$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa File: 14304631-f2a2-48f3-b55d-c59bd6099990.roa (raw, json) Hash identifier: +afbUKGohUTvj5wmLJOgQVVQYXrRMQ5G02C61MF39YI= Subject key identifier: 0A:E3:23:64:A5:4F:5E:44:EB:9A:6E:0A:EA:A3:A4:20:2D:B4:C7:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 712615CD6B4FA55D8B443190487DFE2F9C9DE620 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa Signing time: Thu 08 May 2025 17:21:57 +0000 ROA not before: Thu 08 May 2025 17:21:57 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:26:15:cd:6b:4f:a5:5d:8b:44:31:90:48:7d:fe:2f:9c:9d:e6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 17:21:57 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=2f2d9e4a6b84e1c52d40a9eb213d93bdcec881de0b8c4ecf059f87f59aecd9e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ad:cd:25:e0:c7:11:0e:1e:56:a1:06:5e:ed: 55:dc:b2:82:64:87:b3:0b:9f:60:d4:fd:23:43:9a: a3:16:6f:17:d6:8a:29:67:a1:a2:03:27:75:cd:88: 80:33:51:01:04:5f:99:b3:1d:d8:ac:0d:6e:2a:fe: 01:17:57:18:81:3c:cf:0f:7f:67:72:a4:f5:3d:86: fa:4f:34:6c:11:be:90:9b:5e:8c:c3:1c:ea:13:e0: 3c:cf:25:80:10:05:9f:29:1b:20:e2:7a:67:f6:69: b2:5d:be:e2:59:0f:14:20:16:16:0a:fa:5b:31:74: 8a:31:ae:f8:64:b8:bd:d6:f4:0a:78:7a:c8:e6:03: 07:14:51:81:01:d6:d8:2a:ff:0e:3c:28:c0:f6:11: 3c:a0:30:2c:f5:6c:d3:ae:2b:ad:2a:d1:b5:f6:10: 1f:7c:bd:f1:b3:41:e4:75:f3:f7:6f:9f:2e:85:73: 8a:2f:b0:87:74:6c:1e:c6:88:d8:a9:28:1f:73:4d: d0:9e:b5:32:16:1d:7a:27:56:ce:a7:23:e1:70:b3: 2a:fd:5a:a2:33:e6:a3:61:71:e1:24:25:97:00:4e: f3:6e:bc:b0:28:36:bb:fc:de:86:6f:19:67:d3:8d: ff:c0:37:5a:a6:cd:42:0f:e4:b9:4a:4e:fb:dd:65: d7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E3:23:64:A5:4F:5E:44:EB:9A:6E:0A:EA:A3:A4:20:2D:B4:C7:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.112.0/20 Signature Algorithm: sha256WithRSAEncryption 32:55:11:69:f9:75:c9:66:07:44:f7:4f:94:b2:bd:b2:db:76: 94:01:15:52:71:b4:93:bb:f0:f1:1a:b2:fc:34:12:88:39:e5: c4:d2:5f:2d:a3:b4:02:20:12:4f:6f:56:88:79:06:e8:9b:ae: 37:71:12:51:d1:38:e4:3e:67:dd:c3:83:fc:d7:61:58:75:ff: a8:36:2e:3d:5d:f5:97:69:42:4e:70:2d:56:cc:11:f5:56:cc: 3f:17:ba:69:c6:67:09:37:85:38:b4:ef:70:96:5e:fc:4d:76: 2a:d9:d5:14:fd:40:f2:fa:29:51:39:bf:4e:d3:9e:06:e5:9b: 54:25:f5:78:84:7b:76:4c:88:4f:6f:53:93:de:f9:df:f5:c7: 8c:dc:3e:34:22:ec:ce:dc:a1:7b:86:eb:ce:8a:93:e9:ed:d4: 76:ed:7b:ae:eb:9b:0e:e4:84:b6:71:cb:c3:b7:03:1f:02:ce: e6:27:8b:99:28:53:d2:96:71:f8:3e:8d:99:79:a4:a7:58:86: 41:1d:25:a8:48:2c:54:f4:9e:cb:92:bb:68:5d:2f:c7:5f:1c: 0b:24:9e:d2:07:e8:4c:91:63:03:6c:53:54:6b:f1:2a:06:de: a3:d7:26:6c:9f:b7:b0:d2:09:a7:15:08:77:44:d7:71:14:db: 66:96:73:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcSYVzWtPpV2LRDGQSH3+L5yd5iAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTcyMTU3WhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjJkOWU0YTZiODRlMWM1MmQ0MGE5ZWIyMTNkOTNiZGNl Yzg4MWRlMGI4YzRlY2YwNTlmODdmNTlhZWNkOWUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnrc0l4McRDh5WoQZe7VXcsoJkh7MLn2DU/SNDmqMWbxfW iilnoaIDJ3XNiIAzUQEEX5mzHdisDW4q/gEXVxiBPM8Pf2dypPU9hvpPNGwRvpCb XozDHOoT4DzPJYAQBZ8pGyDiemf2abJdvuJZDxQgFhYK+lsxdIoxrvhkuL3W9Ap4 esjmAwcUUYEB1tgq/w48KMD2ETygMCz1bNOuK60q0bX2EB98vfGzQeR18/dvny6F c4ovsId0bB7GiNipKB9zTdCetTIWHXonVs6nI+Fwsyr9WqIz5qNhceEkJZcATvNu vLAoNrv83oZvGWfTjf/AN1qmzUIP5LlKTvvdZdedAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCuMjZKVPXkTrmm4K6qOkIC20x3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MzA0NjMxLWYyYTItNDhmMy1iNTVkLWM1OWJkNjA5OTk5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgHAwDQYJKoZIhvcNAQELBQADggEBADJVEWn5dclmB0T3T5SyvbLbdpQB FVJxtJO78PEasvw0Eog55cTSXy2jtAIgEk9vVoh5BuibrjdxElHROOQ+Z93Dg/zX YVh1/6g2Lj1d9ZdpQk5wLVbMEfVWzD8XumnGZwk3hTi073CWXvxNdirZ1RT9QPL6 KVE5v07Tngblm1Ql9XiEe3ZMiE9vU5Pe+d/1x4zcPjQi7M7coXuG686Kk+nt1Hbt e67rmw7khLZxy8O3Ax8CzuYni5koU9KWcfg+jZl5pKdYhkEdJahILFT0nsuSu2hd L8dfHAskntIH6EyRYwNsU1Rr8SoG3qPXJmyft7DSCacVCHdE13EU22aWcwc= -----END CERTIFICATE-----Generated at Mon May 12 01:32:18 2025 by rpki-client