoZIhvcNAQELBQADggEBAGuQBwxSaecVeWvkBmQX65K36aQy FdScRDqsxkQxXTa4QYj31ZRx1nZEdJxIYcU3VumHZtDmZXMJA3hW3NAYXGkZFJcQ WEp/aBgodG72zfWZzydR8q++AnNTppgS68mhIVB6k7KbXpiJItWjmW0YKW51vVLi PPosi6cP8QAp3PXzCFsBwncY0BknZrnJEjNmB2DvZKy7AerQ3mMIm//2ZRUGyTyT bn/LvfPJRJgA7e2sqqZPhqCc86xASWYaYRs4Ir1u5VZFgSZG+9QZbK3D/+C1UrLO rRmHX2jVpGvLQdZpHtXtK7xNODIY2HLrcMWZ5KteEmf7uDaewb4Wxftkero= -----END CERTIFICATE-----Generated at Sat Jun 14 06:53:00 2025 by rpki-client