$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: +l5ylIXRusaKLpyafUcakvPU5G8by9oQnX+r5xKI7gw= Subject key identifier: 9B:48:F9:28:D7:D3:2C:9F:54:F1:01:BB:BB:3A:A8:1E:6B:9A:9E:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EA3E6DB7555F4E45C2756ECD66F8B8ED2A5A53F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Fri 27 Jun 2025 00:20:17 +0000 ROA not before: Fri 27 Jun 2025 00:20:17 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a3:e6:db:75:55:f4:e4:5c:27:56:ec:d6:6f:8b:8e:d2:a5:a5:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:20:17 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=868c45ae78204550060702a3213372d363366b73f906e254951386968d77910a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:c6:16:07:b0:47:b9:17:ea:39:7c:d3:b7: 70:92:c2:5b:52:11:e6:2e:4c:bb:89:83:9f:9c:2f: 89:2b:7d:f1:19:4b:24:07:a9:97:6b:5a:92:6c:d9: 1b:fa:b0:c4:7d:17:dd:8c:94:f5:40:dd:08:48:91: ce:fa:ac:c3:ba:ad:1d:6c:80:60:24:32:48:4e:93: 80:c0:0e:28:af:8b:7f:e2:2e:64:de:96:c3:c7:fa: b8:19:3b:ec:5e:ee:8f:db:57:5e:1c:d9:1e:f4:eb: 7f:e8:54:80:4b:09:24:5b:6e:1b:c9:19:0c:9e:1b: 6b:3c:86:04:0f:2d:b9:58:4a:0d:4d:e3:09:b0:58: 12:47:94:4a:c8:7a:9f:e4:4a:a9:8e:a2:4e:4b:d3: 3a:8c:35:ac:35:1a:b5:a8:9f:c6:7c:23:27:23:20: 1d:39:51:ba:9e:e6:d3:5c:81:da:b7:43:48:30:32: 0d:8d:bf:eb:85:dd:32:db:62:17:db:d4:ea:bd:b7: 53:02:f0:5e:e8:29:74:6a:d0:a2:ad:d6:27:e6:2c: 68:aa:37:ae:34:e0:0d:90:1c:42:c0:96:ce:7d:9d: f9:60:75:96:16:00:06:aa:e6:bf:53:66:20:5f:d4: 63:11:c2:c5:e4:0e:5c:d7:71:76:bd:94:f2:f7:ea: fc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:48:F9:28:D7:D3:2C:9F:54:F1:01:BB:BB:3A:A8:1E:6B:9A:9E:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption bd:b8:1f:8d:45:27:8d:46:a8:79:b6:a1:17:b9:b5:b6:04:23: 7d:ac:72:9b:05:85:d2:17:ba:35:f8:06:25:86:a7:e3:09:3b: 0b:41:58:ca:7d:0f:71:fe:88:a5:ec:05:fa:97:99:1d:99:1a: 93:d4:49:82:7d:29:f2:be:24:fe:1e:bb:2d:66:79:ed:73:06: f0:11:4a:f2:b0:61:fc:27:b6:eb:d0:aa:94:45:a3:05:67:33: 3b:6d:25:7f:bd:f8:f9:79:3a:75:15:e1:95:83:e0:a1:76:50: b3:d0:ab:a1:66:99:71:a6:6b:7c:3b:09:6f:29:34:2a:eb:e8: 60:cb:c0:ba:4e:8d:6c:03:6c:36:52:16:18:5c:15:d5:0e:33: 7e:87:fd:f3:92:c2:3a:3e:22:f4:12:40:ef:e4:92:2d:3f:bc: 35:f2:e9:ec:b1:e5:fb:8f:de:df:aa:50:63:f5:b0:f2:ed:db: 76:65:53:91:56:1e:95:9a:ab:49:d0:05:03:01:ae:62:16:50: 5d:e7:7d:eb:93:ba:47:99:6e:2a:09:23:c4:b0:c2:d8:cb:16: 44:17:a0:cd:5b:e3:43:67:e5:da:4f:1a:d1:f9:b8:4b:cb:47: 1a:6f:3f:95:57:e7:79:85:55:2d:5b:2e:c6:19:aa:11:02:d2: 56:89:46:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULqPm23VV9ORcJ1bs1m+LjtKlpT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMDE3WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjhjNDVhZTc4MjA0NTUwMDYwNzAyYTMyMTMzNzJkMzYz MzY2YjczZjkwNmUyNTQ5NTEzODY5NjhkNzc5MTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9LMYWB7BHuRfqOXzTt3CSwltSEeYuTLuJg5+cL4krffEZ SyQHqZdrWpJs2Rv6sMR9F92MlPVA3QhIkc76rMO6rR1sgGAkMkhOk4DADiivi3/i LmTelsPH+rgZO+xe7o/bV14c2R7063/oVIBLCSRbbhvJGQyeG2s8hgQPLblYSg1N 4wmwWBJHlErIep/kSqmOok5L0zqMNaw1GrWon8Z8IycjIB05Ubqe5tNcgdq3Q0gw Mg2Nv+uF3TLbYhfb1Oq9t1MC8F7oKXRq0KKt1ifmLGiqN6404A2QHELAls59nflg dZYWAAaq5r9TZiBf1GMRwsXkDlzXcXa9lPL36vxxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm0j5KNfTLJ9U8QG7uzqoHmuanj8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAL24H41FJ41GqHm2oRe5tbYEI32s cpsFhdIXujX4BiWGp+MJOwtBWMp9D3H+iKXsBfqXmR2ZGpPUSYJ9KfK+JP4euy1m ee1zBvARSvKwYfwntuvQqpRFowVnMzttJX+9+Pl5OnUV4ZWD4KF2ULPQq6FmmXGm a3w7CW8pNCrr6GDLwLpOjWwDbDZSFhhcFdUOM36H/fOSwjo+IvQSQO/kki0/vDXy 6eyx5fuP3t+qUGP1sPLt23ZlU5FWHpWaq0nQBQMBrmIWUF3nfeuTukeZbioJI8Sw wtjLFkQXoM1b40Nn5dpPGtH5uEvLRxpvP5VX53mFVS1bLsYZqhEC0laJRmg= -----END CERTIFICATE-----Generated at Wed Jul 2 11:44:49 2025 by rpki-client