$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa File: 2f9e8f4f-538b-40a7-8959-829f09f79955.roa (raw, json) Hash identifier: jyftXqnQFfyTmL3kTsnD7ieGwqwWejwE4AzhFdTdt28= Subject key identifier: 41:CE:B0:1F:08:D4:CE:52:75:5F:C8:7B:21:7D:3F:3B:57:D0:A5:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F9B09D9215CB3D33A490BBC5D7A85905A233060 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa Signing time: Fri 01 Aug 2025 15:10:27 +0000 ROA not before: Fri 01 Aug 2025 15:10:27 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9b:09:d9:21:5c:b3:d3:3a:49:0b:bc:5d:7a:85:90:5a:23:30:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:10:27 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=8f4a75ba89abda56be1ab58386a52cb2b3894096dda303bb707564a21ae83c75, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:46:f0:73:55:a9:65:10:d3:92:7f:80:e8:e5: 50:0c:54:86:0a:a6:d6:f1:e7:2c:9c:43:93:70:e3: bf:04:77:07:b2:b1:fe:79:92:25:27:aa:0a:67:33: 5e:c1:cd:74:7e:1c:21:f1:9e:b9:50:94:af:f7:a1: 6a:1f:1a:9f:57:b2:8d:1d:93:67:0e:df:b4:de:95: 37:60:3c:62:13:48:8a:7f:f5:b6:01:44:23:be:ef: 8f:cf:51:3d:75:24:cf:24:63:da:d2:1c:84:2a:4f: 63:15:0b:fb:3a:0f:c8:86:36:6e:4e:51:ad:fc:a5: be:c0:dc:58:5c:38:1e:86:bc:6a:06:6e:a3:91:31: e9:c7:7f:e7:b4:30:18:98:24:dc:75:4b:39:d1:f1: dc:d4:82:13:ab:4c:cf:45:12:d6:ba:d4:c8:9f:f8: b5:d9:b0:2a:50:af:a6:12:6a:ca:cd:40:6e:f7:9d: a6:67:ff:c6:f1:32:8b:ff:f9:30:4f:86:dd:6e:10: e1:06:29:36:50:e4:05:fd:3a:30:e8:f0:a0:9b:b9: 71:a9:ce:ad:19:ee:d6:f3:34:db:4c:5a:ea:26:52: ce:7e:a2:c1:18:20:f8:e3:54:b0:c4:77:15:35:6c: 59:80:e9:c5:29:74:9b:f7:d7:e5:54:f5:aa:36:e1: c2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CE:B0:1F:08:D4:CE:52:75:5F:C8:7B:21:7D:3F:3B:57:D0:A5:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption a7:d9:81:57:62:1a:85:00:08:71:e7:c3:9e:80:b2:8c:2d:dc: bf:f8:18:0c:02:74:c3:95:59:d5:8a:63:09:43:2a:f5:3d:92: e5:30:cc:40:0a:b7:3d:31:91:19:a5:25:97:45:ea:8e:c3:4c: da:45:92:9d:2b:22:2d:ac:94:ea:b5:2a:0c:8c:17:15:19:a5: 36:d0:cf:67:e9:62:92:11:4d:44:d2:95:2c:83:18:47:05:2c: 6f:2e:3a:91:96:34:d7:13:19:8e:e5:98:cf:6b:d7:44:23:0e: 5e:c9:cd:40:a5:29:85:f0:c1:12:b6:83:09:43:a3:db:80:c2: 97:61:67:1c:af:c9:34:99:76:b3:5c:13:df:7a:e5:92:3d:fe: 75:ef:71:94:f4:d1:30:f6:8b:b5:08:e6:bd:55:c6:95:a8:6b: db:97:86:2d:3c:20:54:d1:1b:60:84:de:cc:4b:67:dc:73:da: 80:25:46:6e:e9:7a:5d:70:3f:c7:85:01:84:af:f2:fb:d3:10: 4e:7a:cc:73:ae:00:b4:7d:2b:2e:68:e2:5c:3e:93:f2:61:91: 4f:7e:24:2a:37:01:bb:88:e1:49:85:49:c4:1e:f6:7c:d5:db: 3a:6b:05:92:8f:e5:e6:43:a5:1d:83:ff:a1:d7:a9:39:f5:77: a8:59:0a:bf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb5sJ2SFcs9M6SQu8XXqFkFojMGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMDI3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjRhNzViYTg5YWJkYTU2YmUxYWI1ODM4NmE1MmNiMmIz ODk0MDk2ZGRhMzAzYmI3MDc1NjRhMjFhZTgzYzc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2RvBzVallENOSf4Do5VAMVIYKptbx5yycQ5Nw478Edwey sf55kiUnqgpnM17BzXR+HCHxnrlQlK/3oWofGp9Xso0dk2cO37TelTdgPGITSIp/ 9bYBRCO+74/PUT11JM8kY9rSHIQqT2MVC/s6D8iGNm5OUa38pb7A3FhcOB6GvGoG bqORMenHf+e0MBiYJNx1SznR8dzUghOrTM9FEta61Mif+LXZsCpQr6YSasrNQG73 naZn/8bxMov/+TBPht1uEOEGKTZQ5AX9OjDo8KCbuXGpzq0Z7tbzNNtMWuomUs5+ osEYIPjjVLDEdxU1bFmA6cUpdJv31+VU9ao24cJPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQc6wHwjUzlJ1X8h7IX0/O1fQpeEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWU4ZjRmLTUzOGItNDBhNy04OTU5LTgyOWYwOWY3OTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNDANBgkqhkiG9w0BAQsFAAOCAQEAp9mBV2IahQAIcefDnoCyjC3cv/gY DAJ0w5VZ1YpjCUMq9T2S5TDMQAq3PTGRGaUll0XqjsNM2kWSnSsiLayU6rUqDIwX FRmlNtDPZ+likhFNRNKVLIMYRwUsby46kZY01xMZjuWYz2vXRCMOXsnNQKUphfDB EraDCUOj24DCl2FnHK/JNJl2s1wT33rlkj3+de9xlPTRMPaLtQjmvVXGlahr25eG LTwgVNEbYITezEtn3HPagCVGbul6XXA/x4UBhK/y+9MQTnrMc64AtH0rLmjiXD6T 8mGRT34kKjcBu4jhSYVJxB72fNXbOmsFko/l5kOlHYP/odepOfV3qFkKvw== -----END CERTIFICATE-----Generated at Wed Aug 6 10:03:07 2025 by rpki-client