$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa File: ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json) Hash identifier: jKtJr2Wyy6L7xsgYUP2AOyBBdfunc3cPuZ47zNURtEo= Subject key identifier: F0:F8:B2:70:94:6A:39:E8:A2:77:EA:8B:25:0D:25:25:96:51:4C:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33DE59943FDEFED4CA5FA15818F6220C00E60351 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa Signing time: Sat 24 May 2025 00:12:00 +0000 ROA not before: Sat 24 May 2025 00:12:00 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:de:59:94:3f:de:fe:d4:ca:5f:a1:58:18:f6:22:0c:00:e6:03:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:12:00 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=3b82e303eddbffee18e30bb8c06ee05c8a4a65e7124e4fd041e53997aba0b464, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:88:f8:b5:08:a5:b5:0a:3e:68:b9:99:15:d2: 82:02:96:53:20:b1:89:9c:8d:6c:21:b0:f1:e2:65: be:fa:ee:d6:a4:cc:0b:24:d6:3c:a5:35:f6:d7:68: c3:b6:79:21:86:a4:67:a2:e1:03:62:59:df:1a:e8: 58:7c:a3:6d:bb:e8:da:6b:df:25:1d:1c:4a:42:3b: d8:ad:d8:91:7c:5a:26:2a:90:d0:b4:26:61:59:d7: d2:1b:71:68:e4:90:68:d0:36:79:ea:9a:01:a4:32: 53:24:0c:14:72:c4:0d:0d:01:05:dd:4e:7d:4d:bc: 53:96:03:c4:2d:dc:eb:4e:1c:93:fc:b6:2a:4e:18: 37:d8:75:5f:26:ef:de:d7:6d:15:df:29:a5:ff:dd: f6:ea:71:71:77:0f:d2:1e:de:db:f0:e9:ed:65:e0: 5e:e9:b5:54:31:d9:89:c0:5b:92:6d:09:f6:f4:c1: e1:ac:6b:d9:03:d7:6d:3c:0d:f9:04:62:7b:25:3e: 00:50:68:1b:7e:e1:86:b5:ca:60:50:9e:2e:d5:40: 53:94:1f:46:18:56:d8:9d:bf:c3:47:eb:e0:4a:94: 9b:2b:da:c0:13:e2:29:3c:56:d1:fe:bc:1e:46:07: 0d:3e:09:5e:6d:8b:d8:79:6c:f9:2e:c1:c6:2e:b6: 68:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F8:B2:70:94:6A:39:E8:A2:77:EA:8B:25:0D:25:25:96:51:4C:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 6b:c3:97:6a:f1:5e:cd:2a:a4:ce:eb:22:b9:0b:1c:3e:6c:69: 65:03:fe:54:01:c0:fd:26:2b:34:43:58:d6:e7:0f:81:c2:73: 43:3b:d5:d2:32:a1:7a:c9:9e:d4:5e:00:74:2b:c6:90:d4:b8: fe:db:b0:89:49:f0:c1:4b:00:0e:36:44:53:02:63:b5:3b:6e: 12:3b:08:a1:97:6f:13:d6:20:be:42:e3:78:ee:4b:e1:b9:7c: 39:98:41:e5:f7:14:80:66:c4:12:10:b3:99:6c:4e:9b:68:70: 2f:28:2a:de:c1:34:cd:cd:51:2c:9a:3e:f5:5b:9e:bb:22:bd: 3d:23:af:d8:61:8a:84:9e:dd:22:f2:09:cb:fa:e4:54:a2:5a: a3:f8:dc:87:1d:f1:06:a6:16:d8:b3:83:94:a6:4c:54:ca:5e: b5:ad:f6:65:fa:12:62:b3:93:f0:82:c1:84:c9:b1:c5:b9:1d: 22:59:cb:f8:3b:7a:eb:b0:9b:38:93:83:87:a1:f9:96:d3:68: b3:ac:60:97:fb:d8:f2:fc:0e:a8:7c:df:e4:e2:fa:53:55:b4: 0a:5b:d9:32:60:e9:4b:a0:07:9a:f0:85:b3:28:b1:d9:88:39: 5b:42:07:3b:26:c4:a5:0f:06:f6:6b:e8:2c:2f:d5:22:15:13: 63:e2:34:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM95ZlD/e/tTKX6FYGPYiDADmA1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMjAwWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjgyZTMwM2VkZGJmZmVlMThlMzBiYjhjMDZlZTA1Yzhh NGE2NWU3MTI0ZTRmZDA0MWU1Mzk5N2FiYTBiNDY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbiPi1CKW1Cj5ouZkV0oICllMgsYmcjWwhsPHiZb767tak zAsk1jylNfbXaMO2eSGGpGei4QNiWd8a6Fh8o2276Npr3yUdHEpCO9it2JF8WiYq kNC0JmFZ19IbcWjkkGjQNnnqmgGkMlMkDBRyxA0NAQXdTn1NvFOWA8Qt3OtOHJP8 tipOGDfYdV8m797XbRXfKaX/3fbqcXF3D9Ie3tvw6e1l4F7ptVQx2YnAW5JtCfb0 weGsa9kD1208DfkEYnslPgBQaBt+4Ya1ymBQni7VQFOUH0YYVtidv8NH6+BKlJsr 2sAT4ik8VtH+vB5GBw0+CV5ti9h5bPkuwcYutmjpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8PiycJRqOeiid+qLJQ0lJZZRTBEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmODdlNTMwLTRjZTEtNGY2ZC1hM2JkLTE2MjgyY2ViMzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgrDANBgkqhkiG9w0BAQsFAAOCAQEAa8OXavFezSqkzusiuQscPmxpZQP+ VAHA/SYrNENY1ucPgcJzQzvV0jKhesme1F4AdCvGkNS4/tuwiUnwwUsADjZEUwJj tTtuEjsIoZdvE9YgvkLjeO5L4bl8OZhB5fcUgGbEEhCzmWxOm2hwLygq3sE0zc1R LJo+9VueuyK9PSOv2GGKhJ7dIvIJy/rkVKJao/jchx3xBqYW2LODlKZMVMpeta32 ZfoSYrOT8ILBhMmxxbkdIlnL+Dt667CbOJODh6H5ltNos6xgl/vY8vwOqHzf5OL6 U1W0ClvZMmDpS6AHmvCFsyix2Yg5W0IHOybEpQ8G9mvoLC/VIhUTY+I0aQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:05:05 2025 by rpki-client