$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa File: 3505df96-b443-43ec-8e8c-f0de340b6cc2.roa (raw, json) Hash identifier: 4ctwV9cd+ud6GXL3nX4lLrBMYxnZMEQfN2wbhdridcQ= Subject key identifier: 37:25:F7:A4:7D:6F:13:B9:4E:4B:00:6D:38:3D:BC:D4:9B:0F:DA:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 222112434CC8D930F52EA8F87011C675FE81FE5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa Signing time: Tue 05 Aug 2025 00:01:16 +0000 ROA not before: Tue 05 Aug 2025 00:01:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 134.38.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:21:12:43:4c:c8:d9:30:f5:2e:a8:f8:70:11:c6:75:fe:81:fe:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:01:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9c0796a38eb4ccc9f47c6582e53128cd2110d84d9d05fe6caf9cfd2865f2e151, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0f:39:98:99:aa:f1:7c:8c:b2:9c:86:ce:61: 46:e5:b6:ff:5f:d6:39:69:0b:2a:31:d5:9c:45:98: 62:19:ab:68:b2:5f:08:a3:bd:46:59:79:08:fe:c3: 9c:2b:76:18:c1:96:92:54:ec:0c:7f:34:df:1b:35: 6d:cd:1c:b0:50:a9:17:22:23:e4:bf:10:33:8f:47: a5:df:55:5e:15:fe:bc:66:1f:03:89:a6:9b:54:5e: d5:b8:6a:b4:e8:9b:b2:69:2e:7e:91:99:f4:95:e9: 75:d2:7f:f0:ef:1e:ba:45:72:d2:45:7d:5c:8e:8a: 20:7c:b4:5d:f0:0e:24:51:3c:42:1d:8b:1d:25:f6: dd:18:eb:50:d2:99:6f:80:98:a0:a5:c3:d7:b2:83: e2:53:4a:c0:78:58:82:3c:ac:d2:b2:6d:3a:36:41: b0:06:56:17:e9:f8:7a:9a:b5:2e:50:c0:c4:3c:e5: 83:5c:ae:92:f2:19:73:b4:07:cd:f1:03:87:50:ed: a5:f4:14:a7:0b:b7:dd:65:7e:5f:b8:6e:aa:d6:84: c5:fa:44:8e:25:a3:be:f7:e5:53:51:14:80:30:ad: 97:63:1b:78:53:ad:4c:66:b5:37:ea:14:8d:3e:70: d8:37:e2:58:e4:fa:25:5a:47:76:4c:26:16:1d:a7: 01:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:25:F7:A4:7D:6F:13:B9:4E:4B:00:6D:38:3D:BC:D4:9B:0F:DA:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.38.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:14:9c:17:0a:b5:6c:f5:a6:0b:4e:67:4e:3d:31:f5:6f:9a: 82:06:a6:64:36:8b:5b:21:5b:88:26:2c:4d:60:f4:da:f4:a6: 82:c3:cb:4d:b7:84:64:e2:ac:f2:3e:e9:1c:78:05:54:27:46: e2:0b:3e:13:50:cf:1f:0c:1d:0d:25:ed:98:4f:0d:15:44:a8: 2d:91:97:11:72:8b:d4:2f:17:13:f3:b0:ad:e0:98:82:c3:75: cc:56:39:09:f7:0b:43:97:b8:21:48:3a:50:2f:a9:ed:4b:b5: d3:3d:98:30:44:49:a3:aa:bd:20:67:7e:ea:a4:ac:ee:e0:d2: 7a:b6:c3:e4:3f:f1:89:fe:7e:c6:1e:be:fb:1f:82:fc:95:69: 21:83:41:d3:39:b5:45:b8:23:b6:d9:41:fe:7d:94:73:19:1d: 4b:b2:77:b3:19:b6:0d:5c:3a:3a:9b:c5:53:9f:c5:17:08:28: 2a:64:e5:f0:a2:da:dd:d9:c4:95:ca:59:73:2a:7c:b1:53:83: 17:1b:b8:71:b9:07:ea:c1:69:13:52:71:4b:7c:ba:df:d1:ae: 2c:29:57:1f:09:fe:78:3d:52:02:70:f4:45:bd:e7:9d:1f:a8: 6c:c2:d7:ac:4a:24:42:16:50:8d:da:d0:cd:14:db:3c:45:b6: fc:33:8e:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIiESQ0zI2TD1Lqj4cBHGdf6B/lowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAwMTE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzA3OTZhMzhlYjRjY2M5ZjQ3YzY1ODJlNTMxMjhjZDIx MTBkODRkOWQwNWZlNmNhZjljZmQyODY1ZjJlMTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5DzmYmarxfIyynIbOYUbltv9f1jlpCyox1ZxFmGIZq2iy XwijvUZZeQj+w5wrdhjBlpJU7Ax/NN8bNW3NHLBQqRciI+S/EDOPR6XfVV4V/rxm HwOJpptUXtW4arTom7JpLn6RmfSV6XXSf/DvHrpFctJFfVyOiiB8tF3wDiRRPEId ix0l9t0Y61DSmW+AmKClw9eyg+JTSsB4WII8rNKybTo2QbAGVhfp+HqatS5QwMQ8 5YNcrpLyGXO0B83xA4dQ7aX0FKcLt91lfl+4bqrWhMX6RI4lo7735VNRFIAwrZdj G3hTrUxmtTfqFI0+cNg34ljk+iVaR3ZMJhYdpwETAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNyX3pH1vE7lOSwBtOD281JsP2tMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MDVkZjk2LWI0NDMtNDNlYy04ZThjLWYwZGUzNDBiNmNjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGJjANBgkqhkiG9w0BAQsFAAOCAQEAmRScFwq1bPWmC05nTj0x9W+aggam ZDaLWyFbiCYsTWD02vSmgsPLTbeEZOKs8j7pHHgFVCdG4gs+E1DPHwwdDSXtmE8N FUSoLZGXEXKL1C8XE/OwreCYgsN1zFY5CfcLQ5e4IUg6UC+p7Uu10z2YMERJo6q9 IGd+6qSs7uDSerbD5D/xif5+xh6++x+C/JVpIYNB0zm1RbgjttlB/n2UcxkdS7J3 sxm2DVw6OpvFU5/FFwgoKmTl8KLa3dnElcpZcyp8sVODFxu4cbkH6sFpE1JxS3y6 39GuLClXHwn+eD1SAnD0Rb3nnR+obMLXrEokQhZQjdrQzRTbPEW2/DOOXA== -----END CERTIFICATE-----Generated at Sat Aug 9 01:01:55 2025 by rpki-client