$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6940231-ac58-4517-8512-d463ed29c0e3.roa File: d6940231-ac58-4517-8512-d463ed29c0e3.roa (raw, json) Hash identifier: hkbQAapzs+nl2NkZtowvNZBlJSwPQPz+nuAp/28iwmQ= Subject key identifier: 7B:D4:29:54:70:59:01:C0:83:88:A5:F8:B2:06:3F:C7:61:D1:87:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A8D4429C40BFDA794F3EF8AE7D0F2F02674FF33 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6940231-ac58-4517-8512-d463ed29c0e3.roa Signing time: Wed 28 May 2025 00:02:04 +0000 ROA not before: Wed 28 May 2025 00:02:04 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 141.231.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8d:44:29:c4:0b:fd:a7:94:f3:ef:8a:e7:d0:f2:f0:26:74:ff:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:04 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=65e4170fe283fbb2f37cc94a4b40654a9ef5cd6f9b4ce37be1d1c3d4756ad403, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3c:d6:3d:46:85:0b:98:f8:f2:77:9e:06:00: de:9b:64:d2:59:89:4e:0a:28:fc:d5:48:98:4c:ea: 20:17:76:20:d1:48:ca:6a:4f:a5:7c:3e:36:a2:ce: 33:62:36:96:65:79:34:b7:f1:81:34:c1:81:cf:1b: 55:ba:5a:ec:a2:63:ff:c1:7e:de:79:2d:77:b7:09: 6a:ae:b9:fe:3b:e6:4d:34:a2:5e:62:b1:66:ff:3d: 47:51:9a:75:f8:39:e7:17:78:72:0e:37:0c:e1:a2: 38:ca:6f:e3:4b:d1:a1:45:5c:d2:e9:21:36:67:46: 22:4d:c4:b1:c7:3c:0c:b3:48:4b:ec:b7:f3:e7:06: 49:9f:a5:c7:74:df:1d:c1:9d:71:06:af:74:8a:5c: 89:ec:5f:7a:30:fc:86:33:60:e5:05:72:59:6e:3c: 47:cb:95:e8:5a:b6:4d:47:c4:d4:49:40:84:83:b9: 28:59:6a:e5:1c:3c:02:e8:76:35:55:80:04:fa:49: ba:06:bc:ed:18:05:24:18:5f:8e:36:a5:8d:e0:e0: 62:17:bd:d6:4f:28:ce:bc:07:47:17:8f:60:2f:aa: e3:19:87:9c:df:21:e2:2f:91:70:08:f1:a3:90:35: 1f:ee:0d:9b:07:b8:84:5b:67:d2:12:9b:00:11:5f: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D4:29:54:70:59:01:C0:83:88:A5:F8:B2:06:3F:C7:61:D1:87:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6940231-ac58-4517-8512-d463ed29c0e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.231.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:ad:1c:5b:3f:06:16:10:9a:26:b5:61:19:f0:7f:be:13:02: b5:e0:ec:0c:c4:d2:74:39:bf:70:a4:ac:18:db:6c:2e:72:09: 46:29:47:d0:45:14:da:51:7b:0d:e2:d5:b1:fe:50:b3:5e:d5: 7b:86:94:98:a1:f2:4d:e0:45:85:0f:95:5e:50:15:11:72:4f: 29:30:1f:97:47:44:ca:64:5c:e0:76:94:5a:81:88:15:d2:f2: 13:3b:6d:24:a5:f4:06:54:ea:f5:1e:24:fa:83:32:9e:74:a0: 30:fe:5d:62:68:80:c9:05:d7:b5:49:b3:3c:08:99:58:7f:34: 5c:db:ae:30:6a:5b:ea:2e:fe:f0:53:9e:87:26:49:89:88:a0: ee:2f:df:b0:67:84:5a:6b:e5:5b:4f:67:39:53:6a:b6:c1:58: 8c:79:5d:d9:01:26:f1:c2:57:4b:2f:f2:00:6d:cb:3b:3a:6a: f1:85:d3:74:e6:c4:67:2d:a0:9f:87:b8:25:7a:3d:9d:8e:ed: 04:c6:56:df:8b:b2:bf:9e:7a:ba:03:a5:31:f2:57:72:bd:2c: cb:c4:ac:8f:17:2e:9a:d8:42:ae:48:58:a6:47:da:a7:2b:f3: fa:bb:a4:5c:35:44:17:cf:6f:51:4f:6e:0a:dd:b5:e3:be:bd: 37:5c:78:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCo1EKcQL/aeU8++K59Dy8CZ0/zMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjA0WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWU0MTcwZmUyODNmYmIyZjM3Y2M5NGE0YjQwNjU0YTll ZjVjZDZmOWI0Y2UzN2JlMWQxYzNkNDc1NmFkNDAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpPNY9RoULmPjyd54GAN6bZNJZiU4KKPzVSJhM6iAXdiDR SMpqT6V8PjaizjNiNpZleTS38YE0wYHPG1W6WuyiY//Bft55LXe3CWquuf475k00 ol5isWb/PUdRmnX4OecXeHIONwzhojjKb+NL0aFFXNLpITZnRiJNxLHHPAyzSEvs t/PnBkmfpcd03x3BnXEGr3SKXInsX3ow/IYzYOUFclluPEfLlehatk1HxNRJQISD uShZauUcPALodjVVgAT6SboGvO0YBSQYX442pY3g4GIXvdZPKM68B0cXj2AvquMZ h5zfIeIvkXAI8aOQNR/uDZsHuIRbZ9ISmwARX/lLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe9QpVHBZAcCDiKX4sgY/x2HRh5MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2OTQwMjMxLWFjNTgtNDUxNy04NTEyLWQ0NjNlZDI5YzBlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCN5zANBgkqhkiG9w0BAQsFAAOCAQEAQ60cWz8GFhCaJrVhGfB/vhMCteDs DMTSdDm/cKSsGNtsLnIJRilH0EUU2lF7DeLVsf5Qs17Ve4aUmKHyTeBFhQ+VXlAV EXJPKTAfl0dEymRc4HaUWoGIFdLyEzttJKX0BlTq9R4k+oMynnSgMP5dYmiAyQXX tUmzPAiZWH80XNuuMGpb6i7+8FOehyZJiYig7i/fsGeEWmvlW09nOVNqtsFYjHld 2QEm8cJXSy/yAG3LOzpq8YXTdObEZy2gn4e4JXo9nY7tBMZW34uyv556ugOlMfJX cr0sy8SsjxcumthCrkhYpkfapyvz+rukXDVEF89vUU9uCt214769N1x4vA== -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:07 2025 by rpki-client