$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83436f15-9744-44ae-bab9-2563f6c055aa.roa File: 83436f15-9744-44ae-bab9-2563f6c055aa.roa (raw, json) Hash identifier: 88od6fjgOtceFOgTD9SNeu+owkTNvukfFkjOWkm77bk= Subject key identifier: E5:43:63:99:6F:BC:B6:C4:29:D4:82:1D:81:59:AB:0E:A5:75:E0:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 424C31160A5762D63757026A6A06DDC62461A894 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83436f15-9744-44ae-bab9-2563f6c055aa.roa Signing time: Tue 20 May 2025 00:11:36 +0000 ROA not before: Tue 20 May 2025 00:11:36 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4c:31:16:0a:57:62:d6:37:57:02:6a:6a:06:dd:c6:24:61:a8:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:11:36 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=2f9380e298c904e0d538d4cc62221a3248c4ac578cf2c88e8139e6e13d5b94ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f3:b7:43:82:0a:fd:55:76:c6:c3:a7:c4:10: 5e:b9:99:81:ec:4e:d0:de:ba:75:96:4c:e1:a8:e3: 80:d9:d8:5e:a5:b0:b0:5f:0f:37:24:f7:59:6b:d5: 8d:04:12:99:21:15:e3:20:d0:96:d3:7b:ef:96:41: 42:1a:d0:c2:70:23:3e:47:b8:ce:e0:45:d0:33:99: 37:95:2b:a9:2a:18:a1:96:b7:78:5a:ce:b0:1a:94: a0:24:0f:2f:2b:9d:5d:6a:5c:39:e3:22:5c:42:d3: e1:df:0e:55:7c:69:d6:8a:9a:e4:1e:0e:f8:d6:41: c4:2d:16:4e:96:0a:3c:ad:75:4a:e3:87:07:40:a9: 4e:47:1a:45:32:fe:65:97:f2:bc:58:70:93:d8:f6: 2e:57:96:1e:26:20:5f:cd:71:b7:95:05:0a:a5:e7: 66:77:b9:05:79:a2:ea:47:d5:b0:32:7b:e7:2b:a8: e3:aa:7f:3b:e9:e9:f5:a1:65:aa:99:a8:aa:fb:6f: 22:81:28:0b:87:cd:66:87:a2:cf:13:ec:a1:76:0c: ce:ce:a2:05:f5:f6:d6:6c:53:92:f0:69:c2:79:c1: 10:a1:fc:25:0b:e7:d2:d6:99:04:3f:41:32:87:f0: f6:57:65:a0:10:6d:02:21:75:e6:6a:f5:02:68:51: 92:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:43:63:99:6F:BC:B6:C4:29:D4:82:1D:81:59:AB:0E:A5:75:E0:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83436f15-9744-44ae-bab9-2563f6c055aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:7c:d0:04:1d:04:29:05:9f:54:90:df:cb:c6:14:e9:35:62: 55:58:48:35:60:c7:6a:5b:fb:3c:6d:99:f9:38:32:10:19:9f: 7b:06:7a:f1:6c:61:81:9b:72:8c:98:60:fe:a4:37:44:67:73: b2:78:a6:da:b7:dd:8d:06:40:8e:11:b9:bc:7d:b3:69:d0:13: ab:26:32:b5:e1:48:b4:ca:47:39:a5:f6:ca:60:f5:91:ff:a7: c8:7a:8b:f8:b4:b4:f4:ca:1d:18:23:ee:df:98:34:9b:c7:f0: 11:08:05:11:c0:fb:5e:4f:e1:83:fb:d0:7f:54:c3:e2:c5:d2: 11:a4:5d:3d:1d:97:04:e5:ed:d4:13:07:3b:58:80:69:84:34: f8:c0:f9:8c:4d:b7:30:20:0f:5e:dc:22:9c:17:a0:55:04:28: b4:5e:cb:7e:77:2e:46:b1:1f:35:3f:47:88:a3:bc:2d:9d:d4: 65:0a:bd:28:77:05:d5:95:d6:c9:98:90:df:cc:79:15:4e:e4: 1b:87:03:c3:5d:47:65:e2:13:1b:71:fd:17:42:57:38:e2:00: 55:c2:d4:37:e0:84:4a:9a:56:2b:15:38:f7:af:48:8c:a3:62: 64:22:72:15:9a:d9:6c:c6:31:d9:10:f1:ea:b4:16:ae:f1:c5: af:09:da:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQkwxFgpXYtY3VwJqagbdxiRhqJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMTM2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjkzODBlMjk4YzkwNGUwZDUzOGQ0Y2M2MjIyMWEzMjQ4 YzRhYzU3OGNmMmM4OGU4MTM5ZTZlMTNkNWI5NGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ87dDggr9VXbGw6fEEF65mYHsTtDeunWWTOGo44DZ2F6l sLBfDzck91lr1Y0EEpkhFeMg0JbTe++WQUIa0MJwIz5HuM7gRdAzmTeVK6kqGKGW t3hazrAalKAkDy8rnV1qXDnjIlxC0+HfDlV8adaKmuQeDvjWQcQtFk6WCjytdUrj hwdAqU5HGkUy/mWX8rxYcJPY9i5Xlh4mIF/NcbeVBQql52Z3uQV5oupH1bAye+cr qOOqfzvp6fWhZaqZqKr7byKBKAuHzWaHos8T7KF2DM7OogX19tZsU5LwacJ5wRCh /CUL59LWmQQ/QTKH8PZXZaAQbQIhdeZq9QJoUZJNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5UNjmW+8tsQp1IIdgVmrDqV14PAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzNDM2ZjE1LTk3NDQtNDRhZS1iYWI5LTI1NjNmNmMwNTVhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMezANBgkqhkiG9w0BAQsFAAOCAQEADHzQBB0EKQWfVJDfy8YU6TViVVhI NWDHalv7PG2Z+TgyEBmfewZ68WxhgZtyjJhg/qQ3RGdzsnim2rfdjQZAjhG5vH2z adATqyYyteFItMpHOaX2ymD1kf+nyHqL+LS09ModGCPu35g0m8fwEQgFEcD7Xk/h g/vQf1TD4sXSEaRdPR2XBOXt1BMHO1iAaYQ0+MD5jE23MCAPXtwinBegVQQotF7L fncuRrEfNT9HiKO8LZ3UZQq9KHcF1ZXWyZiQ38x5FU7kG4cDw11HZeITG3H9F0JX OOIAVcLUN+CESppWKxU4969IjKNiZCJyFZrZbMYx2RDx6rQWrvHFrwnaGg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:25:54 2025 by rpki-client