$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa File: b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa (raw, json) Hash identifier: HkX8Xj3DO7DYkG23Yh2Z0+UFKVYCY1sn7h5U0uE2eBw= Subject key identifier: 48:DC:42:1A:3B:65:10:F2:DD:51:58:ED:B4:B5:73:D0:FD:07:92:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B9715BC7C79B774575840238429C2204FD1125D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa Signing time: Tue 20 May 2025 00:32:17 +0000 ROA not before: Tue 20 May 2025 00:32:17 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:97:15:bc:7c:79:b7:74:57:58:40:23:84:29:c2:20:4f:d1:12:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:32:17 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a888cd5bac7cae2326e347d159d4a07cf6eb2b70d344ace727e398e5be93891a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:98:e4:4d:a8:e2:12:60:f1:e9:7b:cf:41: 36:66:83:89:d0:4a:67:73:f3:9d:e8:aa:31:43:55: 0b:1f:06:f2:be:a3:dc:d8:f9:94:2c:f2:0d:92:db: bb:24:08:e3:7a:94:fa:4a:7d:67:d7:6b:72:1e:29: b4:9b:93:74:d4:e7:bc:55:5d:dd:0b:4c:e1:59:6e: a6:7d:11:aa:b1:f2:23:d7:37:3a:b3:1c:7a:31:9a: e4:ae:18:12:07:19:e4:73:41:c5:84:46:ad:00:cd: 36:2b:68:0b:53:d7:6b:5d:08:98:c7:af:d5:29:34: 4f:d1:d2:07:3c:b2:5b:7b:60:63:5a:71:bd:e0:42: 5f:82:19:ee:ab:d9:a6:aa:05:0d:b8:63:4e:39:58: 4b:08:74:99:9e:cf:5f:5a:88:9d:ce:53:3f:2f:7e: 92:fc:04:28:cb:eb:85:15:89:41:ec:63:b2:37:41: 8b:7c:84:45:4d:34:e3:2b:8b:2e:f7:4e:79:75:a3: 6f:95:80:5b:cb:00:1c:b3:c6:9f:65:33:6a:43:9c: 54:d2:29:9b:39:b9:a1:13:83:49:a5:5c:c8:91:e4: c0:9d:14:ca:99:9f:9b:0a:88:37:0a:1b:38:f0:57: 28:c1:ff:24:9d:14:2d:87:0d:a7:f4:a4:fd:cf:7a: b7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DC:42:1A:3B:65:10:F2:DD:51:58:ED:B4:B5:73:D0:FD:07:92:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.0.0/15 Signature Algorithm: sha256WithRSAEncryption 17:a8:57:c3:2c:78:4b:33:6e:86:b5:ee:35:fe:f3:58:c4:a3: 09:4c:5d:6c:19:f8:7c:36:21:19:92:38:9b:3f:65:2e:45:e9: 69:06:72:f2:0e:f2:fb:3b:31:45:5a:7b:a8:48:d3:bb:ce:a5: 87:fa:2c:5f:96:d3:65:9c:31:4b:79:2c:26:e2:b4:d2:4d:ea: 95:3a:21:ef:b2:82:b6:70:ef:d9:aa:37:3a:66:bf:26:0d:6f: fc:c9:02:3e:c0:14:29:ce:05:c7:f3:4a:ad:40:af:67:73:f8: 73:09:4e:23:c2:65:d7:d7:bb:2e:f3:14:e7:cf:ef:4a:87:da: 89:9d:4e:14:24:31:3f:0f:70:d2:91:66:d8:09:92:ac:41:e9: 38:35:12:e5:91:97:0f:8c:d5:26:50:01:6b:52:93:33:51:c8: f0:96:34:46:bf:c6:0f:6d:62:12:52:44:70:4c:7e:69:c6:53: f0:86:f5:7c:d7:02:db:a8:9d:ba:82:7a:1f:c7:04:a7:e3:8e: 4d:48:50:ba:41:5c:13:c0:06:1f:77:86:0d:0e:78:f0:fa:18: 83:4f:cf:66:50:6f:21:1c:33:50:b6:36:72:8a:90:a3:f3:63: 36:ac:27:6e:49:00:d0:16:a7:18:dc:af:0c:de:e6:ea:ca:89: 11:5e:fb:c3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK5cVvHx5t3RXWEAjhCnCIE/REl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMjE3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODg4Y2Q1YmFjN2NhZTIzMjZlMzQ3ZDE1OWQ0YTA3Y2Y2 ZWIyYjcwZDM0NGFjZTcyN2UzOThlNWJlOTM4OTFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/WpjkTajiEmDx6XvPQTZmg4nQSmdz853oqjFDVQsfBvK+ o9zY+ZQs8g2S27skCON6lPpKfWfXa3IeKbSbk3TU57xVXd0LTOFZbqZ9Eaqx8iPX NzqzHHoxmuSuGBIHGeRzQcWERq0AzTYraAtT12tdCJjHr9UpNE/R0gc8slt7YGNa cb3gQl+CGe6r2aaqBQ24Y045WEsIdJmez19aiJ3OUz8vfpL8BCjL64UViUHsY7I3 QYt8hEVNNOMriy73Tnl1o2+VgFvLAByzxp9lM2pDnFTSKZs5uaETg0mlXMiR5MCd FMqZn5sKiDcKGzjwVyjB/ySdFC2HDaf0pP3PerfPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSNxCGjtlEPLdUVjttLVz0P0HkqgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2NDg5NmVjLTFlYjYtNGIxMy05ZWU3LTlmZjU5MWI4OTJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEXFjANBgkqhkiG9w0BAQsFAAOCAQEAF6hXwyx4SzNuhrXuNf7zWMSjCUxd bBn4fDYhGZI4mz9lLkXpaQZy8g7y+zsxRVp7qEjTu86lh/osX5bTZZwxS3ksJuK0 0k3qlToh77KCtnDv2ao3Oma/Jg1v/MkCPsAUKc4Fx/NKrUCvZ3P4cwlOI8Jl19e7 LvMU58/vSofaiZ1OFCQxPw9w0pFm2AmSrEHpODUS5ZGXD4zVJlABa1KTM1HI8JY0 Rr/GD21iElJEcEx+acZT8Ib1fNcC26iduoJ6H8cEp+OOTUhQukFcE8AGH3eGDQ54 8PoYg0/PZlBvIRwzULY2coqQo/NjNqwnbkkA0BanGNyvDN7m6sqJEV77ww== -----END CERTIFICATE-----Generated at Sun Jun 1 04:27:39 2025 by rpki-client