$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa File: 18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa (raw, json) Hash identifier: hzlP65nf4+DEbT8Lr5jvT75/7D4F0srtg195Nq3JKI0= Subject key identifier: 18:E7:B1:2A:BC:0C:82:2F:55:C5:54:27:26:2B:99:63:6D:E0:57:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27E1D24D47090F2AD19EF5B9C1D183D81F6EF4E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa Signing time: Fri 09 May 2025 00:10:25 +0000 ROA not before: Fri 09 May 2025 00:10:25 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e1:d2:4d:47:09:0f:2a:d1:9e:f5:b9:c1:d1:83:d8:1f:6e:f4:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:25 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=6bf4a6be8013648d934045358cb3c4f263b36b4086d592b3ff5922355cd65482, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:1f:12:8a:6b:e3:7c:25:31:b8:c3:1c:9f:a9: 75:70:d7:32:4b:46:bc:9b:8b:04:3d:40:d3:aa:87: 4e:5f:d0:87:43:ba:78:83:44:4f:49:06:c0:ff:9b: c2:b2:3a:1a:50:54:c5:3b:47:02:73:08:71:99:81: 1b:13:e3:42:19:ad:1f:37:60:cb:0b:b4:1d:84:3c: b6:66:49:ea:fc:60:8c:64:c0:a7:41:f3:19:9f:d3: f8:de:7a:d8:c1:c7:3b:3d:01:6f:37:29:08:0f:fc: 25:68:9c:2c:54:71:17:1d:9c:a7:19:ab:ae:24:20: 3c:d9:29:69:c2:26:62:f9:23:2e:48:20:75:a4:68: 19:f6:3f:ba:c3:68:11:fd:39:89:da:f1:e7:59:e0: a8:1b:fa:62:e4:81:8c:31:ba:77:c6:20:39:cc:cc: 70:6b:0b:c2:ac:55:44:8a:eb:c6:c8:ce:15:34:c2: 52:f1:b9:cd:96:d4:1e:c4:63:1f:ff:77:fe:4c:03: eb:62:11:af:14:76:04:10:6b:56:14:56:08:41:59: 00:dd:7a:90:7f:68:61:fc:70:8c:f6:63:b5:7a:3d: 70:d0:bb:ac:c8:93:a8:a0:74:33:11:da:71:8a:73: 37:64:d8:fd:1c:8c:53:fd:bc:97:4f:7b:c9:96:e3: 01:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E7:B1:2A:BC:0C:82:2F:55:C5:54:27:26:2B:99:63:6D:E0:57:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:23:bd:82:ca:58:dc:12:00:44:97:4c:df:1f:68:cc:d1:03: 2d:b4:37:ea:04:8e:d7:5c:a4:18:a1:b3:7d:81:03:09:3a:9d: 61:da:13:15:ee:f4:d9:ee:9e:ce:c3:dd:ea:45:d4:82:00:62: 77:9e:5d:30:64:9f:1f:04:91:c9:d1:2d:17:9a:b2:10:18:06: da:bd:be:e2:f1:87:49:69:a6:74:2e:b7:22:6a:8c:da:7f:f0: 75:fe:15:54:3d:7f:a5:b8:b7:4e:cc:33:a5:bc:9a:ff:9b:5a: c4:9c:1c:3d:72:16:07:4f:52:0b:e7:d2:e4:0b:55:03:0f:a8: 2a:49:ce:f8:ca:33:6a:79:f1:4a:c8:35:1c:00:3c:b8:bd:63: 9d:51:89:6d:79:1c:6d:d3:88:f2:0d:4b:f6:3d:33:b3:c7:85: 23:b5:75:33:d5:4f:8f:85:31:49:e9:f4:1e:13:86:29:d7:dc: 81:2a:55:90:01:f9:e9:8f:8e:f5:e2:5e:29:a0:3f:ed:8a:a4: 6e:ca:07:8b:fa:21:21:9d:fe:64:e1:ae:cf:86:d7:c9:0a:ef: 6d:06:cd:12:13:a1:15:7b:78:c3:5a:97:05:02:b0:94:cb:2d: e1:78:26:24:31:6b:79:01:f1:de:36:b8:45:fd:7b:32:7d:fe: 17:28:23:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ+HSTUcJDyrRnvW5wdGD2B9u9OgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDI1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmY0YTZiZTgwMTM2NDhkOTM0MDQ1MzU4Y2IzYzRmMjYz YjM2YjQwODZkNTkyYjNmZjU5MjIzNTVjZDY1NDgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPHxKKa+N8JTG4wxyfqXVw1zJLRrybiwQ9QNOqh05f0IdD uniDRE9JBsD/m8KyOhpQVMU7RwJzCHGZgRsT40IZrR83YMsLtB2EPLZmSer8YIxk wKdB8xmf0/jeetjBxzs9AW83KQgP/CVonCxUcRcdnKcZq64kIDzZKWnCJmL5Iy5I IHWkaBn2P7rDaBH9OYna8edZ4Kgb+mLkgYwxunfGIDnMzHBrC8KsVUSK68bIzhU0 wlLxuc2W1B7EYx//d/5MA+tiEa8UdgQQa1YUVghBWQDdepB/aGH8cIz2Y7V6PXDQ u6zIk6igdDMR2nGKczdk2P0cjFP9vJdPe8mW4wEhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGOexKrwMgi9VxVQnJiuZY23gVyswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4ZTIwYTc0LWJkYzMtNGJjZi05MzM4LTE1ZTU0YjI2YWFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDDANBgkqhkiG9w0BAQsFAAOCAQEA2CO9gspY3BIARJdM3x9ozNEDLbQ3 6gSO11ykGKGzfYEDCTqdYdoTFe702e6ezsPd6kXUggBid55dMGSfHwSRydEtF5qy EBgG2r2+4vGHSWmmdC63ImqM2n/wdf4VVD1/pbi3Tswzpbya/5taxJwcPXIWB09S C+fS5AtVAw+oKknO+MozannxSsg1HAA8uL1jnVGJbXkcbdOI8g1L9j0zs8eFI7V1 M9VPj4UxSen0HhOGKdfcgSpVkAH56Y+O9eJeKaA/7YqkbsoHi/ohIZ3+ZOGuz4bX yQrvbQbNEhOhFXt4w1qXBQKwlMst4XgmJDFreQHx3ja4Rf17Mn3+FygjaQ== -----END CERTIFICATE-----Generated at Sun May 11 03:48:35 2025 by rpki-client