$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa File: 24b5120f-9da8-4835-9d8b-0c7948eafa35.roa (raw, json) Hash identifier: Pkc87aa+PKz6OiM0KEbR6GJ6V/KL4VgnQKjqS/E99A0= Subject key identifier: A3:11:92:9E:E3:65:1A:E1:60:70:83:96:9F:F2:08:B4:92:98:49:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08D4D695410D8FC8C409DF57345143BBDDD28360 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa Signing time: Thu 08 May 2025 19:23:37 +0000 ROA not before: Thu 08 May 2025 19:23:37 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.162.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d4:d6:95:41:0d:8f:c8:c4:09:df:57:34:51:43:bb:dd:d2:83:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 19:23:37 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=81661d1e120d0dc787c80c1b3fa52095ddab3660a1f71a3923db2323967b274c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cb:bc:71:ca:f8:0b:78:d0:eb:20:cd:a3:98: 52:a9:32:c2:f1:6e:3e:65:37:61:28:ff:eb:af:d8: 53:ea:96:6d:2a:9c:8d:fc:ce:47:c8:34:90:35:df: 3c:29:3e:50:bb:a3:3c:2b:5d:86:4b:4b:e4:82:65: 95:ab:99:be:84:8c:e9:0c:ee:06:f5:90:c5:09:44: 46:d5:ae:07:e3:e4:fa:30:bb:49:3f:61:18:3d:94: 6d:1b:09:50:2e:11:5c:34:6a:b5:74:dc:19:f2:c0: 9b:6a:63:7f:5b:01:5e:79:0a:ec:28:4b:87:62:e0: 97:49:89:e4:52:9a:8b:ff:e8:47:f3:a6:06:40:28: ea:8c:1d:f0:89:bd:d1:60:60:ad:c5:94:ab:81:fb: 34:96:94:ca:54:2c:e0:01:04:ee:44:2b:ef:13:bd: 63:b0:54:65:3a:3d:8a:f2:c0:a0:a2:77:75:ef:cc: 46:43:2e:55:db:ea:d2:93:13:d4:bd:32:80:96:51: 05:ab:b6:60:72:31:95:87:24:62:24:69:39:5b:df: 2a:21:35:f7:18:cb:d1:cc:d8:cf:a7:41:3f:7d:70: f5:5f:39:27:96:e0:48:28:81:9a:d5:82:7a:e3:c2: 4e:68:c0:8a:e1:58:5d:8b:d3:58:e9:e2:4a:cd:c5: 1d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:11:92:9E:E3:65:1A:E1:60:70:83:96:9F:F2:08:B4:92:98:49:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.162.72.0/21 Signature Algorithm: sha256WithRSAEncryption 60:df:03:0e:8b:1f:82:76:d5:7e:65:05:83:2a:6e:ef:ed:d4: 79:86:e7:8c:c6:f8:83:c3:61:19:bf:5c:a8:b3:8a:61:5a:80: 09:15:34:f3:f0:ab:10:29:f9:6b:64:e0:a9:fa:76:54:2c:a4: 53:be:3c:3b:ea:35:63:63:28:ed:42:6a:9c:4f:c5:b0:4e:88: 6a:14:61:3b:cc:3e:c4:0d:b3:e0:9f:3a:22:bb:b3:c2:79:01: 63:b3:89:6f:d5:49:50:09:91:f2:4c:0a:da:cb:a9:1f:46:e3: 76:f2:b6:a7:23:dc:49:bf:ce:ff:b2:a1:a2:cd:05:2d:37:b9: 01:3a:48:54:32:a8:83:ea:94:27:da:37:25:65:32:20:02:2f: 61:c0:8a:51:18:5f:60:e4:bf:f7:cf:b5:01:48:8b:6b:91:d5: 6a:8c:74:1d:9c:2d:c9:14:9b:af:95:ed:19:46:6c:a1:6d:d6: f1:17:5a:7e:9a:87:49:c5:27:bd:a0:3a:93:17:b4:c9:ff:a4: 5f:92:de:60:33:c6:90:bd:d1:32:43:57:01:0d:2d:66:df:39: 87:62:b6:d8:46:c8:f8:ed:2e:e2:70:90:0b:3f:66:21:0e:2c: 31:6a:ea:17:04:01:17:bb:7d:24:b4:47:bf:d3:dc:78:5b:6e: 85:b0:9f:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCNTWlUENj8jECd9XNFFDu93Sg2AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTkyMzM3WhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTY2MWQxZTEyMGQwZGM3ODdjODBjMWIzZmE1MjA5NWRk YWIzNjYwYTFmNzFhMzkyM2RiMjMyMzk2N2IyNzRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCby7xxyvgLeNDrIM2jmFKpMsLxbj5lN2Eo/+uv2FPqlm0q nI38zkfINJA13zwpPlC7ozwrXYZLS+SCZZWrmb6EjOkM7gb1kMUJREbVrgfj5Pow u0k/YRg9lG0bCVAuEVw0arV03BnywJtqY39bAV55CuwoS4di4JdJieRSmov/6Efz pgZAKOqMHfCJvdFgYK3FlKuB+zSWlMpULOABBO5EK+8TvWOwVGU6PYrywKCid3Xv zEZDLlXb6tKTE9S9MoCWUQWrtmByMZWHJGIkaTlb3yohNfcYy9HM2M+nQT99cPVf OSeW4EgogZrVgnrjwk5owIrhWF2L01jp4krNxR0VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoxGSnuNlGuFgcIOWn/IItJKYSYswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0YjUxMjBmLTlkYTgtNDgzNS05ZDhiLTBjNzk0OGVhZmEzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNokgwDQYJKoZIhvcNAQELBQADggEBAGDfAw6LH4J21X5lBYMqbu/t1HmG 54zG+IPDYRm/XKizimFagAkVNPPwqxAp+Wtk4Kn6dlQspFO+PDvqNWNjKO1CapxP xbBOiGoUYTvMPsQNs+CfOiK7s8J5AWOziW/VSVAJkfJMCtrLqR9G43bytqcj3Em/ zv+yoaLNBS03uQE6SFQyqIPqlCfaNyVlMiACL2HAilEYX2Dkv/fPtQFIi2uR1WqM dB2cLckUm6+V7RlGbKFt1vEXWn6ah0nFJ72gOpMXtMn/pF+S3mAzxpC90TJDVwEN LWbfOYditthGyPjtLuJwkAs/ZiEOLDFq6hcEARe7fSS0R7/T3HhbboWwnyI= -----END CERTIFICATE-----Generated at Sun May 11 18:14:35 2025 by rpki-client