$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fecfa0e-80ac-4989-b150-e80a246d95f5.roa File: 9fecfa0e-80ac-4989-b150-e80a246d95f5.roa (raw, json) Hash identifier: 9nnoyE4INLt0KxLY/K8jHn4+DMj9d804yGMFsVwock8= Subject key identifier: 98:C4:3B:D7:7A:C0:72:E4:53:7A:A8:7A:48:9D:54:7D:5A:89:0A:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 375859416705B32171095B7BEFB949B29E5E11F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fecfa0e-80ac-4989-b150-e80a246d95f5.roa Signing time: Sat 17 May 2025 00:11:28 +0000 ROA not before: Sat 17 May 2025 00:11:28 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:58:59:41:67:05:b3:21:71:09:5b:7b:ef:b9:49:b2:9e:5e:11:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:11:28 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=17660334e8b3e403d3c4aed92e028b2f1023d7ae609ec3e8c453e1ca4736e916, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:14:ca:93:dc:4f:32:53:87:91:19:80:bb:80: db:cf:06:74:db:cf:b9:31:a4:71:0b:b9:28:62:ab: dc:50:fc:e7:e5:5a:16:fa:25:e7:fb:83:0d:bc:06: a9:75:7e:1a:1c:ea:f1:b3:6f:c9:63:10:e7:d3:20: 02:bd:04:23:d8:5d:0d:9e:a9:a9:10:12:13:68:e6: dc:18:2d:56:a9:fa:f7:1f:12:d9:d3:4f:62:99:03: 35:ec:60:c6:0a:f7:cb:04:f4:ef:0b:c8:60:09:0c: dc:f4:30:0d:fb:09:b8:5c:94:85:8d:d2:28:e3:72: 68:e8:67:9a:7b:e9:f1:ee:72:d4:26:32:26:bc:cc: f9:c6:d2:44:75:8e:9f:fa:82:3c:27:e4:4e:fb:6a: 2e:ac:7f:82:ba:b5:cd:bc:c6:31:a7:c9:a2:f9:9e: 97:4c:c3:23:e3:9e:90:b7:f9:e3:ea:f4:26:49:0b: 12:ab:4f:02:64:b6:39:fe:74:28:d3:88:f5:bf:28: 5e:c6:c4:5a:e6:3f:cd:19:69:59:67:75:e3:52:77: 18:47:2a:87:e3:4e:30:f1:c6:9a:19:86:90:19:7f: e7:6c:a4:ba:25:2e:9a:c3:03:b1:f9:8a:38:52:3e: 4a:af:5e:e1:c8:42:17:eb:3e:c6:7b:46:de:d6:84: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C4:3B:D7:7A:C0:72:E4:53:7A:A8:7A:48:9D:54:7D:5A:89:0A:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9fecfa0e-80ac-4989-b150-e80a246d95f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:12:0f:9a:b8:b3:3c:eb:12:19:c6:fc:74:eb:d6:3b:bd:84: 97:b9:9d:d0:68:32:e4:6c:c7:ce:61:b0:fd:ea:60:15:a8:9f: ea:79:6f:06:fe:7e:5b:b5:9c:77:e0:28:3c:06:9a:3f:58:fc: 65:11:c1:52:40:7a:42:e6:9b:b3:bc:b6:0e:81:e4:e8:45:d6: 81:cd:c4:5e:0f:d8:c8:43:0d:70:d9:4a:2b:d0:79:c2:4a:d6: 12:16:27:33:a9:c3:aa:7d:41:ec:59:62:54:1a:c4:c8:b7:8f: 56:dd:1b:80:b4:ff:fc:ec:c7:88:f7:81:9e:96:45:cf:22:7b: 8e:2f:88:cd:01:83:84:fc:89:20:ae:8b:3a:eb:13:26:4d:50: 1d:6d:8e:7a:11:00:4e:82:c4:53:9f:72:99:2c:e2:5b:d9:bf: 1b:fb:15:c0:d7:bc:c6:3d:78:fe:73:1b:9b:fa:35:82:91:03: e7:3e:42:e3:f7:72:41:d9:f4:47:b4:03:bd:da:43:c1:a6:4e: 87:33:0d:15:17:31:a4:71:59:33:be:ec:c7:08:6c:c5:46:2f: d3:5d:42:4c:06:56:cf:ab:3c:ef:fa:b7:4a:57:95:aa:6b:2e: 61:33:77:57:eb:27:9b:94:92:da:c0:96:b7:fb:1f:3d:7c:2c: b8:4d:93:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN1hZQWcFsyFxCVt777lJsp5eEfAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAxMTI4WhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzY2MDMzNGU4YjNlNDAzZDNjNGFlZDkyZTAyOGIyZjEw MjNkN2FlNjA5ZWMzZThjNDUzZTFjYTQ3MzZlOTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrFMqT3E8yU4eRGYC7gNvPBnTbz7kxpHELuShiq9xQ/Ofl Whb6Jef7gw28Bql1fhoc6vGzb8ljEOfTIAK9BCPYXQ2eqakQEhNo5twYLVap+vcf EtnTT2KZAzXsYMYK98sE9O8LyGAJDNz0MA37CbhclIWN0ijjcmjoZ5p76fHuctQm Mia8zPnG0kR1jp/6gjwn5E77ai6sf4K6tc28xjGnyaL5npdMwyPjnpC3+ePq9CZJ CxKrTwJktjn+dCjTiPW/KF7GxFrmP80ZaVlndeNSdxhHKofjTjDxxpoZhpAZf+ds pLolLprDA7H5ijhSPkqvXuHIQhfrPsZ7Rt7WhH59AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmMQ713rAcuRTeqh6SJ1UfVqJCg4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmZWNmYTBlLTgwYWMtNDk4OS1iMTUwLWU4MGEyNDZkOTVmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPhzANBgkqhkiG9w0BAQsFAAOCAQEAAhIPmrizPOsSGcb8dOvWO72El7md 0Ggy5GzHzmGw/epgFaif6nlvBv5+W7Wcd+AoPAaaP1j8ZRHBUkB6Quabs7y2DoHk 6EXWgc3EXg/YyEMNcNlKK9B5wkrWEhYnM6nDqn1B7FliVBrEyLePVt0bgLT//OzH iPeBnpZFzyJ7ji+IzQGDhPyJIK6LOusTJk1QHW2OehEAToLEU59ymSziW9m/G/sV wNe8xj14/nMbm/o1gpED5z5C4/dyQdn0R7QDvdpDwaZOhzMNFRcxpHFZM77sxwhs xUYv011CTAZWz6s87/q3SleVqmsuYTN3V+snm5SS2sCWt/sfPXwsuE2T4A== -----END CERTIFICATE-----Generated at Sun Jun 1 05:20:59 2025 by rpki-client