$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json) Hash identifier: A44JTHbsc6xIl+407jnXm+a5bWu8cTucWr2y/7dLU9E= Subject key identifier: 69:A6:F5:51:BB:54:FA:B4:4E:12:C0:53:0A:63:3F:F6:BA:33:5D:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BA5C238F428C2327863C0977F870229E77F02D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa Signing time: Wed 25 Jun 2025 00:10:12 +0000 ROA not before: Wed 25 Jun 2025 00:10:12 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a5:c2:38:f4:28:c2:32:78:63:c0:97:7f:87:02:29:e7:7f:02:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 25 00:10:12 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=ee9c89f38fbe42a27073ae469fc02317cb49cb9e513bfa7184496ebd72fffc24, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:28:53:fe:10:08:a1:63:47:0f:91:06:77: ad:2e:41:18:3a:3f:aa:55:ac:0e:f1:5a:22:ee:b5: 3b:49:50:57:0c:10:3f:94:62:f5:a5:63:e0:f3:8b: 0c:bb:87:bd:0f:d6:0e:03:52:25:a7:f0:fe:46:58: cd:b7:ec:66:87:e7:14:8b:9b:f8:ee:2f:6a:67:37: de:d4:2d:94:45:c2:00:c6:ee:31:ba:f8:78:73:b4: 23:0d:cb:fc:09:ee:3e:08:00:53:7f:23:c7:00:84: 31:b3:fc:9d:51:ba:e5:90:82:2b:86:d3:e7:12:1b: f6:5c:d5:97:06:41:73:14:b3:06:82:a9:c6:6b:fe: 8b:da:b1:33:6f:fd:20:02:71:b7:7c:29:1f:71:7c: 4b:a9:85:94:f9:b9:91:e0:d6:cd:c1:06:b1:b3:84: 88:87:01:50:e3:9e:2f:93:41:0b:de:a2:c9:c2:48: 39:cd:33:a9:2a:2a:d8:93:52:ee:d8:d1:d9:b4:ed: a1:d6:99:93:5c:20:8f:3e:a8:45:81:0b:65:ba:ab: 2e:cc:36:df:4b:74:29:94:77:9c:24:64:95:50:a8: c8:29:7f:a1:62:2a:99:07:f5:f5:ed:fd:74:f2:d6: c4:fd:94:c3:4c:f4:02:48:7d:7f:72:47:9f:af:c2: 55:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A6:F5:51:BB:54:FA:B4:4E:12:C0:53:0A:63:3F:F6:BA:33:5D:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:61:5a:94:b8:74:f8:37:dd:d0:2f:7d:3e:6a:4d:d0:1c:08: 31:1c:1a:4c:5d:a1:97:9c:a7:06:4a:a9:c9:e0:fd:ab:b5:0c: 22:27:f1:3c:70:03:70:ef:09:06:ff:11:ee:b5:6e:cb:60:97: 10:9e:88:f5:30:87:7a:8c:8e:13:f3:bf:c8:dc:83:25:ac:c0: ac:3b:da:a2:d6:e8:57:33:43:78:4d:84:98:1b:2f:4b:24:42: 82:86:b9:5c:44:6f:42:fa:44:87:a7:f2:33:80:77:32:aa:db: 24:cb:95:a3:d3:0a:40:b0:4d:60:c5:c1:79:6b:6c:97:01:56: a2:19:6f:65:bc:85:f6:37:df:c3:76:18:aa:ac:40:76:89:e8: b1:04:0a:93:f3:1d:2d:85:55:a9:8c:b8:18:1f:9d:ca:1f:9f: 5b:12:43:e5:e9:88:71:14:91:2c:6d:c9:13:86:57:2d:93:d4: b8:c7:e0:38:0d:09:7b:a5:9d:f1:2f:e7:42:32:a0:c1:3d:7d: 1f:fb:74:68:fd:6b:4e:ed:5c:e1:e9:58:49:6e:81:3c:f4:75: db:1a:7f:f6:fc:bb:ec:8c:19:29:90:92:18:79:da:87:00:f6: 91:d9:53:b4:3f:fe:51:b3:e7:a8:c0:ab:4c:5f:ab:7f:9b:aa: 12:cb:76:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW6XCOPQowjJ4Y8CXf4cCKed/AtcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI1MDAxMDEyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTljODlmMzhmYmU0MmEyNzA3M2FlNDY5ZmMwMjMxN2Ni NDljYjllNTEzYmZhNzE4NDQ5NmViZDcyZmZmYzI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0yyhT/hAIoWNHD5EGd60uQRg6P6pVrA7xWiLutTtJUFcM ED+UYvWlY+Dziwy7h70P1g4DUiWn8P5GWM237GaH5xSLm/juL2pnN97ULZRFwgDG 7jG6+HhztCMNy/wJ7j4IAFN/I8cAhDGz/J1RuuWQgiuG0+cSG/Zc1ZcGQXMUswaC qcZr/ovasTNv/SACcbd8KR9xfEuphZT5uZHg1s3BBrGzhIiHAVDjni+TQQveosnC SDnNM6kqKtiTUu7Y0dm07aHWmZNcII8+qEWBC2W6qy7MNt9LdCmUd5wkZJVQqMgp f6FiKpkH9fXt/XTy1sT9lMNM9AJIfX9yR5+vwlXpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaab1UbtU+rROEsBTCmM/9rozXdMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZTBjYWZkLTBkZTYtNDhiOC1iZDQzLWY4MWJkNDRmNmZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlBQwDQYJKoZIhvcNAQELBQADggEBAJthWpS4dPg33dAvfT5qTdAcCDEc GkxdoZecpwZKqcng/au1DCIn8TxwA3DvCQb/Ee61bstglxCeiPUwh3qMjhPzv8jc gyWswKw72qLW6FczQ3hNhJgbL0skQoKGuVxEb0L6RIen8jOAdzKq2yTLlaPTCkCw TWDFwXlrbJcBVqIZb2W8hfY338N2GKqsQHaJ6LEECpPzHS2FVamMuBgfncofn1sS Q+XpiHEUkSxtyROGVy2T1LjH4DgNCXulnfEv50IyoME9fR/7dGj9a07tXOHpWElu gTz0ddsaf/b8u+yMGSmQkhh52ocA9pHZU7Q//lGz56jAq0xfq3+bqhLLdrE= -----END CERTIFICATE-----Generated at Sun Jun 29 14:43:54 2025 by rpki-client