$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36ee8694-0818-4109-a12a-7638aec01c2a.roa File: 36ee8694-0818-4109-a12a-7638aec01c2a.roa (raw, json) Hash identifier: jCYvjEi+/+E4HUjNIR0O0ARCiVQ017An0dxYNs43O44= Subject key identifier: 94:8B:61:23:FA:38:21:81:FA:92:84:A3:37:E5:AA:B2:FD:63:27:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5995EE16F71CE453E89F81E0D17EF975714C5C94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36ee8694-0818-4109-a12a-7638aec01c2a.roa Signing time: Fri 25 Jul 2025 00:31:52 +0000 ROA not before: Fri 25 Jul 2025 00:31:52 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:95:ee:16:f7:1c:e4:53:e8:9f:81:e0:d1:7e:f9:75:71:4c:5c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:31:52 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=cf813652f4c6c6e52cc4fe901fcc72857518b83089a259e505e3993e81e65c1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6c:78:2b:43:f8:05:14:b8:84:d2:c0:18:8e: ad:cd:d0:f0:e6:8c:22:8b:1b:ad:3b:ac:b6:50:d7: ca:b0:41:69:43:99:6f:3f:93:d4:3b:e2:88:94:6a: 12:00:02:b8:38:92:b4:8b:b6:78:29:c1:64:ee:14: 14:0e:c8:5b:ef:23:95:57:b5:80:d6:dc:b0:92:f1: ca:42:04:42:63:57:00:a5:8d:7e:82:85:b8:d1:a1: 1d:11:6c:97:70:90:28:a8:5e:70:54:81:7a:c8:ee: 0f:bc:7e:45:24:4f:48:d8:53:83:87:c6:78:11:61: c2:34:f9:a7:8b:9e:61:11:3d:17:3a:d0:0b:87:fb: 09:23:ba:6a:f3:31:77:4c:9f:15:15:c4:a4:c4:6e: ae:f0:ec:10:e7:1c:b3:4c:5a:2e:f0:9f:3a:5c:20: 6a:f5:f9:83:3a:b6:65:36:b2:d5:66:4a:f7:54:2b: da:90:39:b4:04:69:94:1b:f9:ee:60:f1:1f:f6:ef: 31:d7:f4:7c:f7:26:90:fa:fd:64:c6:1d:dc:95:30: bf:6a:1a:13:f5:c9:4d:09:07:5f:d7:41:bb:ca:c8: 6a:99:00:aa:c8:f1:24:6c:35:6a:28:42:3f:4e:59: 93:21:ed:80:2d:50:20:7a:88:10:cc:64:69:b3:93: 29:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8B:61:23:FA:38:21:81:FA:92:84:A3:37:E5:AA:B2:FD:63:27:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36ee8694-0818-4109-a12a-7638aec01c2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.96.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:a2:0e:bf:33:5c:87:26:c0:84:d6:f1:12:6e:47:e3:40:d8: 4f:24:b1:a7:cb:08:95:47:6a:c9:8b:bc:47:07:e5:68:b8:10: 32:14:1d:e4:5a:32:cb:0c:43:62:87:0a:fc:92:75:12:1e:90: da:f9:0a:83:0c:5b:6a:81:1b:63:da:81:33:d8:99:94:70:08: 88:cb:0b:a6:cc:69:9e:79:06:2d:10:2f:75:aa:a9:45:80:70: aa:f2:d8:21:6c:48:b7:e4:ba:61:73:f3:59:66:2f:84:79:a0: 28:88:b4:9e:36:0c:78:3a:85:20:55:af:ae:8b:20:8a:50:fe: 8c:47:da:66:8b:c8:5c:20:f0:96:cc:af:b2:1a:90:e9:8a:c3: 67:5a:a5:c6:01:22:4e:b5:de:a4:36:f8:b1:2f:d5:b6:38:3b: 1a:1e:a8:b3:55:66:1b:cf:f7:4d:20:14:9d:99:08:44:79:44: 46:9e:4f:09:7d:da:87:33:13:ea:15:6a:9c:40:6d:24:e1:e8: a6:76:91:c3:97:24:93:c0:52:32:f5:ec:02:45:a4:b2:8e:f4: 8b:b0:06:d5:83:fc:3d:56:9c:11:05:ba:1e:8f:15:18:b6:54: 63:01:4b:f3:37:ae:4e:13:e0:6f:5a:bc:1c:5e:f6:fc:b0:7c: db:bd:67:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWZXuFvcc5FPon4Hg0X75dXFMXJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAzMTUyWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjgxMzY1MmY0YzZjNmU1MmNjNGZlOTAxZmNjNzI4NTc1 MThiODMwODlhMjU5ZTUwNWUzOTkzZTgxZTY1YzFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRbHgrQ/gFFLiE0sAYjq3N0PDmjCKLG607rLZQ18qwQWlD mW8/k9Q74oiUahIAArg4krSLtngpwWTuFBQOyFvvI5VXtYDW3LCS8cpCBEJjVwCl jX6ChbjRoR0RbJdwkCioXnBUgXrI7g+8fkUkT0jYU4OHxngRYcI0+aeLnmERPRc6 0AuH+wkjumrzMXdMnxUVxKTEbq7w7BDnHLNMWi7wnzpcIGr1+YM6tmU2stVmSvdU K9qQObQEaZQb+e5g8R/27zHX9Hz3JpD6/WTGHdyVML9qGhP1yU0JB1/XQbvKyGqZ AKrI8SRsNWooQj9OWZMh7YAtUCB6iBDMZGmzkymXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlIthI/o4IYH6koSjN+Wqsv1jJ14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2ZWU4Njk0LTA4MTgtNDEwOS1hMTJhLTc2MzhhZWMwMWMyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlmAwDQYJKoZIhvcNAQELBQADggEBAIuiDr8zXIcmwITW8RJuR+NA2E8k safLCJVHasmLvEcH5Wi4EDIUHeRaMssMQ2KHCvySdRIekNr5CoMMW2qBG2PagTPY mZRwCIjLC6bMaZ55Bi0QL3WqqUWAcKry2CFsSLfkumFz81lmL4R5oCiItJ42DHg6 hSBVr66LIIpQ/oxH2maLyFwg8JbMr7IakOmKw2dapcYBIk613qQ2+LEv1bY4Oxoe qLNVZhvP900gFJ2ZCER5REaeTwl92oczE+oVapxAbSTh6KZ2kcOXJJPAUjL17AJF pLKO9IuwBtWD/D1WnBEFuh6PFRi2VGMBS/M3rk4T4G9avBxe9vywfNu9Z/k= -----END CERTIFICATE-----Generated at Sat Aug 9 05:43:47 2025 by rpki-client