$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a4146e8-7346-411d-a38c-f6674165b447.roa File: 5a4146e8-7346-411d-a38c-f6674165b447.roa (raw, json) Hash identifier: /w52GQFEyVghkR7XmjWFPZn8Y7XAgQKqXEcyDz3GbnI= Subject key identifier: 14:8E:C1:DB:43:74:78:80:69:42:1A:71:A3:25:01:4C:72:2A:40:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C8C028EEFCF9CAA557EC934F847C4F44EFEF62F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a4146e8-7346-411d-a38c-f6674165b447.roa Signing time: Tue 20 May 2025 00:50:28 +0000 ROA not before: Tue 20 May 2025 00:50:28 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:8c:02:8e:ef:cf:9c:aa:55:7e:c9:34:f8:47:c4:f4:4e:fe:f6:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:50:28 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=681ffd33998be91bb898492c9996895f4478489e31462d41daf2dd54eca77afc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fc:ff:3b:0d:0d:7d:8b:d1:ea:e7:79:9b:2c: 94:dc:7d:49:91:6e:f9:9a:f9:58:50:9c:97:5f:83: a8:c4:1a:8a:dc:ef:07:59:24:10:c7:37:db:be:8c: 6c:0e:3f:12:e2:f7:2e:af:1c:b5:0e:a3:bd:98:51: 51:f7:5d:a0:bc:90:d5:f2:e3:1a:3a:2c:28:d5:0c: 99:42:51:cf:ad:cb:9c:67:a9:b9:b4:2d:1e:b8:4e: 7e:b5:13:f2:7f:15:da:01:c4:29:d2:a8:a5:84:21: c2:87:2c:2a:88:f8:02:9b:b9:68:30:ca:8e:40:64: eb:3f:8a:13:b7:92:cf:f5:a7:65:b9:65:f6:c0:86: ce:bc:71:60:0e:77:91:29:e4:60:1d:68:bd:8b:02: 6b:e5:99:b2:a5:b5:22:58:5a:7f:78:47:c9:7d:6f: 21:d7:50:5f:58:c5:dd:e6:90:e0:7c:c6:1d:d0:5b: 44:b1:83:e3:41:60:ae:b1:40:c5:40:44:54:df:87: 83:f7:e2:d4:7f:95:50:c5:83:42:9d:65:e2:32:03: a4:64:71:f5:d5:53:f8:1e:a9:bc:15:bb:2e:70:91: d5:d6:d8:d6:48:a1:55:e3:c5:21:a3:67:59:d2:41: 4d:f2:9f:8f:c9:c9:62:42:5f:9b:da:e0:e3:67:d0: 9f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8E:C1:DB:43:74:78:80:69:42:1A:71:A3:25:01:4C:72:2A:40:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a4146e8-7346-411d-a38c-f6674165b447.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.20.0/24 Signature Algorithm: sha256WithRSAEncryption 66:df:ce:d9:bb:08:66:79:ab:a0:44:72:53:62:18:8a:83:d4: e8:a5:dd:ac:db:cb:7e:c2:69:f5:47:0d:f0:7a:00:89:e7:02: a7:f4:c4:61:65:cd:14:df:99:fa:37:4a:7f:ef:38:5c:e0:51: b2:2a:67:77:9e:1d:3d:11:14:da:08:07:76:27:39:9f:6b:05: ee:fd:5d:f6:2e:01:e1:b3:9b:0f:71:9f:aa:fe:59:2e:ef:77: 1f:72:8d:e5:08:65:5a:b6:a9:fc:94:6c:be:6e:04:79:b5:c6: a2:99:79:83:3c:4b:98:84:ee:6a:08:40:3b:ed:22:ac:63:5f: a3:23:86:9e:51:39:5e:8b:22:a9:f9:66:b8:40:f7:56:20:6b: ac:8d:b0:dd:ee:05:63:0f:41:9c:82:6e:63:cb:dd:52:99:9b: bc:96:9d:dd:6a:be:35:78:83:37:cc:87:44:a0:74:62:06:ee: 7e:7f:1c:e6:4a:83:79:23:dc:68:c9:f2:bb:e4:af:d3:6b:36: cc:a5:a6:6f:d7:67:88:e7:1f:51:fc:c1:58:08:48:95:e8:9b: 67:d7:68:8f:d5:e3:d6:70:34:0a:eb:4f:40:77:b4:fa:79:86: d1:e2:70:0e:72:dd:14:46:ae:4c:1e:d8:80:32:2b:61:9c:1d: 28:ed:33:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPIwCju/PnKpVfsk0+EfE9E7+9i8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA1MDI4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODFmZmQzMzk5OGJlOTFiYjg5ODQ5MmM5OTk2ODk1ZjQ0 Nzg0ODllMzE0NjJkNDFkYWYyZGQ1NGVjYTc3YWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV/P87DQ19i9Hq53mbLJTcfUmRbvma+VhQnJdfg6jEGorc 7wdZJBDHN9u+jGwOPxLi9y6vHLUOo72YUVH3XaC8kNXy4xo6LCjVDJlCUc+ty5xn qbm0LR64Tn61E/J/FdoBxCnSqKWEIcKHLCqI+AKbuWgwyo5AZOs/ihO3ks/1p2W5 ZfbAhs68cWAOd5Ep5GAdaL2LAmvlmbKltSJYWn94R8l9byHXUF9Yxd3mkOB8xh3Q W0Sxg+NBYK6xQMVARFTfh4P34tR/lVDFg0KdZeIyA6RkcfXVU/geqbwVuy5wkdXW 2NZIoVXjxSGjZ1nSQU3yn4/JyWJCX5va4ONn0J9vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFI7B20N0eIBpQhpxoyUBTHIqQJQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNDE0NmU4LTczNDYtNDExZC1hMzhjLWY2Njc0MTY1YjQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GRQwDQYJKoZIhvcNAQELBQADggEBAGbfztm7CGZ5q6BEclNiGIqD1Oil 3azby37CafVHDfB6AInnAqf0xGFlzRTfmfo3Sn/vOFzgUbIqZ3eeHT0RFNoIB3Yn OZ9rBe79XfYuAeGzmw9xn6r+WS7vdx9yjeUIZVq2qfyUbL5uBHm1xqKZeYM8S5iE 7moIQDvtIqxjX6Mjhp5ROV6LIqn5ZrhA91Yga6yNsN3uBWMPQZyCbmPL3VKZm7yW nd1qvjV4gzfMh0SgdGIG7n5/HOZKg3kj3GjJ8rvkr9NrNsylpm/XZ4jnH1H8wVgI SJXom2fXaI/V49ZwNArrT0B3tPp5htHicA5y3RRGrkwe2IAyK2GcHSjtM7I= -----END CERTIFICATE-----Generated at Sun Jun 1 04:59:46 2025 by rpki-client