$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa File: 6da9618c-e798-462f-afd9-32b58ba88cba.roa (raw, json) Hash identifier: YyVN1ZUe971kvEmj9lOHIGHM2Lh3J5cGZFYSPaZceHE= Subject key identifier: 4D:C1:A9:AD:FE:02:67:C3:45:E4:90:C1:63:65:0E:F2:8B:91:2E:4C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 528A8E79AEB04C43E90A642D8FFF97C84854119B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa Signing time: Sat 31 May 2025 00:10:01 +0000 ROA not before: Sat 31 May 2025 00:10:01 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8a:8e:79:ae:b0:4c:43:e9:0a:64:2d:8f:ff:97:c8:48:54:11:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:01 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=f43a2ff0e32b254dd65c4b6a49a536b1497a03b0c7d02a6158c14dabd302830f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:73:54:04:c5:77:7c:e4:be:2c:7d:29:41: b7:71:53:ad:a3:78:9c:b6:b3:68:71:44:58:ca:52: 26:6f:14:bc:75:fe:a2:28:64:c8:17:bc:a1:83:33: 33:1c:ab:ac:aa:37:bb:5f:b9:4f:04:08:ee:f6:af: a7:c2:e4:ed:66:6b:77:5b:09:b9:28:31:4b:f8:a2: 44:62:84:b0:c1:00:08:3e:0d:aa:45:5e:da:a7:59: c7:6e:63:f4:a4:45:5c:8f:ef:be:0e:11:47:a8:b1: c2:ed:ce:77:46:40:8f:44:34:8f:a6:1c:7b:9c:a3: a5:52:57:fb:1b:a2:de:fa:3f:9d:1d:96:f0:ff:53: c3:bb:f4:c2:3c:ed:57:13:9b:83:10:cd:d0:9f:4c: 83:0a:98:16:7b:1b:45:40:45:a3:cf:af:23:2d:c9: ff:31:e3:cb:ab:bb:ca:5f:2b:77:33:23:b0:c5:f2: 65:29:f4:bf:5f:fe:14:2d:c1:74:2f:af:df:63:7f: 9a:07:bf:c5:11:c9:a4:04:54:0e:25:9c:1c:aa:d9: 46:d2:37:19:a3:ed:9b:fb:39:76:75:80:fb:4c:f0: f1:ac:8f:ec:f5:69:80:e4:bb:a7:1b:f9:b7:91:e3: cc:8c:93:c2:64:33:cc:f6:bd:96:5c:05:c8:12:cc: 1c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C1:A9:AD:FE:02:67:C3:45:E4:90:C1:63:65:0E:F2:8B:91:2E:4C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 20:e8:ee:47:df:b9:4c:82:c0:ca:e1:77:5c:d7:92:9a:4c:62: cd:67:4b:a3:bc:0e:8d:e3:a1:3e:28:aa:88:a4:da:90:00:ea: 98:1a:75:4d:9b:3a:e8:f5:cc:31:de:4b:00:fa:1e:05:a0:83: 15:df:f9:0c:5d:ec:82:c7:de:69:ae:e0:57:59:b1:42:73:d4: dd:a2:de:47:4b:d9:12:cd:91:07:3f:bf:40:5e:86:2a:e9:98: 6e:9b:48:ae:7d:0b:ab:b7:c2:36:04:b5:e3:55:f2:08:cd:01: f0:52:13:21:82:8c:0b:06:c7:fd:58:67:ac:3a:38:75:ac:b7: 2b:bf:34:66:20:70:f1:91:3e:4d:c2:dc:f6:22:80:24:b8:2f: 31:a7:97:61:57:d6:e7:6b:38:1b:c7:54:17:b2:58:ce:d5:fd: 4e:c1:64:4d:19:84:d2:97:c1:cf:1d:48:55:65:04:c6:c4:f9: 8d:18:6c:40:79:76:e4:0b:61:45:d4:f6:fa:8e:a5:68:f8:09: 21:1b:c8:8a:69:45:c5:5e:e6:65:b4:77:98:04:3e:66:48:b2: 8b:4f:59:70:e7:af:29:1d:fa:0e:29:7e:b5:37:b8:d5:75:84: da:a9:8e:1a:93:79:70:5f:fd:5b:18:70:87:3e:f2:61:da:08: bd:4a:3f:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUoqOea6wTEPpCmQtj/+XyEhUEZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDAxWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDNhMmZmMGUzMmIyNTRkZDY1YzRiNmE0OWE1MzZiMTQ5 N2EwM2IwYzdkMDJhNjE1OGMxNGRhYmQzMDI4MzBmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1s3NUBMV3fOS+LH0pQbdxU62jeJy2s2hxRFjKUiZvFLx1 /qIoZMgXvKGDMzMcq6yqN7tfuU8ECO72r6fC5O1ma3dbCbkoMUv4okRihLDBAAg+ DapFXtqnWcduY/SkRVyP774OEUeoscLtzndGQI9ENI+mHHuco6VSV/sbot76P50d lvD/U8O79MI87VcTm4MQzdCfTIMKmBZ7G0VARaPPryMtyf8x48uru8pfK3czI7DF 8mUp9L9f/hQtwXQvr99jf5oHv8URyaQEVA4lnByq2UbSNxmj7Zv7OXZ1gPtM8PGs j+z1aYDku6cb+beR48yMk8JkM8z2vZZcBcgSzByDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTcGprf4CZ8NF5JDBY2UO8ouRLkwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzZkYTk2MThjLWU3OTgtNDYyZi1hZmQ5LTMyYjU4YmE4OGNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFqeAwDQYJKoZIhvcNAQELBQADggEBACDo7kffuUyCwMrhd1zXkppMYs1n S6O8Do3joT4oqoik2pAA6pgadU2bOuj1zDHeSwD6HgWggxXf+Qxd7ILH3mmu4FdZ sUJz1N2i3kdL2RLNkQc/v0BehirpmG6bSK59C6u3wjYEteNV8gjNAfBSEyGCjAsG x/1YZ6w6OHWstyu/NGYgcPGRPk3C3PYigCS4LzGnl2FX1udrOBvHVBeyWM7V/U7B ZE0ZhNKXwc8dSFVlBMbE+Y0YbEB5duQLYUXU9vqOpWj4CSEbyIppRcVe5mW0d5gE PmZIsotPWXDnrykd+g4pfrU3uNV1hNqpjhqTeXBf/VsYcIc+8mHaCL1KP3s= -----END CERTIFICATE-----Generated at Fri Jun 6 03:49:20 2025 by rpki-client