$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa File: 598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa (raw, json) Hash identifier: RteqdgdbVHtVPxrzZmvQ7NSFN8ypfaQLHnLwsjtQC/0= Subject key identifier: FE:F2:F5:CE:92:88:D0:B1:DD:79:44:25:67:04:75:D8:E0:3D:E8:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65B6FDA778872455357E64986BC13A1CB4AA7195 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa Signing time: Tue 20 May 2025 00:50:20 +0000 ROA not before: Tue 20 May 2025 00:50:20 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b6:fd:a7:78:87:24:55:35:7e:64:98:6b:c1:3a:1c:b4:aa:71:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:50:20 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=0e79487acb76630e305ff73b59d133f8a48b9ae209f983e14702a657606bf741, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:8d:25:1b:4c:20:a9:6e:0e:f7:da:53:73: 5e:be:79:95:9c:62:d8:45:e7:b4:e4:96:64:40:96: 81:c8:bf:55:99:55:90:f2:c1:5c:ad:91:63:48:4e: 2c:5e:59:21:94:4b:26:bf:21:b4:63:29:26:f7:d6: 6b:31:4b:ae:7c:9e:8d:f2:84:3a:2d:34:77:ae:69: 2d:d4:47:d7:91:7a:45:98:8d:42:03:75:04:70:eb: b6:9f:9c:df:8d:88:73:50:15:65:5e:aa:85:6d:25: f7:50:3e:61:8f:db:fb:d2:39:16:a0:3f:1d:c9:2e: cd:fc:eb:f7:68:3f:b0:27:2e:1e:bc:3c:42:c7:e2: be:ed:66:ab:eb:ed:fd:d9:c8:7f:70:0c:dc:c1:21: 14:28:66:b0:04:6d:8f:d1:ec:80:44:04:d3:88:b0: 7c:f4:e0:af:47:1d:20:7d:79:db:1e:98:22:31:d0: 6e:8b:7e:43:1e:b8:b2:3a:80:31:63:fd:be:91:de: db:3a:eb:ca:56:6f:ea:46:4e:b8:7d:94:8d:8b:d8: 3c:97:47:69:55:7b:59:9d:6c:c2:b3:03:19:39:5e: 8f:d3:eb:8d:14:06:a9:8b:e9:10:16:a3:d2:c5:85: b5:db:de:96:bd:b0:12:1e:9a:3a:a7:d7:8a:c5:e9: ce:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F2:F5:CE:92:88:D0:B1:DD:79:44:25:67:04:75:D8:E0:3D:E8:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/598d5eb7-baca-4c9c-b70b-059d256dd4ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.70.0/24 Signature Algorithm: sha256WithRSAEncryption 21:2d:ed:b8:10:4c:49:bc:af:d2:26:21:52:41:97:01:0a:24: 23:4c:93:58:de:ab:ab:62:84:0f:5b:7c:d6:e2:ee:6d:09:58: d0:44:f4:af:39:b1:e0:73:7c:5d:ae:a8:ba:69:2d:a2:f7:49: 2b:e8:bf:9d:b5:c0:31:58:c0:33:9a:29:6d:15:b5:fb:0f:2d: 58:a1:7f:80:d7:35:4d:b6:96:72:cc:ed:8c:5a:36:9f:05:4b: 65:69:e1:cd:4d:4a:68:71:10:11:c9:a2:4b:e4:87:ed:59:ba: 36:0d:38:a2:d7:d1:c7:76:a7:39:c2:0c:bd:97:44:e3:29:f6: c2:bd:06:8a:5c:7f:39:21:ec:71:2e:bc:4c:52:0a:85:c6:01: 5a:e8:c5:b0:a9:4a:cd:15:a5:28:ac:70:70:4c:f2:f3:71:6a: dc:d8:43:5e:1b:6e:53:89:17:45:4b:ba:8a:3e:ed:53:05:2b: 8e:a9:9e:9f:00:02:41:df:b4:5a:52:5c:70:75:32:f3:d6:2a: 43:01:4c:65:ea:98:80:e5:0e:de:01:33:d8:1a:e5:fd:cf:69: 3e:de:d9:34:b0:9b:e3:4c:39:f4:32:c1:d4:fc:21:ab:21:a6: 15:28:e9:f8:19:7d:92:5e:b9:66:77:88:64:22:f6:22:b3:86: 41:dd:7a:7d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZbb9p3iHJFU1fmSYa8E6HLSqcZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA1MDIwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTc5NDg3YWNiNzY2MzBlMzA1ZmY3M2I1OWQxMzNmOGE0 OGI5YWUyMDlmOTgzZTE0NzAyYTY1NzYwNmJmNzQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP240lG0wgqW4O99pTc16+eZWcYthF57TklmRAloHIv1WZ VZDywVytkWNITixeWSGUSya/IbRjKSb31msxS658no3yhDotNHeuaS3UR9eRekWY jUIDdQRw67afnN+NiHNQFWVeqoVtJfdQPmGP2/vSORagPx3JLs386/doP7AnLh68 PELH4r7tZqvr7f3ZyH9wDNzBIRQoZrAEbY/R7IBEBNOIsHz04K9HHSB9edsemCIx 0G6LfkMeuLI6gDFj/b6R3ts668pWb+pGTrh9lI2L2DyXR2lVe1mdbMKzAxk5Xo/T 640UBqmL6RAWo9LFhbXb3pa9sBIemjqn14rF6c7rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/vL1zpKI0LHdeUQlZwR12OA96NkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OGQ1ZWI3LWJhY2EtNGM5Yy1iNzBiLTA1OWQyNTZkZDRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUYwDQYJKoZIhvcNAQELBQADggEBACEt7bgQTEm8r9ImIVJBlwEKJCNM k1jeq6tihA9bfNbi7m0JWNBE9K85seBzfF2uqLppLaL3SSvov521wDFYwDOaKW0V tfsPLVihf4DXNU22lnLM7YxaNp8FS2Vp4c1NSmhxEBHJokvkh+1ZujYNOKLX0cd2 pznCDL2XROMp9sK9Bopcfzkh7HEuvExSCoXGAVroxbCpSs0VpSiscHBM8vNxatzY Q14bblOJF0VLuoo+7VMFK46pnp8AAkHftFpSXHB1MvPWKkMBTGXqmIDlDt4BM9ga 5f3PaT7e2TSwm+NMOfQywdT8IashphUo6fgZfZJeuWZ3iGQi9iKzhkHden0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:51:32 2025 by rpki-client