$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa File: 0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa (raw, json) Hash identifier: fVVwsZob1Rpg7T/SA/rB7EvzB1ICuqSKnpdp9tn3/l0= Subject key identifier: D2:3B:69:F7:78:5B:DE:44:29:CD:36:01:83:E3:0B:E5:52:5E:B9:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5330F56A8F482EF104702F3CAF89EA496AA80F8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa Signing time: Tue 20 May 2025 00:22:06 +0000 ROA not before: Tue 20 May 2025 00:22:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:30:f5:6a:8f:48:2e:f1:04:70:2f:3c:af:89:ea:49:6a:a8:0f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:22:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=35e6eb1b42443df03fe151352110c0c3a8fc7214d46433b7d16081e021df15ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ad:e0:60:e0:d3:15:04:3b:08:05:f4:93:0d: 13:bb:0c:da:b4:47:fa:03:24:57:ac:2b:41:11:4b: 4a:9f:f5:52:c5:14:56:23:0f:c2:41:8d:50:0a:8f: 65:67:66:73:d4:72:76:15:a0:f1:d2:39:7d:c7:88: 97:d5:00:c4:bf:9d:79:0c:88:c6:d9:ef:02:72:2a: 63:ce:db:9e:ff:a4:ac:44:eb:89:a1:f7:3b:df:5f: 18:9e:bf:5d:43:61:0a:e8:3e:f8:7a:ac:77:36:24: 90:8f:b6:56:b6:de:02:55:4b:52:f6:89:c1:31:e9: d3:ae:34:09:53:61:29:98:99:58:ac:be:f1:59:3f: 6e:90:44:4f:b4:d7:bc:0c:e8:2a:52:c0:65:e4:bc: 5b:88:20:4c:fa:bf:de:93:59:5f:7d:3f:fc:b5:88: 70:69:a2:2b:01:d1:94:b0:ee:ab:0a:8c:79:7d:0d: 10:be:a8:7e:6a:59:bc:d8:e1:a1:24:13:c0:2c:57: 78:67:71:bb:9e:81:a4:96:8f:5c:53:e1:41:b1:20: 34:b0:c1:9e:ae:35:ef:95:74:88:11:9e:45:d7:7c: 3d:99:b2:f3:af:64:17:c8:90:2f:eb:35:cb:25:ff: 61:a3:3c:d6:42:54:0b:b2:84:53:b5:83:e5:17:93: f1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:3B:69:F7:78:5B:DE:44:29:CD:36:01:83:E3:0B:E5:52:5E:B9:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.64.0/21 Signature Algorithm: sha256WithRSAEncryption 08:c2:fb:7f:ca:3b:70:07:cc:eb:06:87:d2:34:63:64:41:12: ae:6a:6f:0a:fc:21:9f:0f:41:c2:73:73:df:e1:8d:c1:eb:b8: 32:13:2c:74:9f:1e:5f:dd:7a:07:a0:be:9d:87:0b:20:fa:5b: 57:a5:60:4e:25:eb:8c:64:f2:b3:36:c2:6e:1b:cd:a0:2c:cc: c8:5b:df:b9:28:8f:01:21:28:a9:d3:15:74:8e:d9:ed:58:62: 2e:96:a5:b1:2d:69:53:67:c4:9f:fc:eb:de:e2:53:3c:5b:a4: 1a:6d:b4:c6:33:d8:53:ec:a3:81:d2:3f:ea:69:ad:a6:97:29: df:12:94:b5:ee:74:32:36:70:ff:65:3e:cc:7b:06:34:51:ee: 4a:7f:6c:09:c9:b6:c1:29:9e:bb:47:70:37:16:6d:ac:97:4c: 1e:e8:ff:1f:47:d7:0d:61:21:9f:9a:c7:4d:15:54:f8:9d:40: 6f:1e:0e:1c:96:c0:93:06:aa:c3:27:a4:39:a7:d1:2e:3e:03: 5a:d3:8d:c9:2b:9b:3f:77:71:9a:89:23:10:18:5b:dc:ec:f4: 34:9d:5e:d2:dd:fa:18:df:c8:53:54:c4:6b:b7:16:ea:e5:02: e3:82:65:b7:60:59:70:fa:07:62:5b:e4:fe:97:65:8a:c7:a1: dc:02:20:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUzD1ao9ILvEEcC88r4nqSWqoD44wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAyMjA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWU2ZWIxYjQyNDQzZGYwM2ZlMTUxMzUyMTEwYzBjM2E4 ZmM3MjE0ZDQ2NDMzYjdkMTYwODFlMDIxZGYxNWFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTreBg4NMVBDsIBfSTDRO7DNq0R/oDJFesK0ERS0qf9VLF FFYjD8JBjVAKj2VnZnPUcnYVoPHSOX3HiJfVAMS/nXkMiMbZ7wJyKmPO257/pKxE 64mh9zvfXxiev11DYQroPvh6rHc2JJCPtla23gJVS1L2icEx6dOuNAlTYSmYmVis vvFZP26QRE+017wM6CpSwGXkvFuIIEz6v96TWV99P/y1iHBpoisB0ZSw7qsKjHl9 DRC+qH5qWbzY4aEkE8AsV3hncbuegaSWj1xT4UGxIDSwwZ6uNe+VdIgRnkXXfD2Z svOvZBfIkC/rNcsl/2GjPNZCVAuyhFO1g+UXk/H9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0jtp93hb3kQpzTYBg+ML5VJeuSMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmNTU1N2FjLWZmYmEtNDQzNS05ZjliLWYzMWY1ZjVhNDIwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXF0AwDQYJKoZIhvcNAQELBQADggEBAAjC+3/KO3AHzOsGh9I0Y2RBEq5q bwr8IZ8PQcJzc9/hjcHruDITLHSfHl/degegvp2HCyD6W1elYE4l64xk8rM2wm4b zaAszMhb37kojwEhKKnTFXSO2e1YYi6WpbEtaVNnxJ/8697iUzxbpBpttMYz2FPs o4HSP+ppraaXKd8SlLXudDI2cP9lPsx7BjRR7kp/bAnJtsEpnrtHcDcWbayXTB7o /x9H1w1hIZ+ax00VVPidQG8eDhyWwJMGqsMnpDmn0S4+A1rTjckrmz93cZqJIxAY W9zs9DSdXtLd+hjfyFNUxGu3FurlAuOCZbdgWXD6B2Jb5P6XZYrHodwCICY= -----END CERTIFICATE-----Generated at Sun Jun 1 04:56:23 2025 by rpki-client