$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa File: 42bd5c98-ff16-4ff2-90fe-626a186a604c.roa (raw, json) Hash identifier: pehJ9lRnZRk4tC+7hHqUTz7nDasYKyLSI1YQBEYdKS0= Subject key identifier: 12:B0:3B:96:A6:36:DE:32:0F:F4:FC:B6:1E:78:34:77:F6:E7:65:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FD9E756BE567936BDEB06F665A20A5451F8811F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa Signing time: Sat 21 Jun 2025 00:11:17 +0000 ROA not before: Sat 21 Jun 2025 00:11:17 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d9:e7:56:be:56:79:36:bd:eb:06:f6:65:a2:0a:54:51:f8:81:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:11:17 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=22c66553156ca2f70315ec80595434969ef1e5915b1dcc0b7e775cbf5e63c56c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:91:ad:4a:02:ae:57:fa:df:70:59:2b:ee: cd:5f:0c:be:35:5a:8e:0d:d3:0b:e6:d3:59:05:23: a2:44:b0:71:c1:27:44:d7:fb:58:ea:74:a7:1c:c8: 97:25:58:2e:48:80:83:69:2e:89:f6:ac:c2:84:2c: 8e:ea:f8:2f:49:04:41:26:69:92:15:45:3c:d6:92: e2:47:17:0e:05:5c:ad:35:95:65:af:6a:82:12:83: e8:2e:ef:82:97:7b:b8:ce:5d:f6:9b:e4:1b:77:db: 62:df:a8:16:b8:13:39:f7:3e:a6:92:82:e1:63:0f: 3c:d8:c6:40:70:db:77:4a:27:ab:4f:99:33:fa:50: 31:16:b6:22:1f:2b:00:ee:9b:a0:c5:1f:32:f3:8d: 5d:d8:05:95:05:6e:35:f0:cb:09:6d:12:eb:79:eb: 34:09:41:24:3a:91:68:8e:56:52:00:b8:6e:c3:40: 13:e0:ea:35:ab:bd:89:c9:3a:7b:8f:77:f7:c2:4a: 44:22:3f:5e:df:d9:9d:17:54:66:c8:ff:51:fa:ba: ec:a5:92:c6:a9:9a:df:37:b3:c8:e4:52:67:9d:df: 67:58:a1:f5:89:59:33:28:d6:99:dd:68:a7:8c:59: fe:99:fa:56:f3:12:db:34:be:5a:3a:55:3c:29:07: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B0:3B:96:A6:36:DE:32:0F:F4:FC:B6:1E:78:34:77:F6:E7:65:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:7a:f5:96:cb:43:e4:54:94:b5:fc:4a:59:39:15:fa:33:e4: 53:4f:c1:6b:e3:a3:a4:b4:56:09:ef:4d:27:35:d6:62:78:de: 76:2e:7b:dd:78:fc:d0:18:fe:e9:7d:b1:dc:79:31:50:f6:f3: e4:5b:2b:e0:f1:37:eb:cb:69:9e:e6:72:12:35:24:9a:b7:58: f0:dd:45:60:38:c3:32:5f:30:a8:ad:4f:0f:99:2a:7e:82:0a: 43:8b:6f:04:b7:13:fa:78:8b:51:98:e0:26:5c:7d:9e:c9:41: aa:39:54:05:54:2b:e3:2d:47:78:a8:12:e1:9b:ca:4a:9c:5f: d5:5e:69:e4:61:12:8d:5d:d4:87:75:f3:03:ac:29:10:08:de: 7c:72:16:12:41:f8:dc:10:b8:b9:1b:74:ed:44:61:d0:97:d2: df:00:8f:ff:00:c8:03:a1:f1:64:cc:fc:d7:78:1a:38:c3:bb: be:61:48:3f:ea:47:48:66:6c:ec:d7:cb:c0:97:c0:17:22:28: 68:b4:e1:77:55:e0:07:8c:eb:52:98:2c:6a:43:05:59:2c:75: e3:82:73:f4:6b:c4:39:7b:1a:d8:20:c6:4c:8b:40:b9:fb:a7: 02:57:e8:d8:86:5a:07:aa:d1:93:d8:46:d3:09:fc:31:6d:23: 29:4f:f2:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL9nnVr5WeTa96wb2ZaIKVFH4gR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAxMTE3WhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmM2NjU1MzE1NmNhMmY3MDMxNWVjODA1OTU0MzQ5Njll ZjFlNTkxNWIxZGNjMGI3ZTc3NWNiZjVlNjNjNTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39JGtSgKuV/rfcFkr7s1fDL41Wo4N0wvm01kFI6JEsHHB J0TX+1jqdKccyJclWC5IgINpLon2rMKELI7q+C9JBEEmaZIVRTzWkuJHFw4FXK01 lWWvaoISg+gu74KXe7jOXfab5Bt322LfqBa4Ezn3PqaSguFjDzzYxkBw23dKJ6tP mTP6UDEWtiIfKwDum6DFHzLzjV3YBZUFbjXwywltEut56zQJQSQ6kWiOVlIAuG7D QBPg6jWrvYnJOnuPd/fCSkQiP17f2Z0XVGbI/1H6uuylksapmt83s8jkUmed32dY ofWJWTMo1pndaKeMWf6Z+lbzEts0vlo6VTwpB+WxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUErA7lqY23jIP9Py2Hng0d/bnZTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyYmQ1Yzk4LWZmMTYtNGZmMi05MGZlLTYyNmExODZhNjA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvDANBgkqhkiG9w0BAQsFAAOCAQEASHr1lstD5FSUtfxKWTkV+jPkU0/B a+OjpLRWCe9NJzXWYnjedi573Xj80Bj+6X2x3HkxUPbz5Fsr4PE368tpnuZyEjUk mrdY8N1FYDjDMl8wqK1PD5kqfoIKQ4tvBLcT+niLUZjgJlx9nslBqjlUBVQr4y1H eKgS4ZvKSpxf1V5p5GESjV3Uh3XzA6wpEAjefHIWEkH43BC4uRt07URh0JfS3wCP /wDIA6HxZMz813gaOMO7vmFIP+pHSGZs7NfLwJfAFyIoaLThd1XgB4zrUpgsakMF WSx144Jz9GvEOXsa2CDGTItAufunAlfo2IZaB6rRk9hG0wn8MW0jKU/yGg== -----END CERTIFICATE-----Generated at Tue Jul 1 12:38:13 2025 by rpki-client