$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8709c129-ac02-4abb-ab24-ffcd6a0a5305.roa File: 8709c129-ac02-4abb-ab24-ffcd6a0a5305.roa (raw, json) Hash identifier: LzMh/NxZ6jajIZCkJlamj0eCXruWx3yGU6msQgVV84M= Subject key identifier: 4B:4B:05:80:B2:E7:A2:FA:CF:98:2F:41:6B:69:30:AB:84:D9:2E:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 725EE73E7E76A10A87E4780025F327921869B629 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8709c129-ac02-4abb-ab24-ffcd6a0a5305.roa Signing time: Tue 27 May 2025 00:00:29 +0000 ROA not before: Tue 27 May 2025 00:00:29 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.232.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5e:e7:3e:7e:76:a1:0a:87:e4:78:00:25:f3:27:92:18:69:b6:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:00:29 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=392a403bc75b090705094a806125137d602d699477eee9d56beafd52bc87646c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:bd:5a:1f:39:40:96:af:1e:a8:b6:59:f8: fa:e6:ae:44:35:68:ab:6c:f1:e7:c9:08:84:6f:19: 3d:56:43:a1:7e:1f:ee:7f:e6:0c:1e:88:4e:83:60: ac:f6:7a:16:84:d1:b5:08:4d:2e:f6:c4:19:cc:ea: d3:4a:94:05:67:ac:6d:43:45:dd:73:92:3e:2e:77: a8:09:06:09:a8:82:28:84:f4:c7:63:60:04:44:b0: 10:29:14:59:a2:1d:0f:62:5b:cb:25:56:fa:ec:76: ec:73:a1:da:93:90:30:1b:fe:2c:10:2d:0c:e8:24: a8:6c:e5:05:cf:48:33:e9:93:23:0b:3c:04:fb:75: 2e:5d:85:39:02:4c:d9:08:f8:de:91:57:54:ce:fe: b1:a9:f4:38:7d:76:37:56:d3:db:67:db:e6:0a:dc: 8e:f5:89:81:0c:62:1c:c9:ec:4a:a7:ed:8d:1e:d8: 81:eb:b7:64:56:60:f6:c3:06:74:a2:96:64:3e:5b: 0d:5a:e5:48:65:bd:45:a7:da:11:08:f2:e5:3a:4f: c8:da:bc:55:eb:2a:6f:9d:61:48:27:bc:9b:a6:ae: 17:b7:3d:7b:32:aa:9e:67:03:bd:c7:d0:9f:f1:0e: 3f:66:b4:45:73:95:89:05:93:eb:b2:cd:8c:d5:9f: ea:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4B:05:80:B2:E7:A2:FA:CF:98:2F:41:6B:69:30:AB:84:D9:2E:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8709c129-ac02-4abb-ab24-ffcd6a0a5305.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.232.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:af:ea:f5:38:b7:1f:b0:48:6e:35:be:bd:7d:54:fc:87:a6: 82:09:9f:da:46:5c:a6:c2:4d:fe:b7:b9:41:43:08:6c:87:c8: 99:86:5b:64:72:2a:24:9e:48:ee:ee:83:53:96:61:54:b8:03: c4:ab:4e:3f:ba:dd:df:14:3c:0c:eb:d2:95:17:e6:c0:e6:fc: 21:df:9e:85:81:37:7f:b3:3f:f3:55:1d:96:df:0e:fd:bd:e2: 9c:24:5d:bf:e8:c5:8f:e1:b0:7c:be:a2:56:db:77:f9:79:af: 11:52:79:57:02:80:5c:88:97:da:32:28:f4:e0:47:dd:53:df: 07:d8:9e:d0:be:da:84:bf:92:46:cb:25:2f:4c:39:85:36:e0: a2:04:62:cc:da:7e:f5:e8:10:4a:97:a5:f2:0d:05:29:a9:97: 4b:f6:10:09:84:93:b6:e3:5f:ff:8c:37:4b:99:24:14:10:97: 99:ab:db:7f:23:e9:54:a7:6e:c5:92:3d:ca:38:37:94:b5:1b: e4:50:c7:60:a9:71:34:41:88:88:34:32:27:99:17:c6:db:c2: d6:55:7a:8b:15:0b:7b:71:99:10:ae:92:bb:05:a8:c5:d0:86: 4c:60:9d:5a:ef:bc:02:17:94:26:75:6d:0c:d5:18:18:0f:29: 96:4e:e2:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcl7nPn52oQqH5HgAJfMnkhhptikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMDI5WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTJhNDAzYmM3NWIwOTA3MDUwOTRhODA2MTI1MTM3ZDYw MmQ2OTk0NzdlZWU5ZDU2YmVhZmQ1MmJjODc2NDZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC70b1aHzlAlq8eqLZZ+PrmrkQ1aKts8efJCIRvGT1WQ6F+ H+5/5gweiE6DYKz2ehaE0bUITS72xBnM6tNKlAVnrG1DRd1zkj4ud6gJBgmogiiE 9MdjYAREsBApFFmiHQ9iW8slVvrsduxzodqTkDAb/iwQLQzoJKhs5QXPSDPpkyML PAT7dS5dhTkCTNkI+N6RV1TO/rGp9Dh9djdW09tn2+YK3I71iYEMYhzJ7Eqn7Y0e 2IHrt2RWYPbDBnSilmQ+Ww1a5UhlvUWn2hEI8uU6T8javFXrKm+dYUgnvJumrhe3 PXsyqp5nA73H0J/xDj9mtEVzlYkFk+uyzYzVn+qPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUS0sFgLLnovrPmC9Ba2kwq4TZLr8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3MDljMTI5LWFjMDItNGFiYi1hYjI0LWZmY2Q2YTBhNTMwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP6DANBgkqhkiG9w0BAQsFAAOCAQEAvK/q9Ti3H7BIbjW+vX1U/Iemggmf 2kZcpsJN/re5QUMIbIfImYZbZHIqJJ5I7u6DU5ZhVLgDxKtOP7rd3xQ8DOvSlRfm wOb8Id+ehYE3f7M/81Udlt8O/b3inCRdv+jFj+GwfL6iVtt3+XmvEVJ5VwKAXIiX 2jIo9OBH3VPfB9ie0L7ahL+SRsslL0w5hTbgogRizNp+9egQSpel8g0FKamXS/YQ CYSTtuNf/4w3S5kkFBCXmavbfyPpVKduxZI9yjg3lLUb5FDHYKlxNEGIiDQyJ5kX xtvC1lV6ixULe3GZEK6SuwWoxdCGTGCdWu+8AheUJnVtDNUYGA8plk7imw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:52:17 2025 by rpki-client