$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa File: f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa (raw, json) Hash identifier: E04TOCEjTMRj8DOT+sz5J/PlCePdBc291/MfrATTj7k= Subject key identifier: B6:B8:2E:06:89:88:22:F5:0B:14:A5:25:DD:46:66:5C:CA:CF:18:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A19EDE70E3B90572D50AE185EB99F1A5F8BA63C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa Signing time: Fri 13 Jun 2025 00:10:24 +0000 ROA not before: Fri 13 Jun 2025 00:10:24 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:19:ed:e7:0e:3b:90:57:2d:50:ae:18:5e:b9:9f:1a:5f:8b:a6:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:10:24 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=45a03988b5d5c0b0b90af0bc4647eb7e066c0ff93e0eaa75a8c0b4d6be736dab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:0e:2d:33:8f:69:45:c0:30:ab:2b:da:de: 92:48:54:cd:8c:4b:98:bb:82:a7:d5:be:f7:68:2b: 65:82:b7:fc:c7:68:f1:f0:87:6e:fb:0b:48:4a:72: 6a:37:0b:33:88:f4:e5:01:51:6e:23:61:c1:9a:ca: b3:83:49:6f:05:83:11:04:ba:25:94:e2:c1:f1:24: 18:de:8c:55:c6:46:e4:05:b1:d2:d1:e9:23:be:e9: 13:49:8d:91:20:77:6f:2d:f6:2f:77:c9:e9:ac:53: 51:be:71:41:69:34:ac:11:7b:dd:ab:d3:43:78:9a: ef:00:81:97:7c:5d:83:ae:07:1b:a0:dc:db:4f:fb: 54:47:28:b6:7a:65:8c:ab:2a:19:b2:b8:06:0c:37: 77:17:95:c6:b2:00:59:bc:94:5c:82:06:6a:c7:d1: 6c:22:30:07:fe:b1:70:04:6a:f9:d8:17:d9:0d:6b: 61:51:33:3b:e3:2b:ba:61:19:a1:7c:f5:96:82:80: 6a:61:db:f3:64:24:d9:e7:f1:11:e7:4e:3f:fe:c2: d9:40:63:87:31:1f:ff:2e:04:9b:71:ae:13:aa:ac: 24:bf:29:ce:c8:84:5a:dd:11:79:f8:c1:b5:ff:12: 86:f8:ee:16:b1:a3:6b:60:a9:9e:25:07:bf:62:e2: ff:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B8:2E:06:89:88:22:F5:0B:14:A5:25:DD:46:66:5C:CA:CF:18:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.136.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:b7:a1:6b:54:5f:13:3d:15:c1:43:cf:75:68:af:76:7e:8e: 09:f3:5d:b2:03:77:27:60:5f:1a:59:05:73:b5:24:2c:b2:21: dc:21:34:56:d4:85:3e:08:cc:0e:b2:de:21:42:f8:6f:e4:68: 9a:a2:63:47:e5:4d:b1:8f:1a:86:67:55:02:ce:60:91:14:65: fe:93:78:b1:79:b0:aa:da:4b:3d:a2:98:ac:f1:3b:e6:43:50: 9f:f4:df:78:48:47:79:e0:07:09:77:b2:bc:28:67:23:d0:d9: 77:44:d7:e1:3a:ee:0e:4d:25:ad:fe:53:78:8a:a4:63:de:23: 26:56:32:0c:70:1d:c1:5b:79:ea:0f:d4:d1:ad:2e:39:14:f1: 75:b1:e2:0a:8b:ea:60:33:e2:6e:bb:1b:ee:0e:b6:b6:57:f3: 98:b4:fc:17:6b:f1:3d:e7:8e:5b:3d:7f:f6:bc:03:2a:06:bc: e4:07:a3:2e:80:da:17:04:a9:a0:b8:02:71:33:08:9d:a3:c3: 96:95:e6:71:a2:ee:45:ae:3d:3d:cf:e4:3a:d3:dc:42:66:69: 8d:ea:4b:f9:b1:e6:e0:3a:ab:c7:59:50:a2:6c:2a:45:f3:db: e1:2e:17:ea:4b:23:8c:3a:08:15:17:92:fd:fd:6d:b9:b2:23: d3:dc:1a:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUehnt5w47kFctUK4YXrmfGl+LpjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAxMDI0WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWEwMzk4OGI1ZDVjMGIwYjkwYWYwYmM0NjQ3ZWI3ZTA2 NmMwZmY5M2UwZWFhNzVhOGMwYjRkNmJlNzM2ZGFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbBQ4tM49pRcAwqyva3pJIVM2MS5i7gqfVvvdoK2WCt/zH aPHwh277C0hKcmo3CzOI9OUBUW4jYcGayrODSW8FgxEEuiWU4sHxJBjejFXGRuQF sdLR6SO+6RNJjZEgd28t9i93yemsU1G+cUFpNKwRe92r00N4mu8AgZd8XYOuBxug 3NtP+1RHKLZ6ZYyrKhmyuAYMN3cXlcayAFm8lFyCBmrH0WwiMAf+sXAEavnYF9kN a2FRMzvjK7phGaF89ZaCgGph2/NkJNnn8RHnTj/+wtlAY4cxH/8uBJtxrhOqrCS/ Kc7IhFrdEXn4wbX/Eob47haxo2tgqZ4lB79i4v/DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtrguBomIIvULFKUl3UZmXMrPGEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwYTA4YjgzLWQ1YzEtNDMxMy1hYWFlLWIzZjM5MGFhODE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFIgwDQYJKoZIhvcNAQELBQADggEBAG63oWtUXxM9FcFDz3Vor3Z+jgnz XbIDdydgXxpZBXO1JCyyIdwhNFbUhT4IzA6y3iFC+G/kaJqiY0flTbGPGoZnVQLO YJEUZf6TeLF5sKraSz2imKzxO+ZDUJ/033hIR3ngBwl3srwoZyPQ2XdE1+E67g5N Ja3+U3iKpGPeIyZWMgxwHcFbeeoP1NGtLjkU8XWx4gqL6mAz4m67G+4OtrZX85i0 /Bdr8T3njls9f/a8AyoGvOQHoy6A2hcEqaC4AnEzCJ2jw5aV5nGi7kWuPT3P5DrT 3EJmaY3qS/mx5uA6q8dZUKJsKkXz2+EuF+pLI4w6CBUXkv39bbmyI9PcGoc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:37:23 2025 by rpki-client