$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aa518aa-6564-426d-96b0-6a8cafb51670.roa File: 3aa518aa-6564-426d-96b0-6a8cafb51670.roa (raw, json) Hash identifier: kkn0fdZviWds7yZQNU6HvcJlSqu2jPY2qYpC3DIcCFc= Subject key identifier: 92:C9:0A:87:17:44:63:E6:7D:59:B9:D2:71:E7:79:82:03:CD:17:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1120256751079F30F95A108641EB13A558285D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aa518aa-6564-426d-96b0-6a8cafb51670.roa Signing time: Tue 10 Jun 2025 16:01:10 +0000 ROA not before: Tue 10 Jun 2025 16:01:10 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:20:25:67:51:07:9f:30:f9:5a:10:86:41:eb:13:a5:58:28:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:01:10 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=8a65afbb5969f8cdf169ef241daadeb36f07c47c120fd256e8306207bc253e41, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:15:a5:28:53:52:ab:29:7f:30:b5:0a:64: c9:5d:66:cf:c1:22:b4:4f:5f:39:97:e7:36:78:7c: 80:a0:08:45:ec:a8:17:6b:76:d4:e2:c0:f6:6c:16: 0c:05:98:2c:e4:38:06:f9:a7:9b:49:d3:8e:ab:5a: e4:27:e5:6a:1c:66:63:70:1f:05:8f:0e:bf:df:63: d3:52:55:f9:f4:3a:48:e1:c3:d8:ab:cb:ea:cc:2f: 6b:e9:ed:f3:7a:e8:87:ee:21:8d:4e:f0:10:4b:4e: 8c:b6:6c:48:16:c8:e9:2f:fd:7f:c2:3e:a8:1c:4e: 8f:f9:67:5e:ef:fc:7b:f7:c7:84:e8:1b:cc:9b:84: 7c:cd:41:00:63:f8:77:d2:6f:ac:43:07:91:af:a1: 47:ed:0b:c0:d2:b0:99:c1:42:b6:50:71:e8:f6:d7: 5a:f1:95:80:df:8f:8a:9f:c2:4f:e5:21:d5:fc:3c: da:0b:08:4d:b1:11:13:c2:73:46:20:10:f8:f5:b6: 19:28:49:54:ac:88:13:16:60:39:ab:7a:09:52:0b: a5:83:9e:4b:31:c5:41:37:fe:40:ff:a4:0d:2c:04: 1d:41:6d:2c:50:17:d1:a8:fb:03:ae:e3:23:0f:65: b3:de:94:37:e6:a2:53:de:0e:dd:97:ca:82:f3:df: cc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C9:0A:87:17:44:63:E6:7D:59:B9:D2:71:E7:79:82:03:CD:17:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aa518aa-6564-426d-96b0-6a8cafb51670.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:41:3f:61:de:9c:f3:93:59:9c:62:d5:73:3b:72:f7:bf:7b: 43:2f:ff:e8:18:d0:be:2f:44:87:3d:aa:32:30:23:da:e1:a0: b3:d6:f6:d5:90:88:1c:17:61:32:0f:f2:47:d7:47:da:a8:e9: 85:96:ac:bf:38:92:b2:7a:1e:a0:4b:93:e0:b4:ef:9d:83:44: 1d:15:ae:92:c5:22:14:66:44:90:21:f7:b1:05:fc:65:ca:e8: 57:0e:d1:a8:44:a4:95:5c:04:2f:3a:5c:2d:e5:1f:13:57:5e: 83:15:57:62:71:c2:18:f8:2a:53:24:ce:cd:e5:4b:8a:63:82: c6:04:12:99:2d:61:c0:23:32:61:66:2d:e2:16:3e:fa:17:55: 8d:54:22:4a:5b:cf:69:7d:b0:11:65:09:e9:48:10:62:d2:ac: 99:96:f3:9e:54:96:ef:72:66:11:5c:ad:b8:46:4f:04:58:a6: e9:04:82:e3:5c:fe:a0:e6:65:0a:0f:97:41:62:00:bd:7e:92: 90:80:1b:4f:5c:da:5c:27:25:86:04:b6:7d:ba:b7:d9:fc:17: 83:15:d1:27:cb:c0:a0:4f:d4:c8:7c:4b:fa:09:da:96:99:44: 12:22:03:13:61:19:47:73:64:f6:f6:fd:8b:a8:cf:93:da:a7: 0c:31:cd:4e -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITESAlZ1EHnzD5WhCGQesTpVgoXTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTAxNjAxMTBaFw0yNTA3MTUyMzU5NTla MHoxSTBHBgNVBAUTQDhhNjVhZmJiNTk2OWY4Y2RmMTY5ZWYyNDFkYWFkZWIzNmYw N2M0N2MxMjBmZDI1NmU4MzA2MjA3YmMyNTNlNDExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKZbFaUoU1KrKX8wtQpkyV1mz8EitE9fOZfnNnh8gKAIReyo F2t21OLA9mwWDAWYLOQ4Bvmnm0nTjqta5CflahxmY3AfBY8Ov99j01JV+fQ6SOHD 2KvL6swva+nt83roh+4hjU7wEEtOjLZsSBbI6S/9f8I+qBxOj/lnXu/8e/fHhOgb zJuEfM1BAGP4d9JvrEMHka+hR+0LwNKwmcFCtlBx6PbXWvGVgN+Pip/CT+Uh1fw8 2gsITbERE8JzRiAQ+PW2GShJVKyIExZgOat6CVILpYOeSzHFQTf+QP+kDSwEHUFt LFAX0aj7A67jIw9ls96UN+aiU94O3ZfKgvPfzPECAwEAAaOCArAwggKsMB0GA1Ud DgQWBBSSyQqHF0Rj5n1ZudJx53mCA80X7TAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvM2FhNTE4YWEtNjU2NC00MjZkLTk2YjAtNmE4Y2FmYjUxNjcwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAA3BMA0GCSqGSIb3DQEBCwUAA4IBAQBEQT9h3pzzk1mcYtVzO3L3v3tDL//o GNC+L0SHPaoyMCPa4aCz1vbVkIgcF2EyD/JH10faqOmFlqy/OJKyeh6gS5PgtO+d g0QdFa6SxSIUZkSQIfexBfxlyuhXDtGoRKSVXAQvOlwt5R8TV16DFVdiccIY+CpT JM7N5UuKY4LGBBKZLWHAIzJhZi3iFj76F1WNVCJKW89pfbARZQnpSBBi0qyZlvOe VJbvcmYRXK24Rk8EWKbpBILjXP6g5mUKD5dBYgC9fpKQgBtPXNpcJyWGBLZ9urfZ /BeDFdEny8CgT9TIfEv6CdqWmUQSIgMTYRlHc2T29v2LqM+T2qcMMc1O -----END CERTIFICATE-----Generated at Thu Jul 3 10:22:58 2025 by rpki-client