$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baad54a-dc1f-452b-8384-51f385f5e3c5.roa File: 0baad54a-dc1f-452b-8384-51f385f5e3c5.roa (raw, json) Hash identifier: bijUb3Wv0n0iwLt9TZ4aYTCApJLLhzbRTma9pe7y5ms= Subject key identifier: 13:7F:02:05:52:1A:00:B3:98:C5:9B:57:F9:D3:62:EE:5B:D7:01:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2076B28B48AB10586373180105464545B0506BAD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baad54a-dc1f-452b-8384-51f385f5e3c5.roa Signing time: Sat 21 Jun 2025 00:00:20 +0000 ROA not before: Sat 21 Jun 2025 00:00:20 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:76:b2:8b:48:ab:10:58:63:73:18:01:05:46:45:45:b0:50:6b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:00:20 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=2b73afd822a6b3785857c08279df0ada0a8c4f0a3e7c7e8646320ee4563902fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:4f:52:5c:88:29:0d:e9:a4:aa:1d:81:f7: 75:e6:37:1c:b0:50:e1:fb:a2:53:a8:74:58:b0:f8: af:67:c6:ad:61:6a:53:31:11:a1:50:3a:5f:cf:01: 0b:e6:2a:7a:e5:e2:61:6f:4d:13:bc:65:5b:a1:0b: f8:30:54:7f:17:7a:9b:c2:0a:53:f4:e2:f9:0a:55: bb:0f:ef:5e:84:23:c7:10:c7:d5:cc:44:72:e0:3d: 21:bf:76:f8:86:b4:22:78:cd:8e:5e:fe:80:b0:c3: bf:41:fd:e9:43:c5:b5:18:82:be:2c:06:d0:8c:b6: a0:e2:89:be:c8:a9:6e:25:9e:77:b0:3c:ef:35:5b: 33:d3:7f:e4:90:ed:2c:d9:14:ad:dd:54:5e:c7:e6: e6:fb:53:93:ee:f2:45:5e:3a:55:3d:83:53:fc:60: 7c:5b:9a:e3:27:d4:d4:09:97:08:da:88:89:6e:05: 75:13:8e:e7:f4:8c:b9:f3:02:67:15:83:bf:57:41: 8e:1e:6b:46:69:d7:1c:1e:56:e5:b9:75:c7:b8:ec: a0:24:5b:ab:2a:a2:f5:32:5f:cd:6d:ee:22:05:e1: 1b:84:83:52:2f:87:be:52:75:1c:1b:a5:50:5e:d5: 62:6a:aa:8d:4e:69:92:be:dd:a9:31:d2:36:1a:66: fb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7F:02:05:52:1A:00:B3:98:C5:9B:57:F9:D3:62:EE:5B:D7:01:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baad54a-dc1f-452b-8384-51f385f5e3c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:53:e5:04:c9:fe:0a:b9:15:ca:18:f5:40:9c:e0:84:db:6a: dd:27:2c:da:ce:1a:fb:01:98:fa:56:6a:bf:fe:74:2c:eb:df: 0d:90:48:f3:14:25:0c:af:ef:71:a6:d4:3a:5a:44:88:64:79: 14:09:6c:87:f0:aa:4c:2e:3d:0a:c4:9b:0c:94:07:30:0b:ee: e0:6e:44:67:3a:ee:0f:d0:89:d4:71:10:d8:cb:a0:ed:14:4d: b1:78:29:90:aa:a2:16:ea:36:7f:dd:55:2b:f7:16:68:59:83: 16:fd:21:ec:80:6f:64:f7:fd:8f:5b:93:b2:55:49:60:06:d8: 1d:6e:bf:a3:42:94:36:1c:18:93:56:77:39:69:61:3a:66:c7: 34:1c:4c:ed:9f:fb:5a:35:0e:30:c5:e8:ce:f6:51:cf:d9:f3: c3:07:e9:aa:c4:51:d5:f6:2a:25:0c:1e:76:8b:fb:07:16:4e: 97:43:87:84:00:64:ce:f1:a8:ac:cf:93:12:e6:62:7a:78:12: aa:fb:d9:fd:7c:15:b5:e6:3e:b0:06:5f:85:e0:3b:e7:c1:7b: 81:3e:24:1e:79:8d:b7:e3:14:bf:00:c2:27:68:b8:30:31:2f: 7f:1b:02:cd:4b:d0:4d:e3:22:54:b4:79:61:55:d9:0c:d3:99: c0:b8:0d:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIHayi0irEFhjcxgBBUZFRbBQa60wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAwMDIwWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjczYWZkODIyYTZiMzc4NTg1N2MwODI3OWRmMGFkYTBh OGM0ZjBhM2U3YzdlODY0NjMyMGVlNDU2MzkwMmZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsM09SXIgpDemkqh2B93XmNxywUOH7olOodFiw+K9nxq1h alMxEaFQOl/PAQvmKnrl4mFvTRO8ZVuhC/gwVH8XepvCClP04vkKVbsP716EI8cQ x9XMRHLgPSG/dviGtCJ4zY5e/oCww79B/elDxbUYgr4sBtCMtqDiib7IqW4lnnew PO81WzPTf+SQ7SzZFK3dVF7H5ub7U5Pu8kVeOlU9g1P8YHxbmuMn1NQJlwjaiIlu BXUTjuf0jLnzAmcVg79XQY4ea0Zp1xweVuW5dce47KAkW6sqovUyX81t7iIF4RuE g1Ivh75SdRwbpVBe1WJqqo1OaZK+3akx0jYaZvt5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUE38CBVIaALOYxZtX+dNi7lvXAXEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYWFkNTRhLWRjMWYtNDUyYi04Mzg0LTUxZjM4NWY1ZTNjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVvjANBgkqhkiG9w0BAQsFAAOCAQEAN1PlBMn+CrkVyhj1QJzghNtq3Scs 2s4a+wGY+lZqv/50LOvfDZBI8xQlDK/vcabUOlpEiGR5FAlsh/CqTC49CsSbDJQH MAvu4G5EZzruD9CJ1HEQ2Mug7RRNsXgpkKqiFuo2f91VK/cWaFmDFv0h7IBvZPf9 j1uTslVJYAbYHW6/o0KUNhwYk1Z3OWlhOmbHNBxM7Z/7WjUOMMXozvZRz9nzwwfp qsRR1fYqJQwedov7BxZOl0OHhABkzvGorM+TEuZiengSqvvZ/XwVteY+sAZfheA7 58F7gT4kHnmNt+MUvwDCJ2i4MDEvfxsCzUvQTeMiVLR5YVXZDNOZwLgNXw== -----END CERTIFICATE-----Generated at Wed Jul 2 11:45:41 2025 by rpki-client