$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/259b0750-ae62-42f7-84c0-e7c8b6acca96.roa File: 259b0750-ae62-42f7-84c0-e7c8b6acca96.roa (raw, json) Hash identifier: CGgZqegJsjuB58V1ugz2VrW1gMjUkLqnfRgqkCEebk4= Subject key identifier: 0B:F4:77:7F:D6:37:5D:64:86:9D:28:5D:C7:19:A6:A3:3E:AC:07:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2368DE39A428497B116AED345AC8B8C2A28A310C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/259b0750-ae62-42f7-84c0-e7c8b6acca96.roa Signing time: Mon 19 May 2025 16:40:29 +0000 ROA not before: Mon 19 May 2025 16:40:29 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.87.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:68:de:39:a4:28:49:7b:11:6a:ed:34:5a:c8:b8:c2:a2:8a:31:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:40:29 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=06ccd875246de6a1a0817fafecc8ab1295561824200958075ee2df715e697f6c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:ac:0d:fb:7d:b9:80:ae:7d:06:45:4c:c7: 8f:c4:a2:11:81:8f:0e:57:e4:0b:c8:00:c2:c9:51: aa:a6:b8:b4:e4:73:ff:76:50:d8:98:92:17:fb:17: 65:03:08:50:46:68:93:2a:c2:04:25:ee:1a:f2:17: b2:58:0f:4d:3c:ac:61:02:98:49:4b:7f:2e:aa:b0: ef:be:b4:4a:fc:7a:af:9b:30:50:60:df:c2:c6:92: 9a:4e:16:0f:46:7a:ea:c9:15:9d:55:2d:a0:c0:1d: e9:04:cf:ee:a8:bd:70:76:16:d3:62:24:66:e4:3c: 3e:6c:be:6f:7c:48:45:bf:13:6c:ab:44:ff:8c:63: bf:d3:f5:c6:5c:c9:7e:40:9a:67:59:f0:27:ae:6e: 72:82:ed:c8:f0:1b:8f:18:7b:39:61:45:93:3a:5d: ff:be:de:eb:62:6d:a4:81:46:cc:19:50:6b:db:29: 8d:d7:3f:61:eb:6c:d6:a8:b4:af:3b:99:64:28:05: 10:ff:73:20:1b:b0:1a:b6:2e:8f:68:85:27:60:36: 9e:8a:a4:73:a8:aa:12:dd:59:3f:fc:ab:a5:bb:29: 4d:36:38:1f:cc:3a:a6:bc:49:35:df:1b:ea:0c:f9: 88:78:ef:ee:50:88:4a:b0:83:fa:12:92:be:37:0a: 78:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F4:77:7F:D6:37:5D:64:86:9D:28:5D:C7:19:A6:A3:3E:AC:07:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/259b0750-ae62-42f7-84c0-e7c8b6acca96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.87.0.0/16 Signature Algorithm: sha256WithRSAEncryption a9:54:39:86:74:e7:c4:3c:49:49:bb:31:2c:8e:92:2b:54:42: 86:ed:a9:54:d4:aa:36:8d:bf:0b:b9:2a:35:0c:40:a1:29:df: 7f:ec:68:69:01:5f:60:85:54:60:3c:6b:35:f4:0f:67:a1:bb: 77:25:e0:7b:38:df:95:64:9d:a0:f6:67:93:a9:8f:d3:85:ef: 6d:a1:0d:42:9b:f9:fe:ad:7f:cb:ee:c9:e4:a4:fb:3e:e4:db: 20:11:d7:8b:8a:7f:cf:6d:2f:af:1b:1b:5f:b3:d5:59:7b:55: 17:93:62:cf:0b:81:ff:aa:75:ee:30:64:3b:86:bc:7b:06:f7: a7:b6:6f:38:b7:1f:12:9f:dd:ff:34:f7:6c:0c:7c:ac:ee:2b: f0:aa:49:63:8a:e4:a0:68:a1:56:a8:73:d0:93:b9:3d:b2:c9: 64:b4:99:d4:2a:fb:27:0e:79:23:47:2a:00:2b:ee:86:f9:e0: d7:25:e9:a8:eb:31:76:8d:23:ab:0f:b9:c0:ca:4f:c0:45:e5: b1:97:c4:00:ca:9f:ce:fd:94:95:32:c0:63:cc:2e:47:28:ad: 8d:09:36:73:50:f6:aa:ad:e0:da:bf:a9:ca:b7:70:ec:55:70: 0b:ba:44:38:44:06:02:7f:7c:41:3d:e1:5c:75:d3:e8:9c:c5: fc:c5:70:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI2jeOaQoSXsRau00Wsi4wqKKMQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTY0MDI5WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmNjZDg3NTI0NmRlNmExYTA4MTdmYWZlY2M4YWIxMjk1 NTYxODI0MjAwOTU4MDc1ZWUyZGY3MTVlNjk3ZjZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzA6wN+325gK59BkVMx4/EohGBjw5X5AvIAMLJUaqmuLTk c/92UNiYkhf7F2UDCFBGaJMqwgQl7hryF7JYD008rGECmElLfy6qsO++tEr8eq+b MFBg38LGkppOFg9GeurJFZ1VLaDAHekEz+6ovXB2FtNiJGbkPD5svm98SEW/E2yr RP+MY7/T9cZcyX5AmmdZ8CeubnKC7cjwG48YezlhRZM6Xf++3utibaSBRswZUGvb KY3XP2HrbNaotK87mWQoBRD/cyAbsBq2Lo9ohSdgNp6KpHOoqhLdWT/8q6W7KU02 OB/MOqa8STXfG+oM+Yh47+5QiEqwg/oSkr43Cnh7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC/R3f9Y3XWSGnShdxxmmoz6sB4MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1OWIwNzUwLWFlNjItNDJmNy04NGMwLWU3YzhiNmFjY2E5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCiVzANBgkqhkiG9w0BAQsFAAOCAQEAqVQ5hnTnxDxJSbsxLI6SK1RChu2p VNSqNo2/C7kqNQxAoSnff+xoaQFfYIVUYDxrNfQPZ6G7dyXgezjflWSdoPZnk6mP 04XvbaENQpv5/q1/y+7J5KT7PuTbIBHXi4p/z20vrxsbX7PVWXtVF5NizwuB/6p1 7jBkO4a8ewb3p7ZvOLcfEp/d/zT3bAx8rO4r8KpJY4rkoGihVqhz0JO5PbLJZLSZ 1Cr7Jw55I0cqACvuhvng1yXpqOsxdo0jqw+5wMpPwEXlsZfEAMqfzv2UlTLAY8wu RyitjQk2c1D2qq3g2r+pyrdw7FVwC7pEOEQGAn98QT3hXHXT6JzF/MVw/A== -----END CERTIFICATE-----Generated at Sun Jun 1 05:08:38 2025 by rpki-client