$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa File: 07695761-8a08-4e9d-84f2-8ddd5510cbad.roa (raw, json) Hash identifier: 4BXHKwvYoo62jWyaR1ZSzZEq3mQCub5g4XQ7x0/hbtI= Subject key identifier: 0C:1A:71:26:57:CD:D6:BF:15:79:41:58:B5:06:DA:A2:A4:42:E9:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5177587DB09D9D8E89E9A9A60F7D7757F404C932 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa Signing time: Mon 21 Jul 2025 15:31:08 +0000 ROA not before: Mon 21 Jul 2025 15:31:08 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.174.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:77:58:7d:b0:9d:9d:8e:89:e9:a9:a6:0f:7d:77:57:f4:04:c9:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:31:08 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=85a87dca5b1a01c79538c088b1951e522b9d64f0c8b7ab6caacccdbe400bba48, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c7:85:92:d3:35:6f:76:41:23:ab:c5:22:b0: 74:ba:85:b3:5d:c6:de:f3:ab:64:0a:34:24:75:4b: 9f:ac:2f:68:6f:68:ac:a6:79:be:fb:2f:85:11:c1: 3d:f9:d6:4e:b9:6c:b4:52:44:0f:13:7e:7c:1d:bc: b6:97:57:d9:91:9f:48:87:ff:89:de:3d:c9:4e:da: f5:77:ef:a8:2a:d0:b2:23:ce:bd:2a:69:cf:18:76: 0e:fc:15:f2:03:80:3e:0d:6d:1f:cc:09:9a:0a:b5: 1b:4c:30:26:e9:c7:67:fe:31:7b:00:8e:ba:58:e7: cf:fb:91:23:df:ea:08:0e:b0:a4:0f:0a:2e:27:f5: bf:8a:4c:07:33:18:4a:ff:6f:43:7b:61:4e:74:92: 95:e4:fa:93:b5:01:21:85:6b:0b:73:37:ed:38:6b: 0c:20:47:3a:df:86:75:b3:41:a7:54:72:05:10:09: 7a:b4:33:6c:22:a6:c6:fa:7b:98:ac:4a:cc:0f:5d: ab:f3:bc:e8:8e:41:d4:bb:12:d3:86:60:c2:84:9d: d6:d1:1d:af:6e:05:88:cf:1c:bd:09:4e:b6:05:c6: 25:bb:af:da:3c:ad:45:8a:6d:e2:93:0e:4a:4a:6e: bd:bd:1f:82:f7:cb:34:03:e9:ab:49:1c:1b:97:be: ff:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1A:71:26:57:CD:D6:BF:15:79:41:58:B5:06:DA:A2:A4:42:E9:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:28:ee:d9:47:e8:ad:a0:f5:b0:8c:71:9c:27:1f:a1:b2:01: e8:48:48:3d:6c:3f:5f:f6:7c:08:75:1c:ee:b1:90:3a:e4:af: c7:cc:76:6c:ff:ee:7d:96:3d:63:e8:ca:43:63:a7:91:92:59: ed:5f:ff:e0:6e:6b:92:85:65:7d:92:41:a6:3b:f4:25:d3:2f: fd:c6:f4:81:ab:dd:54:e6:d8:8b:ce:69:66:0b:53:bf:75:da: 21:49:72:af:93:75:5c:14:1d:3b:72:c2:38:7c:9d:e9:69:f3: 6a:7c:3d:f3:4b:3b:3e:16:02:4c:fb:24:fd:ec:19:77:66:88: ec:69:90:40:70:8c:75:ce:54:bc:23:77:f7:8b:00:95:c6:67: 5c:c8:b4:5c:14:c3:e1:c5:b0:d4:b3:7f:d4:64:d0:05:45:3b: 07:b2:33:97:d4:40:9f:8a:a6:ca:38:d4:9e:33:fb:6c:fd:7a: 43:26:b7:5f:76:bb:05:e9:a9:78:25:02:00:8b:3c:ac:d2:ed: 5d:7d:2d:23:95:72:06:07:d6:90:22:a2:e8:ce:a2:df:fa:34: 21:e0:93:99:b0:78:22:7c:1e:41:24:be:8f:ec:35:f8:d9:91: c9:f4:05:65:5f:a8:e4:fa:16:4f:9c:3c:c1:97:00:a8:8a:84: 4d:57:45:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUXdYfbCdnY6J6ammD313V/QEyTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTUzMTA4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWE4N2RjYTViMWEwMWM3OTUzOGMwODhiMTk1MWU1MjJi OWQ2NGYwYzhiN2FiNmNhYWNjY2RiZTQwMGJiYTQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDix4WS0zVvdkEjq8UisHS6hbNdxt7zq2QKNCR1S5+sL2hv aKymeb77L4URwT351k65bLRSRA8TfnwdvLaXV9mRn0iH/4nePclO2vV376gq0LIj zr0qac8Ydg78FfIDgD4NbR/MCZoKtRtMMCbpx2f+MXsAjrpY58/7kSPf6ggOsKQP Ci4n9b+KTAczGEr/b0N7YU50kpXk+pO1ASGFawtzN+04awwgRzrfhnWzQadUcgUQ CXq0M2wipsb6e5isSswPXavzvOiOQdS7EtOGYMKEndbRHa9uBYjPHL0JTrYFxiW7 r9o8rUWKbeKTDkpKbr29H4L3yzQD6atJHBuXvv99AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDBpxJlfN1r8VeUFYtQbaoqRC6ZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3Njk1NzYxLThhMDgtNGU5ZC04NGYyLThkZGQ1NTEwY2JhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQrjANBgkqhkiG9w0BAQsFAAOCAQEACyju2UforaD1sIxxnCcfobIB6EhI PWw/X/Z8CHUc7rGQOuSvx8x2bP/ufZY9Y+jKQ2OnkZJZ7V//4G5rkoVlfZJBpjv0 JdMv/cb0gavdVObYi85pZgtTv3XaIUlyr5N1XBQdO3LCOHyd6Wnzanw980s7PhYC TPsk/ewZd2aI7GmQQHCMdc5UvCN394sAlcZnXMi0XBTD4cWw1LN/1GTQBUU7B7Iz l9RAn4qmyjjUnjP7bP16Qya3X3a7BempeCUCAIs8rNLtXX0tI5VyBgfWkCKi6M6i 3/o0IeCTmbB4InweQSS+j+w1+NmRyfQFZV+o5PoWT5w8wZcAqIqETVdFag== -----END CERTIFICATE-----Generated at Wed Aug 6 13:19:50 2025 by rpki-client