$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa File: a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa (raw, json) Hash identifier: 1qgSClEoJV9KHAZTfQMPnffIPGSRrgnc38BSnCMMRSA= Subject key identifier: 1A:72:77:F7:A0:2B:02:A1:17:D4:78:36:0B:DE:EC:7F:DF:EF:B9:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14BF65B492CC419FA81F989FCA38838BE9BA9E8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa Signing time: Mon 16 Jun 2025 15:31:27 +0000 ROA not before: Mon 16 Jun 2025 15:31:27 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:bf:65:b4:92:cc:41:9f:a8:1f:98:9f:ca:38:83:8b:e9:ba:9e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:31:27 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=61b504fd14e26b6db0e785ef7082b192f036c9cdc1feff902c805121bc659fde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:28:d3:32:85:84:5b:ad:7b:c6:45:ff:ce:69: bd:f4:99:1b:20:a9:b9:77:3d:b9:53:de:66:93:d4: 05:3f:67:a3:69:54:94:47:80:b5:68:6e:24:51:16: 2f:03:3a:48:f8:3d:9d:f0:77:3f:8f:81:b9:70:6c: 79:ee:4c:2b:65:6d:11:e9:23:79:66:db:7d:4f:c6: 2a:43:7b:6f:46:a0:42:08:e3:c3:e5:8b:c3:41:ed: 49:89:05:0b:f5:cd:b0:dc:18:30:05:40:b2:be:6c: 28:37:6e:86:d1:f7:f2:54:e2:20:e9:d2:98:53:13: 29:07:32:b9:77:e5:0e:d9:4d:0c:dc:17:2c:d0:4e: 95:38:e3:d9:03:ab:88:f2:32:80:12:3d:bc:fb:23: f3:f6:5c:ed:05:39:33:68:4e:9f:e0:14:4b:f7:2d: d4:98:0a:8b:67:eb:80:bf:c6:e3:b8:7c:4e:a1:95: 46:73:94:72:97:cc:4a:b6:f6:ed:49:f6:b8:33:aa: 3c:45:ed:a8:2f:68:45:f3:cf:9f:60:97:e4:d5:1f: 4a:7c:13:2a:23:9c:b9:8b:43:b9:11:b2:7d:03:2b: ec:aa:89:3d:4d:9b:d4:45:9c:bb:dd:9c:9f:c8:98: 93:9f:97:99:7e:fd:f7:bd:d7:66:9a:44:c2:ac:e7: 7a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:72:77:F7:A0:2B:02:A1:17:D4:78:36:0B:DE:EC:7F:DF:EF:B9:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.184.0/24 Signature Algorithm: sha256WithRSAEncryption c8:41:3b:20:aa:3c:22:90:75:bd:78:e8:80:7f:b1:fc:0c:c0: e3:b4:20:a4:b3:d3:b2:c8:12:83:05:7b:84:10:f5:c8:9c:73: 74:20:e8:f3:f3:61:cb:b2:29:69:40:a7:03:5d:ff:c8:69:3b: c1:0e:b8:90:55:9e:84:f2:9e:8a:73:a4:fc:01:4d:04:fe:44: 1d:e1:d9:7d:63:b6:f9:a3:6e:ba:25:b1:01:e5:84:29:0b:ca: f5:35:3a:06:eb:8f:07:c0:1f:fd:df:d2:c5:66:c6:cb:6a:af: 52:36:73:31:8a:7b:b4:52:88:45:d3:60:bf:4b:4a:54:1f:eb: c9:d3:e9:0b:ee:fd:2a:af:10:28:aa:e9:d8:d9:60:7c:9e:3e: a9:39:af:e0:f3:2f:b2:98:3d:8d:be:96:45:27:86:a8:fd:c3: f4:f6:33:b1:f1:f6:96:5b:e0:fb:e2:4b:88:fe:96:fc:3d:b4: 44:81:8c:1a:18:dd:c3:4c:38:98:9b:8a:cb:93:b1:8b:14:95: 06:2b:a1:fb:50:17:18:c7:d2:61:e0:f8:6d:04:ed:66:4b:c0: 27:51:71:74:ca:6a:b8:1b:80:71:ce:5f:4f:4c:21:d9:8a:ea: 6e:e8:0b:d8:93:26:85:1e:f1:17:70:fd:bb:b6:de:8c:8a:84: 0a:fb:77:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFL9ltJLMQZ+oH5ifyjiDi+m6nowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUzMTI3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWI1MDRmZDE0ZTI2YjZkYjBlNzg1ZWY3MDgyYjE5MmYw MzZjOWNkYzFmZWZmOTAyYzgwNTEyMWJjNjU5ZmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhKNMyhYRbrXvGRf/Oab30mRsgqbl3PblT3maT1AU/Z6Np VJRHgLVobiRRFi8DOkj4PZ3wdz+PgblwbHnuTCtlbRHpI3lm231PxipDe29GoEII 48Pli8NB7UmJBQv1zbDcGDAFQLK+bCg3bobR9/JU4iDp0phTEykHMrl35Q7ZTQzc FyzQTpU449kDq4jyMoASPbz7I/P2XO0FOTNoTp/gFEv3LdSYCotn64C/xuO4fE6h lUZzlHKXzEq29u1J9rgzqjxF7agvaEXzz59gl+TVH0p8EyojnLmLQ7kRsn0DK+yq iT1Nm9RFnLvdnJ/ImJOfl5l+/fe912aaRMKs53rjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGnJ396ArAqEX1Hg2C97sf9/vuXQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNWQwNjQ3LTI2MDUtNDQwMy1hMDVmLWNlOGVjMWRiNGVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFALgwDQYJKoZIhvcNAQELBQADggEBAMhBOyCqPCKQdb146IB/sfwMwOO0 IKSz07LIEoMFe4QQ9cicc3Qg6PPzYcuyKWlApwNd/8hpO8EOuJBVnoTynopzpPwB TQT+RB3h2X1jtvmjbrolsQHlhCkLyvU1OgbrjwfAH/3f0sVmxstqr1I2czGKe7RS iEXTYL9LSlQf68nT6Qvu/SqvECiq6djZYHyePqk5r+DzL7KYPY2+lkUnhqj9w/T2 M7Hx9pZb4PviS4j+lvw9tESBjBoY3cNMOJibisuTsYsUlQYroftQFxjH0mHg+G0E 7WZLwCdRcXTKargbgHHOX09MIdmK6m7oC9iTJoUe8Rdw/bu23oyKhAr7d3A= -----END CERTIFICATE-----Generated at Mon Jun 30 18:17:33 2025 by rpki-client