$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa File: 58b42984-22be-4af1-8da5-6fa235d1029c.roa (raw, json) Hash identifier: lo9jC+iCFYPczw2kpRA+FcvQ4Hsd0XPhdMve5fdeSuk= Subject key identifier: BA:1E:50:A4:58:66:EA:33:50:91:61:43:94:BF:B3:8C:3F:32:ED:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E7772EBCB94103B9CAEB4FF236F04CAD98ED366 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa Signing time: Fri 20 Jun 2025 00:01:10 +0000 ROA not before: Fri 20 Jun 2025 00:01:10 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:77:72:eb:cb:94:10:3b:9c:ae:b4:ff:23:6f:04:ca:d9:8e:d3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:01:10 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=0d28876378cdd8ab9487704693ff83ec231bfacbf91474fa787db22f90eef19b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:0c:2d:de:98:21:cc:ba:5c:01:47:f5:39: 78:b5:74:1e:be:a7:49:c2:db:26:e5:23:d2:93:f6: d6:29:fa:56:33:20:50:22:fa:ef:f8:dd:d5:de:a7: 06:06:81:0f:60:d7:40:b5:a5:bb:11:4d:b8:b2:d0: e5:40:28:4e:79:a5:f7:cd:3c:4f:bc:9e:27:f7:81: 05:3c:1b:23:0c:65:1c:78:13:90:df:78:ad:22:df: 11:9b:e0:0d:e2:04:6e:0d:ec:8e:b6:f1:c0:3c:fb: 25:2a:b2:c2:ca:5f:d6:08:b6:a3:71:f7:01:2c:73: cd:20:c3:44:54:1d:e7:fc:b7:6d:e3:15:a5:9c:ca: cb:96:e9:51:76:23:fb:93:63:d4:db:a2:8a:be:7c: 9a:47:f3:fc:98:ec:d2:e9:50:c1:62:dc:92:24:c6: d5:5c:be:9b:e9:9f:38:0b:64:12:dd:83:c0:61:c2: 53:17:ef:a3:05:5a:20:08:d9:42:e2:f4:64:ba:12: b6:06:90:28:01:0c:0f:53:83:0e:60:78:9e:73:2a: a1:a5:0f:6f:38:1b:f1:0d:65:31:13:e3:08:5d:e6: 18:30:c5:4d:3c:20:26:18:52:fe:de:2e:c1:2d:25: 35:69:41:d2:15:3b:be:ef:d1:0a:7a:b5:8c:ab:99: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1E:50:A4:58:66:EA:33:50:91:61:43:94:BF:B3:8C:3F:32:ED:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption 86:59:8e:a1:c5:c8:2b:2d:6b:ed:08:46:32:87:f6:fe:0e:7b: 2a:0a:56:5b:88:46:0c:48:16:7c:92:48:22:c1:df:fa:6a:cc: 47:6d:f1:3c:22:2e:83:3f:6a:12:2b:18:8f:a3:d1:74:db:da: 56:3b:af:b4:5e:e2:87:21:85:bd:c1:25:3a:00:fc:24:6d:9c: 8d:90:f0:a2:df:cb:79:8c:2b:49:ff:41:0b:61:55:f0:58:1a: 9e:2f:3c:fb:8d:1b:6d:d0:bd:e7:25:0b:25:30:b8:14:96:67: e3:58:43:ea:f0:7d:3a:95:2a:74:b3:e2:6b:32:bf:14:92:1c: 4b:c5:cd:f0:41:0d:fd:0e:2f:20:7d:3e:b6:34:6b:29:6a:7b: 5a:b3:22:c9:7d:0b:c4:a3:3f:37:0d:fb:18:a2:1d:ae:59:0e: cb:84:92:ce:e2:2d:c7:57:d8:34:4c:b2:57:2c:d6:c8:eb:1b: 25:35:f0:fc:21:fd:e4:84:be:43:5f:7a:eb:0f:df:48:1a:41: 6c:da:d7:30:db:a0:70:1a:16:69:5b:23:9f:56:d2:d3:8c:34: d6:62:d2:22:2a:e2:c6:e6:07:79:90:89:7a:f7:49:7a:c5:e5: 82:a0:59:1c:fb:78:2c:42:88:4f:fe:fd:82:fd:23:ca:ec:a8: ac:ca:5a:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHndy68uUEDucrrT/I28EytmO02YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIwMDAwMTEwWhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDI4ODc2Mzc4Y2RkOGFiOTQ4NzcwNDY5M2ZmODNlYzIz MWJmYWNiZjkxNDc0ZmE3ODdkYjIyZjkwZWVmMTliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7bgwt3pghzLpcAUf1OXi1dB6+p0nC2yblI9KT9tYp+lYz IFAi+u/43dXepwYGgQ9g10C1pbsRTbiy0OVAKE55pffNPE+8nif3gQU8GyMMZRx4 E5DfeK0i3xGb4A3iBG4N7I628cA8+yUqssLKX9YItqNx9wEsc80gw0RUHef8t23j FaWcysuW6VF2I/uTY9Tbooq+fJpH8/yY7NLpUMFi3JIkxtVcvpvpnzgLZBLdg8Bh wlMX76MFWiAI2ULi9GS6ErYGkCgBDA9Tgw5geJ5zKqGlD284G/ENZTET4whd5hgw xU08ICYYUv7eLsEtJTVpQdIVO77v0Qp6tYyrmWMXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuh5QpFhm6jNQkWFDlL+zjD8y7dkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YjQyOTg0LTIyYmUtNGFmMS04ZGE1LTZmYTIzNWQxMDI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBAIZZjqHFyCsta+0IRjKH9v4OeyoK VluIRgxIFnySSCLB3/pqzEdt8TwiLoM/ahIrGI+j0XTb2lY7r7Re4ochhb3BJToA /CRtnI2Q8KLfy3mMK0n/QQthVfBYGp4vPPuNG23QveclCyUwuBSWZ+NYQ+rwfTqV KnSz4msyvxSSHEvFzfBBDf0OLyB9PrY0aylqe1qzIsl9C8SjPzcN+xiiHa5ZDsuE ks7iLcdX2DRMslcs1sjrGyU18Pwh/eSEvkNfeusP30gaQWza1zDboHAaFmlbI59W 0tOMNNZi0iIq4sbmB3mQiXr3SXrF5YKgWRz7eCxCiE/+/YL9I8rsqKzKWjE= -----END CERTIFICATE-----Generated at Sun Jun 29 09:29:58 2025 by rpki-client