$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa File: bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa (raw, json) Hash identifier: TzGYRIHip1SVLjO/1xtifMDfDvdB8id4dwSJIgHyNfM= Subject key identifier: 82:81:BA:DB:FA:07:31:31:A3:25:B8:90:4D:D0:DD:3C:17:82:06:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63EC4EF48C3C5CA68FBC8067E9034F16120EF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa Signing time: Wed 18 Jun 2025 00:20:34 +0000 ROA not before: Wed 18 Jun 2025 00:20:34 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.44.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ec:4e:f4:8c:3c:5c:a6:8f:bc:80:67:e9:03:4f:16:12:0e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:20:34 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=c9c5398a1cf0f2308c01833bf7339b2a74a3c181df092ef6099f5e4bf867354c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:35:80:47:aa:e6:e7:38:ee:85:93:43:31:02: c9:23:ad:a3:77:de:13:5d:33:78:8e:b6:a4:31:5a: 42:c1:c1:a5:62:4e:3d:f8:09:e6:09:b8:86:9b:2e: 43:69:2a:ed:d9:00:be:3b:2c:a9:0c:f1:65:77:a0: 6c:52:8b:50:8b:39:06:6d:6c:87:bf:0b:06:c9:d2: 62:7b:61:a7:f7:41:af:25:6f:b4:86:b3:85:f9:34: 74:df:e8:05:0c:51:c7:45:37:dc:7b:11:00:44:73: 20:a9:44:3f:e4:68:7a:46:8b:0e:19:0a:c8:5e:63: 91:f0:ee:02:61:4a:62:cd:38:41:ad:13:1e:4b:e1: d3:c4:aa:fe:bc:9e:35:6a:89:b5:5b:04:51:4a:d4: 4f:e0:49:c0:8e:a7:9d:e5:4d:36:22:a3:6b:5d:a1: ed:97:84:bf:a2:61:cd:61:a9:dd:a3:96:8e:b5:90: 48:0d:40:f6:34:2a:00:cf:55:bf:2f:de:a4:f5:8c: 11:2b:7f:96:22:42:ef:1c:6d:00:52:95:1d:f9:3f: 03:d1:41:6b:7f:40:72:d6:bf:bc:3a:01:be:45:b1: 64:01:0b:a8:9b:c1:ac:27:61:eb:10:73:5a:f3:71: 62:e2:3b:32:1e:36:21:f7:0f:3c:b5:40:b2:74:f3: 81:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:81:BA:DB:FA:07:31:31:A3:25:B8:90:4D:D0:DD:3C:17:82:06:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.64.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:f4:ec:59:f7:7a:76:42:f6:ff:0d:36:00:9f:88:d0:31:fb: e4:32:02:ee:ae:2f:76:05:3e:9e:a3:7b:5f:51:86:d4:ac:b1: de:69:7b:e2:50:6e:37:ed:99:bf:a6:b7:29:d4:91:b5:48:6e: c1:e4:f0:24:9a:20:07:16:25:70:fc:1a:34:94:5d:dc:d1:c4: 8f:8d:30:bb:b7:51:93:60:43:cc:ec:44:ed:65:56:21:50:be: fd:8d:e3:02:d1:2e:a0:98:a5:ae:03:80:b6:e9:7a:f8:b9:aa: 72:b3:89:30:91:78:a8:ef:87:a5:ff:e3:a5:78:d5:ae:94:8c: 9e:7f:20:f6:80:be:b4:30:53:99:91:5c:9c:16:ee:dd:4a:71: 88:30:af:f5:8b:09:ac:bb:2f:c5:be:e2:1b:94:33:93:76:d5: 28:51:62:8a:3b:f3:b1:8e:28:53:ef:88:7d:26:32:10:9e:9b: e1:20:e8:26:05:89:d6:58:47:ea:fb:79:3c:a7:45:c5:4e:cd: 7f:91:36:ec:d5:65:b5:d3:98:90:29:f4:18:cd:39:53:a8:80: 45:ea:db:71:e9:16:67:2f:22:fc:cf:c4:22:d2:da:1c:18:27: 5e:ac:58:4f:4f:0a:cd:e0:77:f8:e2:6e:91:c1:07:8b:90:1b: 27:75:52:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITY+xO9Iw8XKaPvIBn6QNPFhIO+DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTgwMDIwMzRaFw0yNTA3MjMyMzU5NTla MHoxSTBHBgNVBAUTQGM5YzUzOThhMWNmMGYyMzA4YzAxODMzYmY3MzM5YjJhNzRh M2MxODFkZjA5MmVmNjA5OWY1ZTRiZjg2NzM1NGMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKA1gEeq5uc47oWTQzECySOto3feE10zeI62pDFaQsHBpWJO PfgJ5gm4hpsuQ2kq7dkAvjssqQzxZXegbFKLUIs5Bm1sh78LBsnSYnthp/dBryVv tIazhfk0dN/oBQxRx0U33HsRAERzIKlEP+RoekaLDhkKyF5jkfDuAmFKYs04Qa0T Hkvh08Sq/ryeNWqJtVsEUUrUT+BJwI6nneVNNiKja12h7ZeEv6JhzWGp3aOWjrWQ SA1A9jQqAM9Vvy/epPWMESt/liJC7xxtAFKVHfk/A9FBa39Acta/vDoBvkWxZAEL qJvBrCdh6xBzWvNxYuI7Mh42IfcPPLVAsnTzgVcCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSCgbrb+gcxMaMluJBN0N08F4IG+TAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYmMzMThiNzAtNWI4OC00YmY3LThiNmMtOWEyNmNlZTY1MTA5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBEgsQDANBgkqhkiG9w0BAQsFAAOCAQEAnfTsWfd6dkL2/w02AJ+I0DH75DIC 7q4vdgU+nqN7X1GG1Kyx3ml74lBuN+2Zv6a3KdSRtUhuweTwJJogBxYlcPwaNJRd 3NHEj40wu7dRk2BDzOxE7WVWIVC+/Y3jAtEuoJilrgOAtul6+LmqcrOJMJF4qO+H pf/jpXjVrpSMnn8g9oC+tDBTmZFcnBbu3UpxiDCv9YsJrLsvxb7iG5Qzk3bVKFFi ijvzsY4oU++IfSYyEJ6b4SDoJgWJ1lhH6vt5PKdFxU7Nf5E27NVltdOYkCn0GM05 U6iARerbcekWZy8i/M/EItLaHBgnXqxYT08KzeB3+OJukcEHi5AbJ3VS2A== -----END CERTIFICATE-----Generated at Sun Jun 29 21:10:31 2025 by rpki-client