$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa File: a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa (raw, json) Hash identifier: m2qIycng0q6XbWdY+1ikXPi9gZ1Wie+61/jvDDCklGg= Subject key identifier: A6:EA:70:5D:84:34:E8:0C:6D:F2:3F:51:9B:8F:D2:29:55:B9:5E:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45CD3CC21C24B875DC4534F7A258D0719B0A9C6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa Signing time: Fri 27 Jun 2025 00:01:06 +0000 ROA not before: Fri 27 Jun 2025 00:01:06 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.130.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:cd:3c:c2:1c:24:b8:75:dc:45:34:f7:a2:58:d0:71:9b:0a:9c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:01:06 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=cdf037129d5cacb5a99d3382560dd0250d278d4f685cfa69d9907a95a9ed7f81, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ff:d2:c7:5f:eb:2a:ff:22:60:13:0b:81:8d: e0:b6:ef:ed:2a:9c:60:00:ac:ff:91:b3:77:0a:a7: e7:09:d8:d4:48:fc:63:98:2a:a4:86:79:f2:74:02: dd:d7:62:e5:92:b7:10:e2:1c:37:a4:4f:a1:23:e0: 49:9a:d5:b8:4c:d0:11:77:d7:6c:b7:31:8c:73:37: b6:d1:7a:ba:41:bd:8a:83:f0:3e:39:66:9c:f3:e5: b9:ea:bd:36:1b:c5:39:46:2d:65:98:01:2d:a0:29: 9c:2f:67:a0:8c:77:5a:6b:92:64:8c:56:c0:8a:bf: d1:dc:ed:46:26:a6:e5:5a:b6:d0:77:8b:94:34:f5: 90:36:c7:b7:9f:e9:3c:f4:a1:54:ab:58:f0:23:25: 0b:01:f5:e3:e4:3a:71:a8:56:e6:9c:74:c2:d8:16: 8b:bf:fb:57:f4:f3:09:29:d0:4d:ab:1e:b7:87:d0: 8c:13:37:c8:61:e2:74:5c:2a:ce:2b:72:ef:18:f9: 58:a3:a5:6e:1a:05:71:00:60:59:bd:72:59:61:8c: 21:aa:fe:e4:d6:b3:b0:6b:01:ac:5a:95:88:8c:b4: 47:4d:af:b5:de:cd:d8:26:e6:12:40:46:f2:a1:73: 1c:94:3b:53:4d:a9:55:cc:a4:aa:3a:3e:21:65:3d: 9f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EA:70:5D:84:34:E8:0C:6D:F2:3F:51:9B:8F:D2:29:55:B9:5E:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.130.0.0/21 Signature Algorithm: sha256WithRSAEncryption 62:63:48:42:10:b4:36:19:d4:09:a1:b2:a9:98:c6:7e:06:4e: 43:86:9d:0c:3a:26:e3:ed:51:25:5d:4e:42:dc:9b:70:db:df: 3a:49:06:98:03:7e:bf:a2:48:3d:65:75:f2:fc:c0:fc:4e:cc: d8:9f:55:d3:58:f6:ed:ad:5a:22:4f:77:98:53:7e:88:2e:97: de:31:ba:69:49:05:26:e4:4d:df:f9:47:73:af:d6:25:b4:73: c2:6e:83:9d:52:d3:c5:98:3b:44:cc:6e:87:eb:be:4f:c5:ed: 0b:37:17:a2:da:ab:5b:9e:61:1f:34:f1:c4:cd:0d:83:5f:86: 81:ee:73:6d:ab:bf:e7:3a:16:42:32:ca:9f:82:ad:3d:56:23: 46:68:b5:0e:1c:4c:cb:30:fd:5d:b2:19:e0:23:30:4e:b9:57: 10:cf:10:f0:82:ab:4b:b9:96:75:e7:a2:17:2d:9e:c9:53:64: c0:e5:30:5a:06:e0:c8:78:94:23:d7:fc:c9:20:e6:a3:c2:b3: 44:d8:6e:76:37:af:5c:33:cc:0f:ac:f8:5d:52:d9:05:47:fe: 93:1f:35:a2:c4:ba:2d:fe:e5:a5:7f:3a:96:58:b5:ea:1a:5d: 4c:4a:61:af:9a:89:3e:82:26:bf:40:c0:cc:b5:e4:af:a3:02: 71:87:bb:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURc08whwkuHXcRTT3oljQcZsKnGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAwMTA2WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGYwMzcxMjlkNWNhY2I1YTk5ZDMzODI1NjBkZDAyNTBk Mjc4ZDRmNjg1Y2ZhNjlkOTkwN2E5NWE5ZWQ3ZjgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe/9LHX+sq/yJgEwuBjeC27+0qnGAArP+Rs3cKp+cJ2NRI /GOYKqSGefJ0At3XYuWStxDiHDekT6Ej4Ema1bhM0BF312y3MYxzN7bRerpBvYqD 8D45Zpzz5bnqvTYbxTlGLWWYAS2gKZwvZ6CMd1prkmSMVsCKv9Hc7UYmpuVattB3 i5Q09ZA2x7ef6Tz0oVSrWPAjJQsB9ePkOnGoVuacdMLYFou/+1f08wkp0E2rHreH 0IwTN8hh4nRcKs4rcu8Y+VijpW4aBXEAYFm9cllhjCGq/uTWs7BrAaxalYiMtEdN r7Xezdgm5hJARvKhcxyUO1NNqVXMpKo6PiFlPZ9pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpupwXYQ06Axt8j9Rm4/SKVW5XmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0NWQ1ZTJhLWIzOGQtNGU2Ni04NmQzLTdhMDM5MTc3ZDQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNggAwDQYJKoZIhvcNAQELBQADggEBAGJjSEIQtDYZ1AmhsqmYxn4GTkOG nQw6JuPtUSVdTkLcm3Db3zpJBpgDfr+iSD1ldfL8wPxOzNifVdNY9u2tWiJPd5hT fogul94xumlJBSbkTd/5R3Ov1iW0c8Jug51S08WYO0TMbofrvk/F7Qs3F6Laq1ue YR808cTNDYNfhoHuc22rv+c6FkIyyp+CrT1WI0ZotQ4cTMsw/V2yGeAjME65VxDP EPCCq0u5lnXnohctnslTZMDlMFoG4Mh4lCPX/Mkg5qPCs0TYbnY3r1wzzA+s+F1S 2QVH/pMfNaLEui3+5aV/OpZYteoaXUxKYa+aiT6CJr9AwMy15K+jAnGHux4= -----END CERTIFICATE-----Generated at Sun Jun 29 11:26:03 2025 by rpki-client