$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa File: a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa (raw, json) Hash identifier: dVPPFV70vT3+erDpcFEJl2cCrW4oXt82+7zmxJXBN5k= Subject key identifier: D1:3C:20:0A:71:AA:CF:7E:F6:D8:84:7F:B6:66:0E:5A:DC:D1:C9:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0120C111FBD1414AD6916B9C7F0CCE61C832C21E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa Signing time: Fri 27 Jun 2025 00:00:55 +0000 ROA not before: Fri 27 Jun 2025 00:00:55 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:20:c1:11:fb:d1:41:4a:d6:91:6b:9c:7f:0c:ce:61:c8:32:c2:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:00:55 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=07978521e23c91d9c91e089fbe4dfa40e1738bd7f3fee4746e934ed881693e00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:83:53:cb:98:f1:82:5b:28:44:06:59:f2: bc:f0:ca:cf:74:8e:78:6e:45:56:3f:b3:fa:3b:6a: 80:31:6a:75:a7:b4:f0:1e:2b:93:c9:6b:c7:e4:bf: 67:bd:36:61:6c:e1:cc:f2:0a:3b:53:95:43:58:49: 94:d4:e2:bc:20:be:80:51:9b:7f:d0:76:0b:a3:92: f7:f0:b3:34:95:19:6a:c7:e3:12:00:65:90:bc:db: ed:7c:f2:9f:35:fd:9b:bd:b8:29:de:d2:4d:01:09: 64:4c:c4:bb:6a:ae:6a:84:5f:1e:50:3f:c0:f9:61: 83:ea:b8:b3:e7:06:1d:64:46:be:fc:5d:aa:55:f2: ac:79:bb:d1:41:4d:7d:0d:55:bc:91:5a:f7:f7:1a: e7:25:92:e8:04:5b:85:92:bc:46:cc:80:03:b4:b7: 89:10:d2:bc:32:76:26:8c:c2:02:ff:e3:82:4f:14: 65:1f:9f:96:e0:8f:d4:eb:e1:45:7b:e3:2f:43:94: e3:4b:ad:7c:b0:c5:20:9c:f8:10:bc:a6:96:4f:f1: 79:18:bd:87:4f:41:fa:de:d9:3a:a7:5e:40:65:e4: 92:2d:b1:cf:55:a2:02:78:fa:83:a0:2b:0b:4f:9e: 9f:c6:bc:53:d6:56:3f:cf:89:3b:71:de:cc:60:f6: 7a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3C:20:0A:71:AA:CF:7E:F6:D8:84:7F:B6:66:0E:5A:DC:D1:C9:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.144.0/20 Signature Algorithm: sha256WithRSAEncryption 83:b1:a7:d2:53:74:7c:13:b2:9c:db:4b:d1:19:95:19:c9:ef: 3e:09:9e:a2:29:99:0a:c5:48:b0:e2:1c:4b:65:6c:03:86:01: e4:d1:47:ff:2a:f5:a7:b7:75:95:53:02:e7:be:83:ad:2b:7a: 46:13:8e:64:34:9e:62:19:24:65:8a:d7:61:ae:9f:c3:2a:a4: 04:91:c3:48:ea:ef:4f:20:5d:21:d4:06:ba:aa:d2:d2:ec:4f: 48:51:4d:e0:7d:19:a6:01:8a:eb:bd:5b:89:8f:b2:38:70:15: 3a:15:6a:fd:e6:54:28:19:74:d0:18:ea:93:53:8b:0b:34:7e: 9f:4f:20:18:43:f3:85:86:fa:2d:7c:15:f6:22:9d:f2:0b:5a: 17:d0:37:09:d1:2f:6a:f5:dc:0c:82:5a:dd:80:97:59:70:1e: 8f:31:ef:a5:cd:b5:65:c8:d6:63:fb:c8:2d:81:90:40:60:50: bc:64:7a:2a:ec:b4:57:97:0c:3a:0d:98:ee:25:e3:38:63:12: c3:dc:0c:03:73:a7:ac:a0:92:76:26:51:bd:79:26:1e:64:ea: 92:d1:d3:ff:7c:a7:d3:17:5e:10:0e:41:07:ef:57:24:dc:9c: 82:24:86:99:fe:40:bd:9e:39:11:3b:7b:ac:49:0d:7b:40:73: fb:3e:45:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUASDBEfvRQUrWkWucfwzOYcgywh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAwMDU1WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzk3ODUyMWUyM2M5MWQ5YzkxZTA4OWZiZTRkZmE0MGUx NzM4YmQ3ZjNmZWU0NzQ2ZTkzNGVkODgxNjkzZTAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUC4NTy5jxglsoRAZZ8rzwys90jnhuRVY/s/o7aoAxanWn tPAeK5PJa8fkv2e9NmFs4czyCjtTlUNYSZTU4rwgvoBRm3/QdgujkvfwszSVGWrH 4xIAZZC82+188p81/Zu9uCne0k0BCWRMxLtqrmqEXx5QP8D5YYPquLPnBh1kRr78 XapV8qx5u9FBTX0NVbyRWvf3GuclkugEW4WSvEbMgAO0t4kQ0rwydiaMwgL/44JP FGUfn5bgj9Tr4UV74y9DlONLrXywxSCc+BC8ppZP8XkYvYdPQfre2TqnXkBl5JIt sc9VogJ4+oOgKwtPnp/GvFPWVj/PiTtx3sxg9nptAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0TwgCnGqz3722IR/tmYOWtzRyZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4YWJjN2EwLWJlZjAtNDk1ZC1iNTA1LTc4OGZmNDZiMmM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgJAwDQYJKoZIhvcNAQELBQADggEBAIOxp9JTdHwTspzbS9EZlRnJ7z4J nqIpmQrFSLDiHEtlbAOGAeTRR/8q9ae3dZVTAue+g60rekYTjmQ0nmIZJGWK12Gu n8MqpASRw0jq708gXSHUBrqq0tLsT0hRTeB9GaYBiuu9W4mPsjhwFToVav3mVCgZ dNAY6pNTiws0fp9PIBhD84WG+i18FfYinfILWhfQNwnRL2r13AyCWt2Al1lwHo8x 76XNtWXI1mP7yC2BkEBgULxkeirstFeXDDoNmO4l4zhjEsPcDANzp6ygknYmUb15 Jh5k6pLR0/98p9MXXhAOQQfvVyTcnIIkhpn+QL2eORE7e6xJDXtAc/s+RQw= -----END CERTIFICATE-----Generated at Sun Jun 29 09:14:22 2025 by rpki-client