$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa File: ffb6038f-b139-4708-b914-4c688fc3609a.roa (raw, json) Hash identifier: 4Tg1oBkpC6UjVPqfnAc/+CGpS07eADCPW61VKIGg8Ag= Subject key identifier: 4F:9F:07:07:7F:68:F0:77:F8:AD:17:48:22:31:32:9C:DF:B9:DC:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67D369007532E4D2A55A99256A20841634325E79 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa Signing time: Mon 19 May 2025 17:21:10 +0000 ROA not before: Mon 19 May 2025 17:21:10 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d3:69:00:75:32:e4:d2:a5:5a:99:25:6a:20:84:16:34:32:5e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:21:10 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=3c6095515e22b0b1ffed8820e5440bc72010b4185daaef55817276cb67d6e6e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:98:ee:9c:d4:2a:10:6c:33:22:b7:75:58: 36:9c:e5:33:9e:7c:2d:91:91:13:7d:84:3e:cd:eb: 80:51:b7:c8:4e:cb:79:33:8e:8f:13:52:c6:59:22: f4:db:f8:78:da:91:2d:b0:1a:8d:05:32:c3:a6:bf: 0d:fd:e8:de:dc:0b:e7:b7:80:02:f6:94:21:bb:23: 06:80:90:29:2a:12:bf:f0:76:cc:fe:89:22:40:c9: 40:33:ae:46:43:b8:ef:bb:53:fc:92:b0:ca:9e:cc: 76:da:19:3b:4f:66:28:f8:57:fb:1c:f0:2b:ae:c2: cf:a2:eb:46:c0:66:77:f3:63:b6:73:de:c7:48:95: d3:bb:8b:ef:38:cd:06:ed:32:63:1a:92:fa:32:dd: 4b:b5:e2:53:41:b1:61:86:49:c3:92:9e:e7:6e:06: 73:fc:fc:c6:d4:c0:74:b4:e7:45:f8:57:11:be:29: dc:f2:42:43:ed:d8:97:a7:f9:54:c3:36:41:cc:06: db:c8:d2:55:bf:50:bf:f7:c4:35:d6:cb:1c:8a:ed: 89:f3:95:72:b3:ca:98:5d:c9:2a:0d:86:59:39:cd: c5:24:da:fd:26:9e:67:1e:5e:a0:64:26:56:cf:55: 53:92:ab:99:0d:c1:42:fc:d7:bf:fe:76:98:e2:2a: b2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9F:07:07:7F:68:F0:77:F8:AD:17:48:22:31:32:9C:DF:B9:DC:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:0f:1b:22:b1:e5:bc:5b:c3:ce:16:15:19:41:b9:44:79:8d: 11:93:fe:6a:eb:07:f2:08:b8:a2:2f:95:68:43:3b:94:a4:28: 47:57:84:23:f1:99:c9:2e:3a:28:87:b8:8d:2a:cc:6e:c7:48: 00:e6:90:b2:56:cb:00:95:b9:11:86:51:20:3f:fb:c4:d7:d2: 83:62:5d:c7:98:a2:ec:9b:fb:eb:34:a3:4c:62:84:ed:b1:31: 46:6d:f6:a7:b9:a6:06:3e:36:b4:56:d8:36:a5:56:61:b1:7f: 86:d9:1b:9f:f3:b5:f0:01:67:22:d8:e5:6f:a6:4f:be:b9:1b: a9:67:e1:ce:4e:76:ff:c7:2e:c7:56:09:45:3e:43:43:f7:da: a4:3d:61:d0:95:e6:0f:c8:11:f6:13:40:0e:0e:63:fd:db:fa: b4:e0:0e:d7:5a:ad:46:7c:5f:57:91:74:a3:05:d3:54:19:2c: 14:8c:42:85:f2:fd:5d:3b:91:6b:4f:e6:01:ee:b5:c9:3a:24: 1e:f5:be:00:ab:27:0b:c4:02:e4:7c:11:0b:6f:4c:58:00:91: b7:29:21:0c:93:79:b0:ab:c4:0f:13:eb:c8:a9:08:e4:90:af: 25:fd:a4:5a:f5:b3:d3:df:17:ea:e0:6c:fd:8e:af:cc:ba:84: b8:cc:7a:8d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ9NpAHUy5NKlWpklaiCEFjQyXnkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTcyMTEwWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzYwOTU1MTVlMjJiMGIxZmZlZDg4MjBlNTQ0MGJjNzIw MTBiNDE4NWRhYWVmNTU4MTcyNzZjYjY3ZDZlNmU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2QpjunNQqEGwzIrd1WDac5TOefC2RkRN9hD7N64BRt8hO y3kzjo8TUsZZIvTb+HjakS2wGo0FMsOmvw396N7cC+e3gAL2lCG7IwaAkCkqEr/w dsz+iSJAyUAzrkZDuO+7U/ySsMqezHbaGTtPZij4V/sc8Cuuws+i60bAZnfzY7Zz 3sdIldO7i+84zQbtMmMakvoy3Uu14lNBsWGGScOSnuduBnP8/MbUwHS050X4VxG+ KdzyQkPt2Jen+VTDNkHMBtvI0lW/UL/3xDXWyxyK7YnzlXKzyphdySoNhlk5zcUk 2v0mnmceXqBkJlbPVVOSq5kNwUL817/+dpjiKrIDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUT58HB39o8Hf4rRdIIjEynN+53GIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmYjYwMzhmLWIxMzktNDcwOC1iOTE0LTRjNjg4ZmMzNjA5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg1jANBgkqhkiG9w0BAQsFAAOCAQEAZA8bIrHlvFvDzhYVGUG5RHmNEZP+ ausH8gi4oi+VaEM7lKQoR1eEI/GZyS46KIe4jSrMbsdIAOaQslbLAJW5EYZRID/7 xNfSg2Jdx5ii7Jv76zSjTGKE7bExRm32p7mmBj42tFbYNqVWYbF/htkbn/O18AFn Itjlb6ZPvrkbqWfhzk52/8cux1YJRT5DQ/fapD1h0JXmD8gR9hNADg5j/dv6tOAO 11qtRnxfV5F0owXTVBksFIxChfL9XTuRa0/mAe61yTokHvW+AKsnC8QC5HwRC29M WACRtykhDJN5sKvEDxPryKkI5JCvJf2kWvWz098X6uBs/Y6vzLqEuMx6jQ== -----END CERTIFICATE-----Generated at Mon Jun 2 16:51:32 2025 by rpki-client