$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa File: 195f43e5-9baf-4f50-bcbb-65039707f56b.roa (raw, json) Hash identifier: Bxpa6RizQP1fAG4pEYVzLr8Mq67gCgXV09dOGRIDm1w= Subject key identifier: 7A:D8:1A:08:51:AD:B1:F9:8E:D2:A1:27:86:49:04:FF:56:1F:E6:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48C21D1ACC2418681AE77226B764C0E637C229E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa Signing time: Fri 23 May 2025 00:11:32 +0000 ROA not before: Fri 23 May 2025 00:11:32 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c2:1d:1a:cc:24:18:68:1a:e7:72:26:b7:64:c0:e6:37:c2:29:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:11:32 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=04f3f4969f554eae9984045b1c38d634b55a45e15d1c38c4a48a4f73b695313e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9a:8b:9c:69:2e:85:1a:40:94:9c:26:f8:6b: cd:a6:21:e1:3f:77:84:5a:9d:db:46:80:03:5e:a1: 5e:0f:c8:03:16:dc:a7:76:37:2b:7a:fe:4d:44:ed: 4b:a3:89:92:f2:73:c4:88:76:b0:1e:3d:58:e9:23: 6b:cf:15:9d:bb:02:ef:58:fc:b4:1f:54:0c:14:23: 3c:a1:46:ae:7b:f7:c3:af:5c:e8:09:11:3c:7f:bd: bf:3d:ee:5a:b9:b8:ec:f5:c1:bf:fb:98:b2:8e:63: b1:67:a9:f0:a8:4e:b2:ba:f0:14:84:3b:a9:94:9e: 9b:5b:a4:6a:8f:7b:51:d1:ee:5b:66:45:fd:8a:3d: 50:bd:0f:8c:78:14:9b:a6:64:7f:ba:03:db:da:52: d2:b7:60:aa:7e:2f:c0:25:3a:cd:76:70:60:26:63: a6:6d:c8:b6:b6:16:88:fb:a3:fb:9f:de:19:16:2b: ca:5c:ba:b5:51:b2:29:38:ba:eb:d8:06:17:6e:8c: 6d:28:6d:25:ff:ec:49:cd:46:05:d8:66:d4:aa:9c: 14:15:23:60:3d:7e:bf:e3:e6:01:43:4a:8c:d9:37: c6:7b:7f:93:a8:92:3b:6b:c6:c0:a4:32:49:3a:a1: 18:6d:62:40:93:fb:84:26:18:02:b8:0f:63:87:f9: 70:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D8:1A:08:51:AD:B1:F9:8E:D2:A1:27:86:49:04:FF:56:1F:E6:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.128.0/18 Signature Algorithm: sha256WithRSAEncryption 71:90:6f:1d:d3:d7:1e:da:e2:df:7a:59:f9:97:4d:b8:bf:46: 74:56:0f:83:da:31:bf:6b:92:ba:08:3d:07:a1:d3:68:10:c0: c1:d6:5d:ac:69:f9:ee:ea:f1:6a:af:64:2b:ba:53:6f:a9:0a: a0:bc:8f:c9:61:13:68:b2:97:2d:6b:03:99:a1:6b:15:95:69: b7:0c:65:c1:57:80:a0:95:c5:3c:98:ee:e5:9a:2a:ea:d9:50: d2:c7:31:d4:36:75:d9:4a:3f:10:ef:fb:45:1a:6e:b2:d5:b2: 3c:94:69:4a:53:c0:52:85:24:26:d2:ca:88:52:2b:8e:53:0a: 21:12:bb:66:a4:4a:86:ac:ad:d3:11:2c:2b:ba:b9:f1:88:3d: 29:2d:a3:e8:d5:11:1c:08:c7:4b:96:4c:98:4f:e7:c1:73:4d: aa:e0:ab:a8:87:c9:58:9f:55:6d:dd:37:7b:58:ca:40:98:01: 6b:b7:8f:33:31:66:6d:77:88:c6:5f:6b:a7:c5:69:97:55:cb: 30:5b:70:1e:83:70:64:7f:f1:94:66:80:b6:58:52:6b:e7:72: c4:93:7e:78:87:2b:1f:fd:1c:10:e9:7d:4e:a4:8d:25:33:78: 53:ad:95:0b:22:60:ce:de:57:4f:b6:e1:53:c6:a9:ab:99:24: 35:42:74:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSMIdGswkGGga53Imt2TA5jfCKeEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAxMTMyWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGYzZjQ5NjlmNTU0ZWFlOTk4NDA0NWIxYzM4ZDYzNGI1 NWE0NWUxNWQxYzM4YzRhNDhhNGY3M2I2OTUzMTNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjmoucaS6FGkCUnCb4a82mIeE/d4RandtGgANeoV4PyAMW 3Kd2Nyt6/k1E7UujiZLyc8SIdrAePVjpI2vPFZ27Au9Y/LQfVAwUIzyhRq5798Ov XOgJETx/vb897lq5uOz1wb/7mLKOY7FnqfCoTrK68BSEO6mUnptbpGqPe1HR7ltm Rf2KPVC9D4x4FJumZH+6A9vaUtK3YKp+L8AlOs12cGAmY6ZtyLa2Foj7o/uf3hkW K8pcurVRsik4uuvYBhdujG0obSX/7EnNRgXYZtSqnBQVI2A9fr/j5gFDSozZN8Z7 f5OokjtrxsCkMkk6oRhtYkCT+4QmGAK4D2OH+XDhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUetgaCFGtsfmO0qEnhkkE/1Yf5gQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NWY0M2U1LTliYWYtNGY1MC1iY2JiLTY1MDM5NzA3ZjU2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5IAwDQYJKoZIhvcNAQELBQADggEBAHGQbx3T1x7a4t96WfmXTbi/RnRW D4PaMb9rkroIPQeh02gQwMHWXaxp+e7q8WqvZCu6U2+pCqC8j8lhE2iyly1rA5mh axWVabcMZcFXgKCVxTyY7uWaKurZUNLHMdQ2ddlKPxDv+0UabrLVsjyUaUpTwFKF JCbSyohSK45TCiESu2akSoasrdMRLCu6ufGIPSkto+jVERwIx0uWTJhP58FzTarg q6iHyVifVW3dN3tYykCYAWu3jzMxZm13iMZfa6fFaZdVyzBbcB6DcGR/8ZRmgLZY UmvncsSTfniHKx/9HBDpfU6kjSUzeFOtlQsiYM7eV0+24VPGqauZJDVCdMY= -----END CERTIFICATE-----Generated at Sun Jun 1 05:12:36 2025 by rpki-client