$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: tlR0RVubNijnuylcxWiPAze+mTuVroxq4udLwnGBzv4= Subject key identifier: F6:1A:D1:A0:16:2B:BF:C1:F2:5D:67:88:4B:DD:D3:B7:95:89:17:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 197007B7964F3FB47B36CEB9A25D5A9C5B49ED0C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Mon 23 Jun 2025 15:21:31 +0000 ROA not before: Mon 23 Jun 2025 15:21:31 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:70:07:b7:96:4f:3f:b4:7b:36:ce:b9:a2:5d:5a:9c:5b:49:ed:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:21:31 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=bd41e1292d6951cffdac6f8de6952f46e3eee1e2e39da74a5ef07dc6274ee929, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:df:66:6f:dd:96:a0:1e:fe:2b:4a:a9:2c:56: c0:47:36:22:ec:18:e9:9a:63:8a:48:9f:15:8a:6a: ae:52:1a:d2:17:78:d7:ad:8a:7f:6d:bf:d1:f1:04: f8:4c:60:64:f0:88:12:dd:d3:80:d5:95:26:84:83: 16:e2:70:01:94:19:da:83:f0:49:9a:73:d4:39:ec: 44:c8:5a:bf:cc:29:36:7a:4d:7f:8f:c1:f5:4e:f9: 16:22:d5:b3:41:3a:d8:cb:4e:18:75:2a:ed:ba:70: 49:65:8b:f5:3d:2b:87:c9:34:cb:32:6c:07:39:d8: 07:c2:db:2a:64:42:19:20:5e:75:c7:2c:65:cb:f2: de:49:b3:b3:35:ef:dd:00:48:07:b5:f1:c8:d2:fb: 32:9d:bb:28:4f:d5:28:f6:02:20:ef:15:7e:e8:46: d3:25:ee:23:a3:33:a6:1d:6b:06:40:de:f1:19:58: 02:e4:46:67:5f:56:d6:e2:21:8e:84:b2:28:21:e1: 7f:65:cb:74:4b:de:a2:0d:00:5e:67:9d:a6:a4:47: 4d:fa:d0:d8:2b:d2:69:6b:5d:6b:0c:6e:8b:05:91: 80:df:a1:03:f4:30:ed:cf:06:6a:ed:c3:2e:06:c6: 80:58:ef:2e:37:f6:c4:47:ec:72:7a:14:09:73:29: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:1A:D1:A0:16:2B:BF:C1:F2:5D:67:88:4B:DD:D3:B7:95:89:17:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption 83:bd:89:33:29:31:34:12:84:25:b7:9c:c0:f9:28:ae:88:9c: c3:7e:96:98:d2:3f:04:dd:fa:21:f7:72:f4:1c:14:bf:3e:8b: 08:c0:c1:9b:62:d1:fd:c7:2b:33:21:0d:35:cb:27:09:b3:f9: e7:15:94:22:91:b3:2d:bf:a7:f0:28:12:a8:24:7a:b4:58:e9: 64:8b:ae:e4:5e:a5:e4:65:57:02:2f:56:e3:11:e0:2c:6c:a5: 2d:d5:c8:85:ba:1a:ec:76:87:d0:ff:56:43:50:79:a5:6c:be: 50:73:e7:e9:77:85:b6:5b:8e:79:43:71:d7:3d:99:2a:6d:51: 5a:bf:fe:d2:56:a8:34:9d:f6:c3:49:1d:aa:6c:d9:6b:9d:bd: f5:c1:20:8f:44:ac:f1:3e:1f:4c:13:eb:3d:78:5c:d1:4f:41: 30:5c:bf:2f:f1:86:17:cd:4e:9a:15:30:95:39:60:9f:23:d1: 3d:30:49:7f:cf:3c:e6:a3:38:cc:c0:ea:5f:bd:ce:e5:50:e0: d5:a4:6e:e0:24:8c:4f:48:95:fa:1c:2f:99:00:eb:c9:14:44: 8b:c0:ba:09:97:4a:2b:6e:05:bf:05:52:06:5a:32:39:58:57: 27:47:d5:26:b7:07:f9:f9:26:f6:6b:18:69:06:8e:76:32:ca: 3f:05:fa:11 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGXAHt5ZPP7R7Ns65ol1anFtJ7QwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUyMTMxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDQxZTEyOTJkNjk1MWNmZmRhYzZmOGRlNjk1MmY0NmUz ZWVlMWUyZTM5ZGE3NGE1ZWYwN2RjNjI3NGVlOTI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx32Zv3ZagHv4rSqksVsBHNiLsGOmaY4pInxWKaq5SGtIX eNetin9tv9HxBPhMYGTwiBLd04DVlSaEgxbicAGUGdqD8Emac9Q57ETIWr/MKTZ6 TX+PwfVO+RYi1bNBOtjLThh1Ku26cElli/U9K4fJNMsybAc52AfC2ypkQhkgXnXH LGXL8t5Js7M1790ASAe18cjS+zKduyhP1Sj2AiDvFX7oRtMl7iOjM6YdawZA3vEZ WALkRmdfVtbiIY6Esigh4X9ly3RL3qINAF5nnaakR0360Ngr0mlrXWsMbosFkYDf oQP0MO3PBmrtwy4GxoBY7y439sRH7HJ6FAlzKbg5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9hrRoBYrv8HyXWeIS93Tt5WJFy4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEAg72JMykxNBKEJbecwPkoroicw36W mNI/BN36Ifdy9BwUvz6LCMDBm2LR/ccrMyENNcsnCbP55xWUIpGzLb+n8CgSqCR6 tFjpZIuu5F6l5GVXAi9W4xHgLGylLdXIhboa7HaH0P9WQ1B5pWy+UHPn6XeFtluO eUNx1z2ZKm1RWr/+0laoNJ32w0kdqmzZa5299cEgj0Ss8T4fTBPrPXhc0U9BMFy/ L/GGF81OmhUwlTlgnyPRPTBJf8885qM4zMDqX73O5VDg1aRu4CSMT0iV+hwvmQDr yRREi8C6CZdKK24FvwVSBloyOVhXJ0fVJrcH+fkm9msYaQaOdjLKPwX6EQ== -----END CERTIFICATE-----Generated at Mon Jun 30 20:31:20 2025 by rpki-client