$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa File: 09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa (raw, json) Hash identifier: O4OUL8xxQUGhibTQCo3kaWPBeyfxjEnMv+jkwiGrCug= Subject key identifier: 27:CF:96:7F:D7:DF:04:20:C6:53:5E:CE:DC:26:ED:AE:2A:E7:A5:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E90979F2B8F88DFEE4B306D481DFC96A0A5BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa Signing time: Fri 30 May 2025 00:40:29 +0000 ROA not before: Fri 30 May 2025 00:40:29 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:90:97:9f:2b:8f:88:df:ee:4b:30:6d:48:1d:fc:96:a0:a5:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:40:29 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=c15c7ac50b09297058da491fdb04c94bc2ea2b3d4332e49793d900d7775ad7fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:51:a9:31:f9:05:4a:0f:ad:2c:02:6e:e8:36: 2d:b0:6f:f1:fc:41:bc:e8:02:8f:2a:ad:02:85:42: 86:42:1a:f0:34:ba:20:18:6f:15:8c:3d:ae:72:5b: ca:53:7d:63:4a:a6:03:31:e5:5b:c8:e1:cb:5f:3a: 48:c9:ec:ba:3a:33:73:fa:f6:9c:f1:aa:31:4a:49: 15:83:39:05:80:8b:0d:94:52:86:95:05:07:53:0e: d3:91:a0:eb:03:ae:16:0c:30:89:f1:27:c2:fd:20: 94:10:b7:08:c6:00:4c:9b:59:a9:31:41:31:77:ef: 81:b5:a9:63:f9:69:2f:c3:23:9e:b2:3c:b2:22:5e: a3:b0:12:7a:aa:05:7d:8e:aa:c0:86:5b:e5:42:96: 9d:e2:ec:e4:8e:68:0a:78:9c:e2:25:e5:08:6c:91: 8e:65:d9:25:7c:e7:5c:db:77:ea:b4:48:3b:8c:eb: fa:4c:9b:77:9f:86:7b:05:5a:10:39:09:25:8d:c4: 17:87:b1:33:4f:dd:3d:7d:6c:c1:22:97:23:0c:6c: a6:84:72:c2:68:1e:d7:ed:e0:a7:59:f6:6e:06:74: bb:ce:6b:b7:5e:b1:49:e1:12:58:51:fa:c8:15:aa: 51:69:cc:9b:0b:bd:90:2f:89:a5:78:2b:e1:1a:9e: ca:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CF:96:7F:D7:DF:04:20:C6:53:5E:CE:DC:26:ED:AE:2A:E7:A5:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.12.0/22 Signature Algorithm: sha256WithRSAEncryption b9:27:d1:55:0e:e5:13:5f:0f:48:6c:f3:91:43:fb:05:e1:a5: 28:a4:f6:63:cc:d1:33:f0:87:1d:22:73:d3:c8:ac:9c:4e:2f: d3:dd:d5:8e:31:cf:2e:c6:ae:d0:56:ed:19:c0:e8:20:0f:c0: 1e:19:1b:b9:58:c5:40:37:3f:aa:ed:d2:88:74:a5:93:00:b7: ef:8e:76:29:d7:2f:70:01:b4:f5:bc:c6:76:a4:54:ef:e9:65: e0:96:d5:bf:0e:5f:99:ee:d6:bc:71:cd:b8:ed:88:ae:4e:0c: 1b:76:df:5e:85:fa:1f:eb:59:69:a6:5d:11:04:f2:a6:ca:6a: 40:6a:5e:42:35:3d:6c:de:05:18:04:31:03:da:26:8a:5d:b5: 49:42:4e:2c:38:35:54:e9:1b:7b:9e:2f:aa:4b:a7:79:24:4a: 70:03:04:32:3f:24:eb:7d:d5:ee:eb:6b:96:0c:3c:9d:12:b9: 83:9b:bd:8f:91:3b:d5:68:ee:0c:12:ee:c2:35:3c:4f:1d:ea: 2b:98:c0:1b:a0:d1:22:73:c5:ba:fa:8a:80:fa:0a:51:ed:02: 8a:ae:c3:be:1c:f1:93:99:f9:8f:0f:6e:da:55:4a:2b:17:56: 08:f0:01:d1:25:2f:fa:ee:0a:2f:15:db:c2:6b:45:c5:4e:1e: 9f:1b:d1:7a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITPpCXnyuPiN/uSzBtSB38lqCluzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA1MzAwMDQwMjlaFw0yNTA3MDQyMzU5NTla MHoxSTBHBgNVBAUTQGMxNWM3YWM1MGIwOTI5NzA1OGRhNDkxZmRiMDRjOTRiYzJl YTJiM2Q0MzMyZTQ5NzkzZDkwMGQ3Nzc1YWQ3ZmQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJJRqTH5BUoPrSwCbug2LbBv8fxBvOgCjyqtAoVChkIa8DS6 IBhvFYw9rnJbylN9Y0qmAzHlW8jhy186SMnsujozc/r2nPGqMUpJFYM5BYCLDZRS hpUFB1MO05Gg6wOuFgwwifEnwv0glBC3CMYATJtZqTFBMXfvgbWpY/lpL8MjnrI8 siJeo7ASeqoFfY6qwIZb5UKWneLs5I5oCnic4iXlCGyRjmXZJXznXNt36rRIO4zr +kybd5+GewVaEDkJJY3EF4exM0/dPX1swSKXIwxspoRywmge1+3gp1n2bgZ0u85r t16xSeESWFH6yBWqUWnMmwu9kC+JpXgr4Rqeyh8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQnz5Z/198EIMZTXs7cJu2uKuelADAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMDllZDYwOGUtZDA3Yy00Y2YyLTkwYjItZDRjNzM3MzNhOWYwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmAADDANBgkqhkiG9w0BAQsFAAOCAQEAuSfRVQ7lE18PSGzzkUP7BeGlKKT2 Y8zRM/CHHSJz08isnE4v093VjjHPLsau0FbtGcDoIA/AHhkbuVjFQDc/qu3SiHSl kwC37452KdcvcAG09bzGdqRU7+ll4JbVvw5fme7WvHHNuO2Irk4MG3bfXoX6H+tZ aaZdEQTypspqQGpeQjU9bN4FGAQxA9omil21SUJOLDg1VOkbe54vqkuneSRKcAME Mj8k633V7utrlgw8nRK5g5u9j5E71WjuDBLuwjU8Tx3qK5jAG6DRInPFuvqKgPoK Ue0Ciq7Dvhzxk5n5jw9u2lVKKxdWCPAB0SUv+u4KLxXbwmtFxU4enxvReg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:25:59 2025 by rpki-client