$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa File: 42f513de-6ca0-4617-80f9-fc93a1810309.roa (raw, json) Hash identifier: oXZogyaSkRmXN8wXMBaud8taAVvcOonmajVVlWSLjig= Subject key identifier: 2F:DB:0A:0D:F2:73:DC:4A:3F:2A:11:04:3F:28:24:82:C1:3D:77:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 677E0A4D2AC323327403696F206B25B4080ECD7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa Signing time: Thu 08 May 2025 17:22:01 +0000 ROA not before: Thu 08 May 2025 17:22:01 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7e:0a:4d:2a:c3:23:32:74:03:69:6f:20:6b:25:b4:08:0e:cd:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 17:22:01 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=9e1a4ceaeae203492d909b09c5e1b7922b0768c44cf47f32e205b0f8c2d40b87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:83:e2:f1:aa:72:d6:82:b1:3f:27:af:44: a3:2b:12:d7:ed:a7:21:c4:28:2c:6e:0d:7b:9e:5b: 70:59:27:6c:7c:d5:71:65:60:40:0f:14:7c:09:2d: d2:5c:10:4e:e6:cb:b4:62:3d:47:89:ce:2d:9e:35: 21:d6:99:8a:31:b6:8d:d0:a1:b4:cb:1f:02:36:92: 32:d1:62:7b:9c:a4:31:fe:ed:d4:e3:7e:6b:e2:7c: fe:70:96:23:ed:2c:69:f9:aa:e6:d9:e1:cf:6d:58: 21:71:9b:41:86:07:9b:45:c1:86:c4:6f:bb:61:b4: c5:59:28:3d:36:5b:73:45:0b:26:88:e3:55:7b:3f: 3f:95:d3:d8:2b:97:35:6b:6e:15:15:af:f8:26:31: c5:2f:ac:5e:65:ab:12:20:bc:53:8d:6b:57:59:4b: 67:b7:41:38:ac:4d:59:34:5f:14:e3:84:88:d7:7d: a6:48:dd:69:6f:47:1a:73:83:10:f5:21:a8:64:bb: d7:06:db:b9:b5:19:c2:3b:dc:ca:c5:7d:fa:13:2b: b5:ee:82:1b:b2:1a:18:34:77:48:1a:56:24:a6:f0: b7:11:cf:80:30:6d:ef:b4:98:9a:59:0a:9e:f8:88: e1:b4:bb:1d:66:89:5c:81:ee:54:3c:9d:ed:df:de: 14:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DB:0A:0D:F2:73:DC:4A:3F:2A:11:04:3F:28:24:82:C1:3D:77:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.16.0/20 Signature Algorithm: sha256WithRSAEncryption 84:9d:a5:1b:f4:5e:68:7e:95:c8:da:b1:75:5b:58:e4:1a:86: 59:60:7c:51:7f:14:ab:bc:ed:42:90:08:24:3c:92:1e:ed:c4: f1:54:3a:4b:f0:f7:e3:ef:83:bd:e3:5d:7e:4c:49:55:a2:90: f8:02:4c:31:aa:ab:82:67:52:37:b5:7b:40:26:31:6f:ce:e6: 45:cb:d1:b8:54:19:11:8b:6c:c6:5f:fe:84:f9:95:18:8b:4d: d2:68:05:42:e4:10:93:c9:3f:fb:c0:71:7f:20:d8:f1:ce:40: 39:0b:6c:f2:5b:e3:48:0b:50:f9:7a:a8:42:35:57:89:01:01: b7:1e:e3:b7:e3:44:fa:66:a4:de:ba:1a:32:33:53:0c:b1:2f: 62:0a:dc:dc:3c:f3:59:80:5f:28:be:a8:b6:ce:8d:e4:52:c2: 6b:b7:37:db:ce:34:c0:02:46:cb:19:0e:53:b4:38:10:5b:d4: b6:2b:57:09:20:a4:6d:6b:d5:88:56:f7:b8:c9:54:16:9e:a2: b9:1f:8d:c0:d7:68:20:37:c9:e3:91:55:05:90:8d:2e:e5:49: f8:44:1b:6a:5a:60:e5:f3:01:b1:6e:21:75:43:10:b3:26:4b: 0b:0d:18:90:a6:37:d6:fe:6c:62:fe:18:39:30:86:a4:f4:ec: 55:a7:a5:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ34KTSrDIzJ0A2lvIGsltAgOzX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA4MTcyMjAxWhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTFhNGNlYWVhZTIwMzQ5MmQ5MDliMDljNWUxYjc5MjJi MDc2OGM0NGNmNDdmMzJlMjA1YjBmOGMyZDQwYjg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzGIPi8apy1oKxPyevRKMrEtftpyHEKCxuDXueW3BZJ2x8 1XFlYEAPFHwJLdJcEE7my7RiPUeJzi2eNSHWmYoxto3QobTLHwI2kjLRYnucpDH+ 7dTjfmvifP5wliPtLGn5qubZ4c9tWCFxm0GGB5tFwYbEb7thtMVZKD02W3NFCyaI 41V7Pz+V09grlzVrbhUVr/gmMcUvrF5lqxIgvFONa1dZS2e3QTisTVk0XxTjhIjX faZI3WlvRxpzgxD1Iahku9cG27m1GcI73MrFffoTK7XughuyGhg0d0gaViSm8LcR z4Awbe+0mJpZCp74iOG0ux1miVyB7lQ8ne3f3hR/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL9sKDfJz3Eo/KhEEPygkgsE9d6EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyZjUxM2RlLTZjYTAtNDYxNy04MGY5LWZjOTNhMTgxMDMwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgBAwDQYJKoZIhvcNAQELBQADggEBAISdpRv0Xmh+lcjasXVbWOQahllg fFF/FKu87UKQCCQ8kh7txPFUOkvw9+Pvg73jXX5MSVWikPgCTDGqq4JnUje1e0Am MW/O5kXL0bhUGRGLbMZf/oT5lRiLTdJoBULkEJPJP/vAcX8g2PHOQDkLbPJb40gL UPl6qEI1V4kBAbce47fjRPpmpN66GjIzUwyxL2IK3Nw881mAXyi+qLbOjeRSwmu3 N9vONMACRssZDlO0OBBb1LYrVwkgpG1r1YhW97jJVBaeorkfjcDXaCA3yeORVQWQ jS7lSfhEG2paYOXzAbFuIXVDELMmSwsNGJCmN9b+bGL+GDkwhqT07FWnpfY= -----END CERTIFICATE-----Generated at Mon May 12 22:54:45 2025 by rpki-client