$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa File: 06bef077-f186-4620-b0e8-edae475c1fe6.roa (raw, json) Hash identifier: Gtp7TcldTBRR1483voTx99tYGhxkbpFaoCcTBcLZkXg= Subject key identifier: 17:10:4D:D9:46:E5:89:E8:88:CD:C9:01:B1:FA:B0:59:AC:17:B7:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AF3E993C97FFE0962CCDFC15CBEED19CC6A9A5E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa Signing time: Fri 30 May 2025 00:40:22 +0000 ROA not before: Fri 30 May 2025 00:40:22 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f3:e9:93:c9:7f:fe:09:62:cc:df:c1:5c:be:ed:19:cc:6a:9a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:40:22 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=20d0c865290cf43534a501b8064669f3e669dc136e9a20cc88c005173e360f3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:73:91:8c:e1:98:fe:87:63:f5:ad:77:de: cb:4a:6a:8d:d8:64:8a:f3:20:08:0a:00:65:d8:60: eb:77:0d:21:9d:8a:67:48:e9:9d:fb:d8:8e:15:d1: 06:d0:4f:68:27:50:66:05:10:40:96:ee:12:4f:ea: e3:0f:43:33:33:5d:4d:de:90:56:98:a0:5a:7f:1d: 00:fd:0f:53:c1:f6:6c:d0:06:a1:66:55:7b:4e:98: 27:53:28:e4:d7:ac:c6:4e:66:18:ea:18:44:16:5d: 66:1b:40:c8:21:c2:94:12:9a:b6:08:2f:98:06:d6: af:ec:95:7b:38:b2:e7:75:d0:85:2f:12:cc:16:77: ac:7c:07:a9:0f:01:ea:90:63:5e:14:32:85:91:53: 0e:b5:97:66:a0:0f:17:4f:d9:90:68:76:5d:c7:2d: 16:5b:dc:92:73:f6:23:e1:4b:ff:44:cb:c8:3f:81: a1:71:bb:b2:b3:52:ce:62:84:e1:0b:92:c0:66:af: ab:cc:b7:26:b1:7f:8b:c5:6c:00:7f:ec:79:91:ae: 4d:33:2c:00:24:c6:03:e6:ba:01:f1:4b:a1:09:c1: 33:f8:cf:33:3b:08:43:d2:57:6d:bf:9b:80:29:9b: 6a:1b:36:ab:c7:af:49:4c:e9:74:e9:0f:43:91:68: 6d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:10:4D:D9:46:E5:89:E8:88:CD:C9:01:B1:FA:B0:59:AC:17:B7:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06bef077-f186-4620-b0e8-edae475c1fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.131.0/24 Signature Algorithm: sha256WithRSAEncryption ad:11:9f:4e:bc:5a:01:a6:12:8a:50:40:bd:21:a4:df:04:d6: eb:82:f0:26:59:74:f5:95:a6:8d:57:b6:41:7b:05:38:6d:5d: 5d:a9:05:0f:a5:39:17:f6:9d:08:a9:e2:d2:25:f2:ed:9c:41: f9:d0:54:65:98:73:2b:99:ac:61:9c:00:80:2a:7d:fc:c5:76: dc:44:b5:49:27:f2:c1:9e:56:eb:30:b7:32:87:91:3e:3e:72: 4b:9f:d6:34:e6:ea:c9:98:fe:9d:db:f4:38:9d:0c:0c:92:85: 56:36:c6:b7:4e:ea:8e:80:13:15:33:5a:85:4e:87:4e:99:70: 8c:b2:a3:61:1b:6f:74:35:86:95:c5:be:67:b7:48:2b:02:22: 85:b2:0f:e4:bb:41:51:8c:f6:f5:d9:6a:07:0f:40:fe:4e:ed: d0:1b:2b:a3:8e:a4:2d:60:8d:79:2a:17:4f:ed:e9:ac:c9:bb: 20:ba:cd:ea:5b:4b:49:90:b6:93:ab:4d:5d:1d:6a:f5:69:da: 5b:af:6a:4c:e3:b6:e9:da:fd:e2:69:e7:8b:5e:2a:c5:4e:3e: 6f:5c:16:4e:1b:58:d2:19:77:5f:b5:7d:1c:07:9b:e8:e4:b9: 45:03:e2:cf:f4:de:45:8e:0d:d7:44:32:20:62:ca:e8:24:65: 3f:d5:5f:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUevPpk8l//glizN/BXL7tGcxqml4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MDIyWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGQwYzg2NTI5MGNmNDM1MzRhNTAxYjgwNjQ2NjlmM2U2 NjlkYzEzNmU5YTIwY2M4OGMwMDUxNzNlMzYwZjNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzsnORjOGY/odj9a133stKao3YZIrzIAgKAGXYYOt3DSGd imdI6Z372I4V0QbQT2gnUGYFEECW7hJP6uMPQzMzXU3ekFaYoFp/HQD9D1PB9mzQ BqFmVXtOmCdTKOTXrMZOZhjqGEQWXWYbQMghwpQSmrYIL5gG1q/slXs4sud10IUv EswWd6x8B6kPAeqQY14UMoWRUw61l2agDxdP2ZBodl3HLRZb3JJz9iPhS/9Ey8g/ gaFxu7KzUs5ihOELksBmr6vMtyaxf4vFbAB/7HmRrk0zLAAkxgPmugHxS6EJwTP4 zzM7CEPSV22/m4Apm2obNqvHr0lM6XTpD0ORaG3lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFxBN2UblieiIzckBsfqwWawXt7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2YmVmMDc3LWYxODYtNDYyMC1iMGU4LWVkYWU0NzVjMWZlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgAIMwDQYJKoZIhvcNAQELBQADggEBAK0Rn068WgGmEopQQL0hpN8E1uuC 8CZZdPWVpo1XtkF7BThtXV2pBQ+lORf2nQip4tIl8u2cQfnQVGWYcyuZrGGcAIAq ffzFdtxEtUkn8sGeVuswtzKHkT4+ckuf1jTm6smY/p3b9DidDAyShVY2xrdO6o6A ExUzWoVOh06ZcIyyo2Ebb3Q1hpXFvme3SCsCIoWyD+S7QVGM9vXZagcPQP5O7dAb K6OOpC1gjXkqF0/t6azJuyC6zepbS0mQtpOrTV0davVp2luvakzjtuna/eJp54te KsVOPm9cFk4bWNIZd1+1fRwHm+jkuUUD4s/03kWODddEMiBiyugkZT/VX04= -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:53 2025 by rpki-client