$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa File: 234e46a7-d4c0-4498-863f-fe0ed912a21e.roa (raw, json) Hash identifier: +b1EaagYmkPsHfkV8ZOi7VJ0xErsdm1nKE5uEP5ZU8c= Subject key identifier: 80:F6:6C:55:28:6C:A8:80:B3:0D:04:AF:C7:6D:E6:47:37:76:DB:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 781A27C2E75F875CB0A3C088AFAB466578FA11CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa Signing time: Wed 18 Jun 2025 00:11:37 +0000 ROA not before: Wed 18 Jun 2025 00:11:37 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.235.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:1a:27:c2:e7:5f:87:5c:b0:a3:c0:88:af:ab:46:65:78:fa:11:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:11:37 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=67c7a9fc31c4c81b1bd55c3fa47889aeed5460fa2dbf89c811a0c946680fbc68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8b:aa:b4:0f:46:b9:c1:c6:58:fb:2b:e8:7e: 08:32:7a:c2:40:0a:51:7a:07:76:be:62:cd:9e:e3: dd:1a:21:4f:94:4d:93:e8:b1:c4:f1:7d:28:78:1e: 84:5b:46:8c:78:97:13:01:da:86:9f:3c:0a:c8:aa: d5:c7:4c:13:2e:01:9c:49:d8:7b:9d:05:42:bf:d8: 45:a4:75:64:29:b2:a2:4a:33:aa:30:48:f4:bd:d7: a1:31:24:d8:c8:54:3b:81:69:a4:64:38:22:f0:30: 9d:91:e8:e3:6c:79:ee:74:4f:32:74:0e:45:5b:e0: 1c:bb:0a:f1:c3:ed:a8:ab:8b:d1:c1:e5:fc:6c:b8: 37:7c:e9:7e:bf:11:8c:9e:06:9a:c9:b3:a8:d4:ec: a7:b0:7e:bc:9e:62:ed:7b:66:d7:44:a1:b2:d1:ed: 83:bb:49:6a:0f:39:2f:d5:3f:62:4c:2f:3f:5d:b1: f6:b4:76:88:e4:33:bb:d8:ed:5f:ff:c8:f2:a0:f4: 11:21:25:00:02:c4:a8:16:61:00:a9:f7:8f:9a:90: 50:b0:c2:76:28:20:e9:02:f1:50:26:1b:92:75:9d: 98:6f:9f:71:95:fb:da:ef:90:d8:f1:8d:d4:94:6a: 71:12:a5:8d:43:f2:dd:3a:0a:40:d6:ea:44:7c:a8: c1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F6:6C:55:28:6C:A8:80:B3:0D:04:AF:C7:6D:E6:47:37:76:DB:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7a:f2:d5:3b:39:c5:41:bf:5b:f2:1b:6b:d0:ff:1d:2a:ec:af: c8:2e:60:ac:da:65:fc:df:02:8c:61:1e:65:e3:b9:96:b8:f3: a1:f4:20:0e:62:12:94:a2:79:69:d6:5a:86:95:d6:a0:63:a8: 6b:c6:b9:43:d6:4b:1f:4c:2d:c4:34:b4:4f:f5:f7:c5:ae:4d: 6b:73:b0:be:4d:29:aa:2c:99:c2:18:fc:1e:d4:70:dd:7e:54: 08:3b:03:12:e6:80:92:7c:09:af:d4:a4:8c:0c:62:a7:ce:e6: 54:00:02:8e:c2:b4:88:e9:a0:f0:c2:3a:62:40:f2:41:ac:6b: 7d:54:be:15:78:11:04:94:c6:6e:c5:63:40:62:5c:d2:f0:6d: 6c:6f:5b:55:7f:9a:94:88:9f:de:39:42:4f:3a:24:74:78:d0: 91:63:1d:09:db:18:6d:5f:86:24:65:d5:ed:50:23:c3:02:a4: 6d:eb:e1:05:4f:39:8a:06:8f:27:ba:82:39:dc:4d:82:ad:27: 6c:13:9c:4f:37:20:c6:7d:62:61:a6:69:77:d6:d6:d0:5f:6a: e3:71:4d:91:b8:2f:f1:10:e3:c4:9a:4e:e8:94:62:f3:1c:64: 0c:4b:3e:92:33:d3:31:1d:58:96:bb:1d:01:c1:5e:f2:54:a8: f7:50:00:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeBonwudfh1ywo8CIr6tGZXj6Ec0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAxMTM3WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2M3YTlmYzMxYzRjODFiMWJkNTVjM2ZhNDc4ODlhZWVk NTQ2MGZhMmRiZjg5YzgxMWEwYzk0NjY4MGZiYzY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCri6q0D0a5wcZY+yvofggyesJAClF6B3a+Ys2e490aIU+U TZPoscTxfSh4HoRbRox4lxMB2oafPArIqtXHTBMuAZxJ2HudBUK/2EWkdWQpsqJK M6owSPS916ExJNjIVDuBaaRkOCLwMJ2R6ONsee50TzJ0DkVb4By7CvHD7airi9HB 5fxsuDd86X6/EYyeBprJs6jU7KewfryeYu17ZtdEobLR7YO7SWoPOS/VP2JMLz9d sfa0dojkM7vY7V//yPKg9BEhJQACxKgWYQCp94+akFCwwnYoIOkC8VAmG5J1nZhv n3GV+9rvkNjxjdSUanESpY1D8t06CkDW6kR8qMG5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgPZsVShsqICzDQSvx23mRzd22+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNGU0NmE3LWQ0YzAtNDQ5OC04NjNmLWZlMGVkOTEyYTIxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo6wAwDQYJKoZIhvcNAQELBQADggEBAHry1Ts5xUG/W/Iba9D/HSrsr8gu YKzaZfzfAoxhHmXjuZa486H0IA5iEpSieWnWWoaV1qBjqGvGuUPWSx9MLcQ0tE/1 98WuTWtzsL5NKaosmcIY/B7UcN1+VAg7AxLmgJJ8Ca/UpIwMYqfO5lQAAo7CtIjp oPDCOmJA8kGsa31UvhV4EQSUxm7FY0BiXNLwbWxvW1V/mpSIn945Qk86JHR40JFj HQnbGG1fhiRl1e1QI8MCpG3r4QVPOYoGjye6gjncTYKtJ2wTnE83IMZ9YmGmaXfW 1tBfauNxTZG4L/EQ48SaTuiUYvMcZAxLPpIz0zEdWJa7HQHBXvJUqPdQANs= -----END CERTIFICATE-----Generated at Tue Jul 1 09:13:15 2025 by rpki-client