$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aca7cdb-898e-4187-9140-4f8871c28fb0.roa File: 0aca7cdb-898e-4187-9140-4f8871c28fb0.roa (raw, json) Hash identifier: /B5L1wx2yuv0u12mkWzDdgB6swENJ7kF69ZrR3gtS48= Subject key identifier: 96:9D:FE:68:69:CD:2C:EF:F2:A6:CB:E7:DC:C9:8A:8B:F1:39:31:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 602CD0E2C9AC8A8089AEEA74E113AD351FB775D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aca7cdb-898e-4187-9140-4f8871c28fb0.roa Signing time: Tue 24 Jun 2025 00:31:57 +0000 ROA not before: Tue 24 Jun 2025 00:31:57 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.220.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:2c:d0:e2:c9:ac:8a:80:89:ae:ea:74:e1:13:ad:35:1f:b7:75:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:31:57 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=78d134fe49cd1f55a76aca56da97179996dfe4159d89ee565d6a612e32263ad9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:fb:18:4a:d3:55:73:fe:88:a3:80:e6:30: 5b:ce:a6:0e:e8:34:95:e7:3b:3a:c3:0f:a7:fc:89: c3:9a:6b:32:b5:39:f1:e2:0e:a4:cd:99:6b:7b:63: 6d:66:b5:25:60:a5:9b:2f:ca:83:19:14:06:7a:3f: 82:ad:d1:97:34:0a:af:ce:ff:6a:7e:8b:97:a7:52: 2e:be:ba:ab:36:e3:c5:fc:52:b7:88:78:56:94:86: 19:08:79:9f:2d:98:1c:93:92:86:61:5e:eb:4e:a5: 7c:ac:0f:69:64:89:ba:60:b8:ab:0e:fa:e5:a4:7c: 39:5d:64:d4:a1:dd:6f:19:05:0d:9e:0f:04:30:90: 8d:38:42:37:ca:b7:33:51:0e:e1:be:7b:51:72:50: ba:6d:85:35:77:df:fe:27:2d:a6:25:df:7c:b5:b0: f9:be:96:3f:08:93:4d:ab:d2:bf:86:44:61:cf:1f: f0:43:23:43:90:c0:36:d6:98:1e:4c:b5:67:16:18: 88:48:2c:da:51:74:f7:b0:2d:87:79:1c:08:56:51: 3e:fd:bf:c1:65:ee:b1:03:14:b2:23:9f:9e:50:18: 05:eb:3d:dd:bb:b9:51:2f:93:fb:bc:0e:88:36:ca: 29:34:2a:11:a7:24:83:25:a4:f3:02:ef:ad:34:30: aa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9D:FE:68:69:CD:2C:EF:F2:A6:CB:E7:DC:C9:8A:8B:F1:39:31:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aca7cdb-898e-4187-9140-4f8871c28fb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.220.240.0/20 Signature Algorithm: sha256WithRSAEncryption 10:8b:b6:16:77:d8:3d:7a:8b:9d:64:93:73:7a:c0:2a:d7:36: 1a:e0:91:a5:dc:c9:4b:62:a0:18:df:25:6a:b6:bb:60:0e:3b: 8d:ca:02:b8:cf:2e:a4:fa:23:89:f4:05:8c:18:34:33:4b:c0: 85:6f:a8:31:85:97:8c:cd:e2:d4:21:3b:0d:df:ff:74:57:21: 2a:28:e3:1d:39:ef:b2:76:9f:6e:89:b9:4b:6d:11:a9:1d:9e: b0:f5:02:9b:ae:7d:89:71:ae:54:36:f0:24:9c:2e:e3:43:42: 04:03:c1:f1:5c:66:0b:28:e9:e2:48:90:b2:2f:cb:d5:58:8e: 16:76:d1:c8:d9:c9:f9:b8:51:ec:a9:43:3e:8e:ed:d5:99:23: 28:9e:3c:86:3e:95:21:6a:b7:c3:2e:85:65:16:93:4e:28:87: 75:b4:88:a8:a4:95:1a:c7:8d:13:be:62:5b:6c:b2:5a:6d:02: 98:38:ec:1b:4f:e5:e7:0e:a8:f9:48:04:c6:f8:52:51:b9:7f: 50:51:2e:6b:55:ef:c2:04:7a:e2:b8:60:ea:02:e5:7c:b3:a0: cd:0f:f6:9d:c3:34:31:81:0f:0a:63:22:ba:51:63:38:c6:5b: d0:20:e3:27:f2:ad:17:63:97:ab:ee:af:ee:15:70:47:fa:a7: 32:8e:58:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYCzQ4smsioCJrup04ROtNR+3ddcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAzMTU3WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGQxMzRmZTQ5Y2QxZjU1YTc2YWNhNTZkYTk3MTc5OTk2 ZGZlNDE1OWQ4OWVlNTY1ZDZhNjEyZTMyMjYzYWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZOPsYStNVc/6Io4DmMFvOpg7oNJXnOzrDD6f8icOaazK1 OfHiDqTNmWt7Y21mtSVgpZsvyoMZFAZ6P4Kt0Zc0Cq/O/2p+i5enUi6+uqs248X8 UreIeFaUhhkIeZ8tmByTkoZhXutOpXysD2lkibpguKsO+uWkfDldZNSh3W8ZBQ2e DwQwkI04QjfKtzNRDuG+e1FyULpthTV33/4nLaYl33y1sPm+lj8Ik02r0r+GRGHP H/BDI0OQwDbWmB5MtWcWGIhILNpRdPewLYd5HAhWUT79v8Fl7rEDFLIjn55QGAXr Pd27uVEvk/u8Dog2yik0KhGnJIMlpPMC7600MKrJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlp3+aGnNLO/ypsvn3MmKi/E5MWQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhY2E3Y2RiLTg5OGUtNDE4Ny05MTQwLTRmODg3MWMyOGZiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARD3PAwDQYJKoZIhvcNAQELBQADggEBABCLthZ32D16i51kk3N6wCrXNhrg kaXcyUtioBjfJWq2u2AOO43KArjPLqT6I4n0BYwYNDNLwIVvqDGFl4zN4tQhOw3f /3RXISoo4x0577J2n26JuUttEakdnrD1ApuufYlxrlQ28CScLuNDQgQDwfFcZgso 6eJIkLIvy9VYjhZ20cjZyfm4UeypQz6O7dWZIyiePIY+lSFqt8MuhWUWk04oh3W0 iKiklRrHjRO+YltsslptApg47BtP5ecOqPlIBMb4UlG5f1BRLmtV78IEeuK4YOoC 5XyzoM0P9p3DNDGBDwpjIrpRYzjGW9Ag4yfyrRdjl6vur+4VcEf6pzKOWBc= -----END CERTIFICATE-----Generated at Sun Jun 29 08:57:36 2025 by rpki-client