$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01aaad2b-8349-48b0-beda-23e6cb0363d7.roa File: 01aaad2b-8349-48b0-beda-23e6cb0363d7.roa (raw, json) Hash identifier: KQ2Z7XQY4l/jdiQxDyf0mQKKbsC+vqmRs3cbo4U2hyM= Subject key identifier: E5:2F:F5:FD:D4:DA:80:D5:50:43:57:DE:2F:21:B1:5D:62:18:BF:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 302F857D38881E8B7816574E6FDE1800D91FB90C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01aaad2b-8349-48b0-beda-23e6cb0363d7.roa Signing time: Wed 02 Jul 2025 00:31:42 +0000 ROA not before: Wed 02 Jul 2025 00:31:42 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.230.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2f:85:7d:38:88:1e:8b:78:16:57:4e:6f:de:18:00:d9:1f:b9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:31:42 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=50e18114defb5dda689fc14257516ef6ff5c39bb0f021c20c53903cf8115605e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:63:0c:44:9c:51:b9:87:8e:b1:43:5a:16: 6b:c6:79:1e:63:de:fb:0c:3e:29:d7:bf:9e:7b:9e: 02:cd:98:69:ec:8c:8d:42:7d:83:b1:55:da:04:f8: 8b:4a:ef:7a:e3:cc:a9:0e:ed:37:0b:19:e5:80:5f: 6f:9c:51:21:56:0d:d8:98:09:ea:ae:1e:d1:18:fd: 96:7c:e3:9f:b9:5d:d6:6f:3a:70:db:8c:b9:7a:04: af:bf:3a:da:df:94:03:eb:50:58:9b:01:2f:da:57: 53:89:56:f8:fc:76:4d:36:99:98:b8:de:27:05:2d: 50:9e:a3:01:68:e2:72:48:20:d3:bf:aa:2d:e6:b5: 3f:8b:42:25:ec:ce:d3:ff:4a:94:9d:b6:c4:7f:71: a3:bd:f0:44:29:0e:11:12:e7:44:a2:34:4d:cb:e8: 99:e5:cf:3a:1d:fc:cf:ac:0e:b0:7f:a9:13:07:ff: d4:2b:69:c0:cc:98:af:af:7b:b5:df:37:9b:70:d8: a1:fe:d1:da:df:dd:e6:90:bd:7d:69:76:f1:e4:8e: 8a:d2:6b:92:94:b6:e3:c8:59:02:b3:ba:02:1c:de: 40:db:76:0c:89:10:f3:ae:44:33:4a:69:16:db:7a: 62:fb:59:fe:76:79:08:51:11:5b:b6:ce:3f:b3:41: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2F:F5:FD:D4:DA:80:D5:50:43:57:DE:2F:21:B1:5D:62:18:BF:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01aaad2b-8349-48b0-beda-23e6cb0363d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.230.92.0/24 Signature Algorithm: sha256WithRSAEncryption c2:2a:17:f5:d7:70:34:93:9e:26:77:82:f1:19:41:34:1e:3f: 58:95:9b:e9:3f:53:ec:4c:fe:8a:a2:61:9d:c7:c6:14:c3:5b: d8:c6:ab:5d:56:2c:9a:0b:a7:3e:3e:eb:1c:8b:41:3d:37:db: 4a:0b:7f:22:ff:a2:3e:ed:f5:8b:1f:07:81:7f:82:cd:28:86: 93:ba:49:56:4b:5e:b0:e2:89:32:42:10:72:b8:99:92:22:91: 06:d1:e1:63:70:39:d7:fd:86:bf:80:df:f0:2d:8b:4e:d0:be: 2e:1a:7e:42:7d:0c:b1:d2:8f:82:a9:3e:63:cd:42:10:44:b0: 93:02:97:5b:91:c1:f5:9d:b5:ef:27:d3:d7:5f:52:fc:fb:40: f5:3e:e6:d8:23:06:fa:58:7e:f1:a5:92:aa:a9:ea:84:a6:23: ba:b8:cd:ff:f4:72:22:e2:3e:e4:de:64:bf:97:83:71:9b:dc: 5f:38:d9:08:42:d1:a9:ab:52:60:2f:d7:7a:22:66:12:e4:8c: e5:29:c2:81:98:c7:01:98:bc:7e:6f:96:c5:e7:88:1d:26:f7: 46:2c:2e:f4:13:b7:c1:23:52:7f:b9:e9:8e:4c:b0:67:8a:8b: a4:02:6a:81:6b:df:fe:17:9e:1f:40:56:4b:06:b9:6d:5c:d0: 04:a2:6b:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMC+FfTiIHot4FldOb94YANkfuQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAzMTQyWhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGUxODExNGRlZmI1ZGRhNjg5ZmMxNDI1NzUxNmVmNmZm NWMzOWJiMGYwMjFjMjBjNTM5MDNjZjgxMTU2MDVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC58GMMRJxRuYeOsUNaFmvGeR5j3vsMPinXv557ngLNmGns jI1CfYOxVdoE+ItK73rjzKkO7TcLGeWAX2+cUSFWDdiYCequHtEY/ZZ845+5XdZv OnDbjLl6BK+/OtrflAPrUFibAS/aV1OJVvj8dk02mZi43icFLVCeowFo4nJIINO/ qi3mtT+LQiXsztP/SpSdtsR/caO98EQpDhES50SiNE3L6Jnlzzod/M+sDrB/qRMH /9QracDMmK+ve7XfN5tw2KH+0drf3eaQvX1pdvHkjorSa5KUtuPIWQKzugIc3kDb dgyJEPOuRDNKaRbbemL7Wf52eQhREVu2zj+zQSDbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5S/1/dTagNVQQ1feLyGxXWIYv2IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxYWFhZDJiLTgzNDktNDhiMC1iZWRhLTIzZTZjYjAzNjNkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY5lwwDQYJKoZIhvcNAQELBQADggEBAMIqF/XXcDSTniZ3gvEZQTQeP1iV m+k/U+xM/oqiYZ3HxhTDW9jGq11WLJoLpz4+6xyLQT0320oLfyL/oj7t9YsfB4F/ gs0ohpO6SVZLXrDiiTJCEHK4mZIikQbR4WNwOdf9hr+A3/Ati07Qvi4afkJ9DLHS j4KpPmPNQhBEsJMCl1uRwfWdte8n09dfUvz7QPU+5tgjBvpYfvGlkqqp6oSmI7q4 zf/0ciLiPuTeZL+Xg3Gb3F842QhC0amrUmAv13oiZhLkjOUpwoGYxwGYvH5vlsXn iB0m90YsLvQTt8EjUn+56Y5MsGeKi6QCaoFr3/4Xnh9AVksGuW1c0ASia5A= -----END CERTIFICATE-----Generated at Wed Jul 2 05:23:42 2025 by rpki-client