$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b7bb014-7d84-4429-ab54-38f604121593.roa File: 3b7bb014-7d84-4429-ab54-38f604121593.roa (raw, json) Hash identifier: 3EGu3R+CPGailvt94fgjn93KY6NNjGQlTffRO8qnFuY= Subject key identifier: 64:7A:68:46:FC:63:78:EC:F8:2F:3D:9D:8D:DC:59:D4:73:BA:00:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 362723D321DE7AEFEA686671FE8205CF6DF3CF8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b7bb014-7d84-4429-ab54-38f604121593.roa Signing time: Fri 25 Jul 2025 00:31:43 +0000 ROA not before: Fri 25 Jul 2025 00:31:43 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:27:23:d3:21:de:7a:ef:ea:68:66:71:fe:82:05:cf:6d:f3:cf:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:31:43 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=5ad46bd6d92911e684224e3c8194b823a368faadd6a3cd61209535948ead2142, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d2:3a:d6:82:94:48:f1:6c:23:c4:78:00:f5: 23:1e:0c:b1:5d:46:ca:62:35:44:92:52:31:c7:90: 92:1a:ca:53:17:3a:a5:56:aa:07:90:cc:59:23:22: b0:c9:8e:d2:9c:bc:06:bd:85:f1:9e:0c:48:9c:29: b5:5b:42:f4:9e:fa:32:fe:4d:d1:ef:92:c6:58:0c: 46:e9:5c:da:1e:76:f6:4e:90:48:ef:bc:7d:90:60: ab:2d:7c:5c:1c:54:f4:c0:2c:27:75:3b:6b:bf:f5: 25:b5:a2:9e:45:50:34:19:f9:b5:b5:67:02:0f:a2: a5:31:be:8a:6e:88:ad:11:79:13:80:cd:80:41:b5: ac:12:50:63:2f:d1:f8:e6:3f:37:bb:ab:10:ad:84: 4d:b6:66:ce:c9:33:38:50:61:fe:79:3d:5c:fe:26: 3e:8a:65:c8:bc:f0:73:2f:f5:7a:07:94:3d:46:66: 47:b6:3a:22:66:87:f5:c7:0d:d1:93:04:1b:14:57: 77:61:33:8b:d8:f6:bb:0b:df:b2:ee:4d:9f:8a:53: 17:d5:aa:74:f1:10:b9:23:6c:71:de:85:43:17:50: 23:dd:ce:ad:2a:19:4d:d3:48:b8:06:b8:0f:1f:a0: 29:fb:2a:4a:ca:84:88:23:a3:d9:43:bf:7e:1d:54: 17:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7A:68:46:FC:63:78:EC:F8:2F:3D:9D:8D:DC:59:D4:73:BA:00:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b7bb014-7d84-4429-ab54-38f604121593.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.60.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:93:57:e3:11:c2:91:d2:0c:c9:34:14:02:af:e6:16:0f:e2: 81:27:37:67:11:87:a6:1c:91:d8:c5:df:fe:e9:93:31:b4:99: fa:01:b0:3f:fa:28:fb:52:c7:de:88:9f:3b:54:9c:ca:e7:61: cb:58:4e:39:3a:23:88:e7:b3:03:0a:27:cb:46:21:69:84:78: df:a0:75:61:a3:d1:93:4b:05:64:9e:48:50:f7:08:20:2d:e7: 90:d0:61:ea:3b:62:a8:b3:03:f8:d9:08:27:97:57:42:18:2a: 88:fe:90:dd:e6:a5:2a:28:b3:76:6f:a5:e5:60:16:6f:48:74: 54:2f:f4:6d:25:86:6d:f4:20:78:ca:3d:fd:7c:09:a3:e7:75: 01:21:c3:13:96:bc:06:ac:ba:f2:f3:06:a8:75:1a:3c:80:7e: 98:26:63:cd:bd:e9:2d:d2:2d:c0:a6:ee:ac:39:02:f8:45:db: e0:b5:a8:bc:e0:70:4c:02:1e:be:c0:c2:3a:67:bf:53:db:ec: 86:b4:74:4c:9b:fd:da:8c:c2:35:f2:4a:0d:c8:1d:89:ed:72: b9:e4:da:fc:fe:8a:8d:05:69:9f:fd:b2:a5:14:04:3d:63:31: 48:7f:dd:fc:f3:8c:1f:00:0a:5e:fa:14:cf:88:41:c8:d4:2f: cc:27:6e:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNicj0yHeeu/qaGZx/oIFz23zz4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAzMTQzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWQ0NmJkNmQ5MjkxMWU2ODQyMjRlM2M4MTk0YjgyM2Ez NjhmYWFkZDZhM2NkNjEyMDk1MzU5NDhlYWQyMTQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl0jrWgpRI8WwjxHgA9SMeDLFdRspiNUSSUjHHkJIaylMX OqVWqgeQzFkjIrDJjtKcvAa9hfGeDEicKbVbQvSe+jL+TdHvksZYDEbpXNoedvZO kEjvvH2QYKstfFwcVPTALCd1O2u/9SW1op5FUDQZ+bW1ZwIPoqUxvopuiK0ReROA zYBBtawSUGMv0fjmPze7qxCthE22Zs7JMzhQYf55PVz+Jj6KZci88HMv9XoHlD1G Zke2OiJmh/XHDdGTBBsUV3dhM4vY9rsL37LuTZ+KUxfVqnTxELkjbHHehUMXUCPd zq0qGU3TSLgGuA8foCn7KkrKhIgjo9lDv34dVBdhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZHpoRvxjeOz4Lz2djdxZ1HO6AO4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiN2JiMDE0LTdkODQtNDQyOS1hYjU0LTM4ZjYwNDEyMTU5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjljwwDQYJKoZIhvcNAQELBQADggEBAAqTV+MRwpHSDMk0FAKv5hYP4oEn N2cRh6YckdjF3/7pkzG0mfoBsD/6KPtSx96InztUnMrnYctYTjk6I4jnswMKJ8tG IWmEeN+gdWGj0ZNLBWSeSFD3CCAt55DQYeo7YqizA/jZCCeXV0IYKoj+kN3mpSoo s3ZvpeVgFm9IdFQv9G0lhm30IHjKPf18CaPndQEhwxOWvAasuvLzBqh1GjyAfpgm Y8296S3SLcCm7qw5AvhF2+C1qLzgcEwCHr7Awjpnv1Pb7Ia0dEyb/dqMwjXySg3I HYntcrnk2vz+io0FaZ/9sqUUBD1jMUh/3fzzjB8ACl76FM+IQcjUL8wnbn8= -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:26 2025 by rpki-client