$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa File: 28d33436-53d2-4ebd-bddc-4f8b317802ba.roa (raw, json) Hash identifier: 4XntxmSoEJiC52SkGo+ZUS4NdytyfIae70iRU9/+WmU= Subject key identifier: 21:A2:8F:3F:46:B0:B2:7A:DB:98:DE:F1:AC:E0:C8:EF:CD:07:A7:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FB9FED2EA6006EE75852E36BEBA130950D94A3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa Signing time: Tue 01 Jul 2025 00:12:06 +0000 ROA not before: Tue 01 Jul 2025 00:12:06 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.22.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b9:fe:d2:ea:60:06:ee:75:85:2e:36:be:ba:13:09:50:d9:4a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:12:06 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=3b80b5fc05a00940674b6763722e2c70bae379c59dc67d33b9d1eca14f115d78, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:9a:b3:11:b1:30:e6:ef:5f:64:76:f1:24: a2:ed:2d:bd:11:58:a9:df:fd:16:b0:b1:9f:0f:17: 08:bf:b7:f9:95:90:a8:28:a9:14:f5:86:bd:8c:ae: 78:4d:e3:9e:c4:f0:5f:29:23:5d:b8:e7:2e:a0:b4: 0d:6a:9b:5d:c3:7c:44:40:2b:3d:21:a8:53:1a:90: b9:c2:07:f3:38:7f:ba:29:bd:60:7f:c0:7d:4f:bd: a9:6d:23:8d:28:94:16:0b:db:af:68:02:35:38:56: 87:c5:3e:9c:24:d9:a5:00:81:f7:73:8b:09:3b:6f: a7:79:e9:99:14:8d:95:ff:41:61:80:e9:ef:22:54: 89:35:6a:f7:26:e9:1a:92:28:af:3c:8b:ee:13:51: ea:9d:8b:ef:c3:15:ab:fa:94:e7:e5:88:6d:88:ef: bf:13:65:a2:85:fd:b2:d0:74:4f:9b:1b:9d:96:83: e8:37:11:a4:a9:e3:34:ae:96:c9:27:d6:b7:53:dc: 33:d4:cd:c8:23:ae:a8:df:7d:ca:ba:dd:47:9d:46: 89:4d:ac:38:eb:3e:82:b3:ee:07:37:27:2c:4c:f1: 34:ab:3a:e0:24:27:97:17:68:c2:e8:e1:d3:2d:a5: 77:7f:31:a1:8d:a2:6e:72:89:c3:41:8b:38:ed:7d: 97:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A2:8F:3F:46:B0:B2:7A:DB:98:DE:F1:AC:E0:C8:EF:CD:07:A7:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.22.0.0/17 Signature Algorithm: sha256WithRSAEncryption 74:98:ed:11:4b:e8:09:82:e4:e3:54:69:ca:98:fd:f5:60:10: 3c:85:2e:7a:f2:f6:8e:f3:cb:fd:7b:f5:df:b2:3e:0e:81:81: f7:43:1d:b9:eb:8f:62:0d:05:a5:8c:72:ce:62:e0:31:90:37: b6:77:59:37:1a:88:54:3c:ba:0f:27:2b:c4:27:af:cf:8a:34: 33:10:b1:88:ca:8c:e8:ae:06:25:1a:48:bc:45:36:1d:47:50: 70:51:43:c8:de:6c:84:cc:3a:c4:01:5d:47:b3:dd:f5:55:af: 11:44:2f:50:59:8a:7c:2c:c3:3b:26:cc:2b:f1:02:eb:3e:9e: b7:6d:2c:03:af:85:9c:9e:71:c5:e2:a1:1a:02:63:0d:6f:71: 0d:09:89:de:72:ec:ce:2c:a8:64:71:2c:e6:43:41:23:16:db: e6:4a:f6:65:8f:f1:ac:1b:58:74:50:e3:4c:67:91:93:ec:f4: f3:0a:3d:0e:c2:80:50:cd:d8:60:e6:b6:0d:75:bd:30:1f:bb: c1:80:69:d0:0b:34:b4:e9:c9:d8:72:a0:96:c1:a3:3a:22:27: e5:6d:7a:4c:2e:29:9c:a5:81:42:bb:a4:c0:33:f0:25:d7:98: 12:73:77:fd:a6:c4:14:5a:63:8e:f4:5c:e1:b8:ee:12:b2:c7: 14:5e:fd:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH7n+0upgBu51hS42vroTCVDZSjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAxMjA2WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjgwYjVmYzA1YTAwOTQwNjc0YjY3NjM3MjJlMmM3MGJh ZTM3OWM1OWRjNjdkMzNiOWQxZWNhMTRmMTE1ZDc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8vJqzEbEw5u9fZHbxJKLtLb0RWKnf/RawsZ8PFwi/t/mV kKgoqRT1hr2MrnhN457E8F8pI1245y6gtA1qm13DfERAKz0hqFMakLnCB/M4f7op vWB/wH1PvaltI40olBYL269oAjU4VofFPpwk2aUAgfdziwk7b6d56ZkUjZX/QWGA 6e8iVIk1avcm6RqSKK88i+4TUeqdi+/DFav6lOfliG2I778TZaKF/bLQdE+bG52W g+g3EaSp4zSulskn1rdT3DPUzcgjrqjffcq63UedRolNrDjrPoKz7gc3JyxM8TSr OuAkJ5cXaMLo4dMtpXd/MaGNom5yicNBizjtfZdjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIaKPP0awsnrbmN7xrODI780Hp2QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4ZDMzNDM2LTUzZDItNGViZC1iZGRjLTRmOGIzMTc4MDJiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdFFgAwDQYJKoZIhvcNAQELBQADggEBAHSY7RFL6AmC5ONUacqY/fVgEDyF Lnry9o7zy/179d+yPg6BgfdDHbnrj2INBaWMcs5i4DGQN7Z3WTcaiFQ8ug8nK8Qn r8+KNDMQsYjKjOiuBiUaSLxFNh1HUHBRQ8jebITMOsQBXUez3fVVrxFEL1BZinws wzsmzCvxAus+nrdtLAOvhZyeccXioRoCYw1vcQ0Jid5y7M4sqGRxLOZDQSMW2+ZK 9mWP8awbWHRQ40xnkZPs9PMKPQ7CgFDN2GDmtg11vTAfu8GAadALNLTpydhyoJbB ozoiJ+VtekwuKZylgUK7pMAz8CXXmBJzd/2mxBRaY470XOG47hKyxxRe/Rw= -----END CERTIFICATE-----Generated at Tue Jul 22 04:31:21 2025 by rpki-client