$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa File: f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa (raw, json) Hash identifier: hZpIssHI7u7otzsodb6M58zrUlMNJ/isPCMD4tz3gjc= Subject key identifier: F1:A9:19:71:EA:D5:CF:0E:9B:2A:25:BE:7F:90:C6:7A:C5:A8:C8:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46FC9557FDC2055DA0F3C13E169AF817203840E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa Signing time: Sat 24 May 2025 00:10:58 +0000 ROA not before: Sat 24 May 2025 00:10:58 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fc:95:57:fd:c2:05:5d:a0:f3:c1:3e:16:9a:f8:17:20:38:40:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:10:58 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=8bcdc7d3cefa5e52394e388f0baea5c939cb9df361746a9b9bdddfb307dece35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a7:51:c4:c4:a3:48:0e:8f:01:fe:c1:dc:e4: 32:75:f4:5e:8f:88:57:c0:8e:18:bb:29:9b:f1:b2: 33:bb:68:9a:32:ac:b9:ed:c5:c3:74:68:3c:73:3c: 80:a4:67:8e:5d:2b:d5:b1:31:ac:06:2e:e0:61:1e: 2e:c5:79:c5:dd:44:58:c3:1e:be:7d:90:cf:59:a3: 6f:b2:5f:1d:84:f4:f1:ed:c4:13:4b:75:02:a6:c1: de:7c:d0:94:ac:c3:71:92:de:eb:ca:c3:62:59:04: 03:38:90:6f:13:bc:7b:30:91:07:fe:e9:bd:35:e3: ac:80:57:bb:2f:77:b3:ec:4f:29:96:88:0b:d9:c3: 8f:26:69:24:89:3c:05:4d:40:f8:50:bf:da:13:b4: 15:67:a8:9d:23:de:c1:67:36:dc:03:10:e3:e9:95: 01:c6:3a:96:fe:10:ac:ce:f0:1e:98:9f:b0:c4:99: b6:a0:16:29:37:39:e8:8b:1c:00:8d:44:26:23:32: ac:29:45:18:95:eb:24:a7:95:ab:e6:5d:81:ab:02: 9f:78:05:3f:e9:77:54:e3:ca:81:c0:c9:fa:eb:97: 49:51:6a:4a:13:00:1a:7e:1d:b0:5c:e0:26:09:3c: 70:86:43:a8:e0:0f:87:71:25:5d:7d:df:37:a1:27: bc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A9:19:71:EA:D5:CF:0E:9B:2A:25:BE:7F:90:C6:7A:C5:A8:C8:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3b:8e:d3:46:9c:31:c8:60:6a:34:f8:f1:14:ac:ff:e5:89:5e: 47:33:3b:d0:35:55:52:6a:43:9e:9d:4f:ea:8c:db:67:d4:95: 15:a3:6b:23:cf:42:0b:1a:d6:9b:4e:a8:31:e6:35:f5:14:34: 61:c0:42:5e:24:ff:d0:28:ff:0f:80:67:b3:33:8f:de:ec:5d: c1:c0:03:53:a8:de:6b:e3:46:38:21:7f:a5:68:dd:bb:e2:b1: 92:35:51:2c:38:11:77:88:77:90:48:5d:bd:5e:b2:34:fa:f9: 75:fc:54:31:6c:7d:cd:47:67:fb:d7:e8:63:84:52:53:d1:eb: 4e:63:1f:76:5c:32:d0:23:c4:b1:d2:fa:7e:d3:4b:b7:e3:47: 3f:35:2c:f7:54:08:22:94:f0:2c:ca:2c:8a:d3:51:d4:b3:6e: 2d:70:46:b1:c5:87:9b:6e:b8:82:f3:ee:5d:89:c2:12:18:a0: fb:fd:60:7a:e0:77:fa:a6:61:54:eb:07:f4:26:cd:ca:e3:e4: 8a:35:9c:10:0b:7d:a2:69:43:0c:0d:24:c9:93:5b:82:8e:be: 4b:04:c8:63:c3:81:84:e5:10:bc:b6:bc:cc:6f:03:2a:8c:09: 09:13:de:3a:fc:51:b7:37:34:dd:2b:9b:28:1a:42:cb:0b:21: c8:f1:ae:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURvyVV/3CBV2g88E+Fpr4FyA4QOUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMDU4WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmNkYzdkM2NlZmE1ZTUyMzk0ZTM4OGYwYmFlYTVjOTM5 Y2I5ZGYzNjE3NDZhOWI5YmRkZGZiMzA3ZGVjZTM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjp1HExKNIDo8B/sHc5DJ19F6PiFfAjhi7KZvxsjO7aJoy rLntxcN0aDxzPICkZ45dK9WxMawGLuBhHi7FecXdRFjDHr59kM9Zo2+yXx2E9PHt xBNLdQKmwd580JSsw3GS3uvKw2JZBAM4kG8TvHswkQf+6b0146yAV7svd7PsTymW iAvZw48maSSJPAVNQPhQv9oTtBVnqJ0j3sFnNtwDEOPplQHGOpb+EKzO8B6Yn7DE mbagFik3OeiLHACNRCYjMqwpRRiV6ySnlavmXYGrAp94BT/pd1TjyoHAyfrrl0lR akoTABp+HbBc4CYJPHCGQ6jgD4dxJV193zehJ7w9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8akZcerVzw6bKiW+f5DGesWoyOQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMTI1ZTMxLWVkOTctNGUzMS04OWU5LWQ0YWYwMGU1YjMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEAO47TRpwxyGBqNPjxFKz/5YleRzM7 0DVVUmpDnp1P6ozbZ9SVFaNrI89CCxrWm06oMeY19RQ0YcBCXiT/0Cj/D4BnszOP 3uxdwcADU6jea+NGOCF/pWjdu+KxkjVRLDgRd4h3kEhdvV6yNPr5dfxUMWx9zUdn +9foY4RSU9HrTmMfdlwy0CPEsdL6ftNLt+NHPzUs91QIIpTwLMositNR1LNuLXBG scWHm264gvPuXYnCEhig+/1geuB3+qZhVOsH9CbNyuPkijWcEAt9omlDDA0kyZNb go6+SwTIY8OBhOUQvLa8zG8DKowJCRPeOvxRtzc03SubKBpCywshyPGuvg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:15:53 2025 by rpki-client