$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa File: 97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa (raw, json) Hash identifier: G1GjEOlx+sZtAjgywNLVktLsSlD9uw4zdyz4TXcdvUs= Subject key identifier: 06:59:DA:F5:95:24:97:F1:07:53:31:A3:06:C2:5E:D6:B5:FC:F1:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FCFFBA5E01DC6B25F50F815B7D1E008CE344A07 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa Signing time: Fri 23 May 2025 00:00:22 +0000 ROA not before: Fri 23 May 2025 00:00:22 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:cf:fb:a5:e0:1d:c6:b2:5f:50:f8:15:b7:d1:e0:08:ce:34:4a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:00:22 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=ea38467fdf2515517a3629f8181055e0f77f99f83943f624b662a78f1a182005, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:a4:f1:0a:bb:2a:a9:f1:c9:8e:a3:12:35: a8:3a:fc:5b:2c:df:a8:ba:10:41:dd:3d:9d:3c:6a: 40:a3:ee:c1:62:cb:8b:b1:76:74:ce:c4:0f:11:78: d2:65:e3:84:b4:c2:40:e4:44:c0:e3:49:4e:3f:1f: 53:1b:ce:db:e7:ea:23:fe:e1:90:e9:82:0b:d9:85: 76:16:4f:a8:b1:c6:78:50:ce:72:85:12:45:8e:6e: 6f:18:f0:4e:9e:27:00:17:77:f1:75:51:57:9b:0a: 4e:a9:f5:8f:a9:29:38:0e:f7:7f:86:d7:89:7f:51: de:11:73:a2:82:c7:82:b9:92:a2:ce:da:2c:06:bc: 26:d9:d7:a5:eb:53:52:a1:d0:02:9c:a4:29:1e:1f: 36:fb:32:56:f8:04:ec:ef:b3:c0:68:66:a9:1c:dd: 49:eb:45:68:54:13:88:d3:f6:f7:76:e4:c9:fa:7f: 6e:6e:ab:5c:82:08:1e:bb:4a:8c:82:8e:bf:89:c8: 29:b0:0e:0f:7d:5d:2d:6d:82:c4:0e:a3:f8:d3:b1: a4:67:b0:be:88:aa:35:3f:71:c4:7b:78:46:99:2e: 0c:12:2b:0b:7c:f0:ac:ce:e1:cf:b4:02:02:51:84: 98:19:6b:e5:54:dd:57:2c:38:96:b0:4b:69:ef:7d: 6f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:59:DA:F5:95:24:97:F1:07:53:31:A3:06:C2:5E:D6:B5:FC:F1:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 67:6f:41:8b:66:f1:b6:be:18:50:12:c3:1b:4b:b6:b8:b8:55: af:ce:13:d7:6b:bc:44:5f:10:73:a0:c7:14:50:4b:ad:04:47: a7:5c:23:15:8a:ae:9d:ab:b5:82:6d:c0:44:40:3c:6e:a6:fc: 96:18:d6:87:a9:81:80:c6:07:f0:85:11:98:a4:14:a3:7c:ea: b0:e2:90:b8:1a:60:86:14:3f:93:e5:f9:41:9b:d9:5b:9e:4d: f1:fe:b2:b9:ba:b0:48:46:c3:fa:66:fb:b1:5f:ec:86:ff:78: e0:25:bf:73:d2:af:2b:f5:da:c3:e0:6d:30:81:41:06:27:f1: d4:00:5e:ef:0f:78:60:4f:f6:63:21:21:5b:1a:1a:1d:ab:52: 6d:cd:3d:1e:d6:74:cb:78:9d:e7:05:2b:66:ef:3e:36:a3:56: 21:87:29:0a:ce:82:53:4f:d8:1f:1c:ef:fa:29:1b:c1:8d:37: d1:5e:6e:35:74:b7:13:03:4f:ab:fc:8d:be:e0:2d:03:28:a5: b1:24:f4:2a:c2:4e:5a:1b:d9:07:cb:99:6a:39:d8:9f:d7:7b: 56:fa:9e:89:7e:0c:b7:b6:d8:77:e8:f4:ca:60:0c:b0:77:e4: 80:22:ab:e6:ad:75:98:6b:b2:6b:cb:c4:99:34:0e:6e:e4:e7: 72:d5:79:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT8/7peAdxrJfUPgVt9HgCM40SgcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAwMDIyWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTM4NDY3ZmRmMjUxNTUxN2EzNjI5ZjgxODEwNTVlMGY3 N2Y5OWY4Mzk0M2Y2MjRiNjYyYTc4ZjFhMTgyMDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiJ6TxCrsqqfHJjqMSNag6/Fss36i6EEHdPZ08akCj7sFi y4uxdnTOxA8ReNJl44S0wkDkRMDjSU4/H1Mbztvn6iP+4ZDpggvZhXYWT6ixxnhQ znKFEkWObm8Y8E6eJwAXd/F1UVebCk6p9Y+pKTgO93+G14l/Ud4Rc6KCx4K5kqLO 2iwGvCbZ16XrU1Kh0AKcpCkeHzb7Mlb4BOzvs8BoZqkc3UnrRWhUE4jT9vd25Mn6 f25uq1yCCB67SoyCjr+JyCmwDg99XS1tgsQOo/jTsaRnsL6IqjU/ccR7eEaZLgwS Kwt88KzO4c+0AgJRhJgZa+VU3VcsOJawS2nvfW/5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBlna9ZUkl/EHUzGjBsJe1rX88dQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3NTUwNDk5LTBlN2EtNDg2Ny1iNTFhLTkxYmY5ZjhiN2E5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJsnDANBgkqhkiG9w0BAQsFAAOCAQEAZ29Bi2bxtr4YUBLDG0u2uLhVr84T 12u8RF8Qc6DHFFBLrQRHp1wjFYqunau1gm3AREA8bqb8lhjWh6mBgMYH8IURmKQU o3zqsOKQuBpghhQ/k+X5QZvZW55N8f6yubqwSEbD+mb7sV/shv944CW/c9KvK/Xa w+BtMIFBBifx1ABe7w94YE/2YyEhWxoaHatSbc09HtZ0y3id5wUrZu8+NqNWIYcp Cs6CU0/YHxzv+ikbwY030V5uNXS3EwNPq/yNvuAtAyilsST0KsJOWhvZB8uZajnY n9d7VvqeiX4Mt7bYd+j0ymAMsHfkgCKr5q11mGuya8vEmTQObuTnctV5EA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:47 2025 by rpki-client