$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43533d1b-8728-48fc-8c27-57ef981e8c1a.roa File: 43533d1b-8728-48fc-8c27-57ef981e8c1a.roa (raw, json) Hash identifier: 8nTEt4eidHvQj4AIyszH1qpMLbIpHghHwKkCw1je0mA= Subject key identifier: 08:FF:03:87:78:FB:51:98:78:15:7B:B0:53:96:85:0E:65:14:93:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C1E4A0FF2A25DE515150279A3A3F1338C7AD6A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43533d1b-8728-48fc-8c27-57ef981e8c1a.roa Signing time: Tue 05 Aug 2025 00:31:43 +0000 ROA not before: Tue 05 Aug 2025 00:31:43 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.177.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1e:4a:0f:f2:a2:5d:e5:15:15:02:79:a3:a3:f1:33:8c:7a:d6:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:31:43 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=0ea973e2d73e62afc72a594b4b5aa8d6422a9dd43aeec5c5dbec30f6adc44231, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e6:9c:92:8b:55:80:9c:c6:ab:98:11:af:0a: 00:ee:62:64:7e:10:73:9b:cd:e6:67:56:16:f6:da: 20:f5:be:5e:40:9b:c4:10:3e:52:2d:77:1b:23:ff: 07:81:f2:14:7a:bf:3c:c9:40:23:f7:49:8c:a1:60: 8c:04:ce:44:b7:02:95:03:22:b7:47:88:b0:93:0c: e3:af:d9:7e:47:b2:06:2b:6c:b9:14:1e:16:2f:88: 62:31:fd:00:8f:94:b9:e8:79:82:5a:ed:12:de:08: f5:e9:b1:43:34:9d:28:46:5f:36:7f:c8:60:2c:42: 7c:21:b7:ec:eb:b1:2c:4c:b2:c1:41:f6:e6:f5:d1: c5:38:99:2e:87:60:29:25:7c:e4:74:12:d1:5e:2c: 85:39:07:4f:97:b1:a4:40:4e:67:c3:72:be:b9:2c: d5:54:69:ca:61:fe:16:13:3f:cb:fe:20:13:16:c3: f5:46:77:0c:72:1e:84:75:34:a1:da:08:a4:a5:6d: 8a:6b:b3:e6:1e:d2:68:05:23:e2:dc:a9:41:7a:4e: 64:92:91:83:88:19:8c:bd:6a:c7:3f:b4:a7:ad:0c: af:cd:ec:a5:5c:37:f2:bd:5f:27:45:8c:f6:a7:d5: 47:cc:16:69:26:5d:b6:76:54:2b:45:08:94:22:65: 2d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FF:03:87:78:FB:51:98:78:15:7B:B0:53:96:85:0E:65:14:93:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43533d1b-8728-48fc-8c27-57ef981e8c1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.177.0.0/16 Signature Algorithm: sha256WithRSAEncryption a9:40:ad:e7:d5:7a:4e:5f:6e:2f:a8:78:e8:f9:bb:a2:46:64: 39:23:9f:4e:36:d4:84:57:39:e5:21:6d:3c:01:b4:bc:e9:31: 1f:7d:f0:63:b3:b9:17:4e:da:fd:f1:69:b1:41:d2:90:d6:73: 04:8f:33:d4:2b:e8:e8:74:f2:37:55:87:57:7a:2a:bd:66:6f: 24:17:00:98:be:e1:dc:df:7d:08:24:23:d8:e0:c3:04:d2:2a: 89:9e:e8:c2:e3:b0:dd:71:27:75:a7:c9:f2:45:ce:43:92:fa: ac:53:7e:f7:a7:c3:f1:44:b0:7e:02:56:50:50:2d:0a:c1:a5: dd:cd:20:74:c7:52:6d:34:03:10:72:ca:ea:29:13:99:4b:b4: 6d:2f:c0:a8:c0:3d:91:de:2c:5b:4f:95:a6:e7:9d:5c:49:9c: 80:f2:08:82:c9:04:76:e1:dd:3f:37:08:cc:0f:e8:79:48:df: c9:91:ed:49:cd:3f:bf:be:f9:fc:5e:91:b5:71:f1:b5:82:43: d6:cb:1b:67:a9:27:78:0f:ec:1b:31:2f:96:72:cb:f3:63:07: 43:da:a4:6a:2d:80:e0:a0:72:4b:8f:39:1d:b0:68:aa:85:cd: 84:77:99:10:f9:25:9e:68:20:b8:b9:20:ae:d2:2c:1b:07:0f: 50:ab:7e:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHB5KD/KiXeUVFQJ5o6PxM4x61qYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMTQzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWE5NzNlMmQ3M2U2MmFmYzcyYTU5NGI0YjVhYThkNjQy MmE5ZGQ0M2FlZWM1YzVkYmVjMzBmNmFkYzQ0MjMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX5pySi1WAnMarmBGvCgDuYmR+EHObzeZnVhb22iD1vl5A m8QQPlItdxsj/weB8hR6vzzJQCP3SYyhYIwEzkS3ApUDIrdHiLCTDOOv2X5HsgYr bLkUHhYviGIx/QCPlLnoeYJa7RLeCPXpsUM0nShGXzZ/yGAsQnwht+zrsSxMssFB 9ub10cU4mS6HYCklfOR0EtFeLIU5B0+XsaRATmfDcr65LNVUacph/hYTP8v+IBMW w/VGdwxyHoR1NKHaCKSlbYprs+Ye0mgFI+LcqUF6TmSSkYOIGYy9asc/tKetDK/N 7KVcN/K9XydFjPan1UfMFmkmXbZ2VCtFCJQiZS3PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCP8Dh3j7UZh4FXuwU5aFDmUUk84wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNTMzZDFiLTg3MjgtNDhmYy04YzI3LTU3ZWY5ODFlOGMxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4sTANBgkqhkiG9w0BAQsFAAOCAQEAqUCt59V6Tl9uL6h46Pm7okZkOSOf TjbUhFc55SFtPAG0vOkxH33wY7O5F07a/fFpsUHSkNZzBI8z1Cvo6HTyN1WHV3oq vWZvJBcAmL7h3N99CCQj2ODDBNIqiZ7owuOw3XEndafJ8kXOQ5L6rFN+96fD8USw fgJWUFAtCsGl3c0gdMdSbTQDEHLK6ikTmUu0bS/AqMA9kd4sW0+VpuedXEmcgPII gskEduHdPzcIzA/oeUjfyZHtSc0/v775/F6RtXHxtYJD1ssbZ6kneA/sGzEvlnLL 82MHQ9qkai2A4KByS485HbBoqoXNhHeZEPklnmgguLkgrtIsGwcPUKt+3g== -----END CERTIFICATE-----Generated at Wed Aug 6 07:49:45 2025 by rpki-client