$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c893add-e673-41f7-a5af-eab08c7d7852.roa File: 3c893add-e673-41f7-a5af-eab08c7d7852.roa (raw, json) Hash identifier: h3ApHE6pNWtCgWWp8NxQj5b+ZTPV3oYs3GXvVEE/2i0= Subject key identifier: 91:1C:0F:50:E8:D7:36:D7:5F:00:C8:9E:71:88:22:2F:58:ED:EB:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0860CA6322D027EA12C55EDC95A226CF9035FC8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c893add-e673-41f7-a5af-eab08c7d7852.roa Signing time: Wed 18 Jun 2025 00:11:05 +0000 ROA not before: Wed 18 Jun 2025 00:11:05 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.30.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:60:ca:63:22:d0:27:ea:12:c5:5e:dc:95:a2:26:cf:90:35:fc:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:11:05 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=6b415a799ca1bac202ff315b1f8ebf11b13d6c17db63d5756b8379101dd51e09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bf:94:3d:80:e9:be:ce:fe:40:17:7d:15:42: 20:24:d4:e3:95:c1:9d:64:be:f4:3a:60:f3:14:13: b9:27:16:6a:23:ae:ce:20:47:59:53:90:6d:6b:db: 31:05:82:3f:9c:0a:cc:e0:8a:b7:a1:b6:06:9f:da: 53:43:63:75:4d:32:9e:d2:fa:3a:24:af:d7:dd:ac: dd:82:bb:bc:1a:fa:e6:b4:65:c4:44:a4:63:53:d1: 1c:94:f3:fb:50:25:00:c7:8b:b5:ed:62:a5:bb:81: a1:af:41:be:ec:f0:89:3f:98:6b:cb:06:be:ec:a8: dd:b4:49:73:71:15:1c:ea:66:93:44:ce:2c:88:96: e5:5f:8f:39:0a:48:0a:9f:09:2a:d4:2d:02:79:5b: c8:61:21:ee:b8:ac:4a:94:d3:7c:30:5c:e1:ef:1d: 29:69:d4:73:48:a0:12:1e:80:f3:cf:c8:a4:f3:a0: dc:b9:3c:f5:6e:96:85:57:3c:f4:bb:72:a6:2a:8e: 05:8a:06:b6:aa:4b:a7:f5:3e:4f:0b:5d:5c:22:57: 95:36:aa:34:83:80:76:ec:87:9d:2e:aa:4a:c3:66: 40:52:0f:82:eb:fb:be:fc:11:a2:eb:92:f6:be:e5: 17:0b:0d:83:93:e2:4b:2a:cb:fa:15:be:5a:08:26: 10:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1C:0F:50:E8:D7:36:D7:5F:00:C8:9E:71:88:22:2F:58:ED:EB:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c893add-e673-41f7-a5af-eab08c7d7852.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.30.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2c:dc:69:f4:9a:9e:dd:17:f3:b4:c4:73:5d:88:90:79:65:59: e3:5c:d2:0a:5a:05:07:56:25:91:24:ed:82:73:e3:ec:01:22: 10:17:48:57:2d:2a:90:ea:24:18:54:5a:53:ff:7c:bc:42:17: e8:d9:52:93:36:72:ed:0f:5c:d4:d4:07:82:71:3d:cb:0c:30: 01:09:56:4e:8f:5c:31:79:cf:18:28:41:39:93:6e:db:4c:dc: 36:8c:66:68:1f:6e:ef:d3:04:b7:5f:67:e5:58:93:8e:ff:8a: 4e:c0:c9:f7:24:e2:39:26:ec:8b:24:ce:8a:01:7a:17:45:0b: 39:74:c4:0e:5f:51:9f:c3:40:a9:98:60:c6:64:6a:07:2c:be: 9a:39:86:d2:d9:08:a9:b3:35:12:36:87:52:a1:72:17:b4:5f: c5:e4:9d:d9:62:45:1d:4c:c8:db:c0:21:f6:f0:11:ed:6f:38: d3:07:aa:40:fb:d4:c4:15:eb:77:3c:d7:6d:3a:e6:c0:7d:83: 00:41:7f:1d:7a:ae:9b:41:77:37:a8:7a:67:3d:0e:79:10:28: 6f:48:01:ad:7b:43:24:6a:49:ef:b9:43:dd:33:35:d5:c1:e9: d6:4f:50:4b:94:81:43:29:ea:15:bf:ed:f8:34:30:b6:bc:5b: 50:be:06:91 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCGDKYyLQJ+oSxV7claImz5A1/IswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAxMTA1WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQxNWE3OTljYTFiYWMyMDJmZjMxNWIxZjhlYmYxMWIx M2Q2YzE3ZGI2M2Q1NzU2YjgzNzkxMDFkZDUxZTA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDav5Q9gOm+zv5AF30VQiAk1OOVwZ1kvvQ6YPMUE7knFmoj rs4gR1lTkG1r2zEFgj+cCszgirehtgaf2lNDY3VNMp7S+jokr9fdrN2Cu7wa+ua0 ZcREpGNT0RyU8/tQJQDHi7XtYqW7gaGvQb7s8Ik/mGvLBr7sqN20SXNxFRzqZpNE ziyIluVfjzkKSAqfCSrULQJ5W8hhIe64rEqU03wwXOHvHSlp1HNIoBIegPPPyKTz oNy5PPVuloVXPPS7cqYqjgWKBraqS6f1Pk8LXVwiV5U2qjSDgHbsh50uqkrDZkBS D4Lr+778EaLrkva+5RcLDYOT4ksqy/oVvloIJhDrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkRwPUOjXNtdfAMiecYgiL1jt630wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjODkzYWRkLWU2NzMtNDFmNy1hNWFmLWVhYjA4YzdkNzg1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjHjANBgkqhkiG9w0BAQsFAAOCAQEALNxp9Jqe3RfztMRzXYiQeWVZ41zS CloFB1YlkSTtgnPj7AEiEBdIVy0qkOokGFRaU/98vEIX6NlSkzZy7Q9c1NQHgnE9 ywwwAQlWTo9cMXnPGChBOZNu20zcNoxmaB9u79MEt19n5ViTjv+KTsDJ9yTiOSbs iyTOigF6F0ULOXTEDl9Rn8NAqZhgxmRqByy+mjmG0tkIqbM1EjaHUqFyF7RfxeSd 2WJFHUzI28Ah9vAR7W840weqQPvUxBXrdzzXbTrmwH2DAEF/HXqum0F3N6h6Zz0O eRAob0gBrXtDJGpJ77lD3TM11cHp1k9QS5SBQynqFb/t+DQwtrxbUL4GkQ== -----END CERTIFICATE-----Generated at Sun Jun 29 11:21:57 2025 by rpki-client