$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa33094c-fc6e-426d-8a0c-c3010af5cd56.roa File: aa33094c-fc6e-426d-8a0c-c3010af5cd56.roa (raw, json) Hash identifier: BxhL9BCUXAHjzZMt6fANl96ip6VROBhzQGE33/bDozs= Subject key identifier: 3F:45:A8:A4:EF:8E:38:79:1A:3B:EF:05:F3:7A:83:10:9D:C4:5B:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 476C1C91E3BA2E60C874E38532B3FEE338FF27AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa33094c-fc6e-426d-8a0c-c3010af5cd56.roa Signing time: Sat 21 Jun 2025 00:00:21 +0000 ROA not before: Sat 21 Jun 2025 00:00:21 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.148.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:6c:1c:91:e3:ba:2e:60:c8:74:e3:85:32:b3:fe:e3:38:ff:27:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:00:21 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=bf50db2cc2847ebabfff9f746cf937ec8e62dd5b893bc6992bf7a54f907160e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:60:ab:fb:c7:7a:61:e2:1b:43:44:10:0d: 9f:1a:7d:b4:d2:e9:f4:d7:ac:a1:96:74:9d:14:9a: c4:4d:3d:6a:c2:46:fe:d3:7e:db:b5:1e:36:96:84: ef:e4:ea:56:8c:da:0a:81:9c:f8:b8:e7:56:64:ed: 25:76:b3:18:a1:33:12:d1:63:df:fe:17:dd:af:a1: 6c:90:c4:66:ae:4f:29:c2:17:f0:ff:c6:37:e8:fb: b5:3c:5e:c5:2f:42:d7:ce:8b:26:bf:31:2e:9c:11: 94:a6:c9:c5:f9:b5:88:2e:be:73:54:fc:86:6c:a5: b3:6f:68:ad:46:e5:13:a6:42:12:ca:82:2d:67:b9: 88:d2:37:6d:e3:10:99:35:64:28:17:40:e0:8b:bb: 53:5d:aa:67:d0:9f:a8:6e:34:22:36:f1:11:83:8e: 80:cd:83:3b:ab:64:4e:3d:c2:f3:14:56:b7:e3:7a: 94:01:32:a7:e6:48:1c:ae:e0:22:f8:5e:b5:2a:79: 52:39:db:37:63:9e:fe:3e:b4:00:9f:53:c4:ba:97: df:54:73:cb:3d:dc:4b:63:e2:3e:e4:cb:4c:fb:36: d8:e7:b0:83:24:2b:b9:78:b0:ce:bb:a9:45:21:94: b0:77:44:53:a3:fe:93:23:1e:a0:db:5b:74:39:83: c8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:45:A8:A4:EF:8E:38:79:1A:3B:EF:05:F3:7A:83:10:9D:C4:5B:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa33094c-fc6e-426d-8a0c-c3010af5cd56.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.148.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:4a:5f:b5:d2:05:f1:70:35:cc:4a:73:ca:80:ed:ed:17:e2: 92:34:4f:22:19:7e:80:dd:02:3a:1a:2b:f1:29:9c:83:63:32: 97:1a:f5:7d:18:3f:85:48:df:96:da:95:b6:f8:a5:2e:f8:d6: 85:29:99:93:e3:1a:d8:15:f1:27:5b:70:c9:05:a3:4e:f0:95: 08:09:0f:a1:fc:37:1e:d0:4d:85:c0:ca:f8:70:d5:6c:cc:ff: 7a:df:f7:6d:84:28:03:2e:ec:f9:61:5b:52:d6:32:73:f2:12: 06:f6:e3:d7:e4:8a:6d:f8:8f:6e:a9:7b:57:ea:75:f1:89:10: b1:05:80:58:f6:ba:63:bb:2c:7f:a7:bd:dd:2b:c9:17:21:c7: 9a:b2:a1:9b:1b:fe:35:89:2f:cd:fa:a8:7a:b2:18:f8:b6:4f: 58:71:c4:8d:80:31:1a:3b:4b:32:9f:8c:c0:25:9b:ba:6d:6f: dc:0c:bb:d1:4b:17:70:a6:41:ac:27:99:f3:e2:23:69:ba:fe: 3c:20:d1:59:7c:64:48:be:4a:b2:7f:75:fb:d6:2f:63:5d:ce: 66:cc:ec:97:66:08:dd:4d:ac:bf:f5:72:8a:15:76:54:b0:4c: a4:3c:db:03:5d:a0:3d:22:b4:e8:be:77:f8:19:ca:f6:38:1f: 6c:34:24:29 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUR2wckeO6LmDIdOOFMrP+4zj/J68wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAwMDIxWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjUwZGIyY2MyODQ3ZWJhYmZmZjlmNzQ2Y2Y5MzdlYzhl NjJkZDViODkzYmM2OTkyYmY3YTU0ZjkwNzE2MGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ4mCr+8d6YeIbQ0QQDZ8afbTS6fTXrKGWdJ0UmsRNPWrC Rv7Tftu1HjaWhO/k6laM2gqBnPi451Zk7SV2sxihMxLRY9/+F92voWyQxGauTynC F/D/xjfo+7U8XsUvQtfOiya/MS6cEZSmycX5tYguvnNU/IZspbNvaK1G5ROmQhLK gi1nuYjSN23jEJk1ZCgXQOCLu1NdqmfQn6huNCI28RGDjoDNgzurZE49wvMUVrfj epQBMqfmSByu4CL4XrUqeVI52zdjnv4+tACfU8S6l99Uc8s93Etj4j7ky0z7Ntjn sIMkK7l4sM67qUUhlLB3RFOj/pMjHqDbW3Q5g8hjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUP0WopO+OOHkaO+8F83qDEJ3EW8QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhMzMwOTRjLWZjNmUtNDI2ZC04YTBjLWMzMDEwYWY1Y2Q1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPlDANBgkqhkiG9w0BAQsFAAOCAQEAl0pftdIF8XA1zEpzyoDt7RfikjRP Ihl+gN0COhor8Smcg2Mylxr1fRg/hUjfltqVtvilLvjWhSmZk+Ma2BXxJ1twyQWj TvCVCAkPofw3HtBNhcDK+HDVbMz/et/3bYQoAy7s+WFbUtYyc/ISBvbj1+SKbfiP bql7V+p18YkQsQWAWPa6Y7ssf6e93SvJFyHHmrKhmxv+NYkvzfqoerIY+LZPWHHE jYAxGjtLMp+MwCWbum1v3Ay70UsXcKZBrCeZ8+Ijabr+PCDRWXxkSL5Ksn91+9Yv Y13OZszsl2YI3U2sv/VyihV2VLBMpDzbA12gPSK06L53+BnK9jgfbDQkKQ== -----END CERTIFICATE-----Generated at Sun Jun 29 08:08:45 2025 by rpki-client