$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa File: 461512e0-a72b-4e95-b675-27ac531c5460.roa (raw, json) Hash identifier: x5BhfyabT35PVTuOx5vzB06djPwU6vR4InWuJi1A3Fg= Subject key identifier: 44:C0:AC:CD:C5:51:2D:3E:0B:2C:86:AE:2B:32:9A:46:39:10:78:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42BE391861400F41899E5A3D7E3560DE6633A379 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa Signing time: Mon 04 Aug 2025 17:31:11 +0000 ROA not before: Mon 04 Aug 2025 17:31:11 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:be:39:18:61:40:0f:41:89:9e:5a:3d:7e:35:60:de:66:33:a3:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:31:11 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a48684644691ec6666ae67806a47ea9a908bd505991e9b353a0a5796afeca6f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ed:25:c4:d8:b3:d3:f5:0e:da:f3:cf:31:c9: e9:0f:a2:09:1c:22:f0:92:03:ae:cb:99:41:ba:a2: 28:c1:1f:0a:2c:70:07:db:98:8f:f5:92:04:3e:15: bc:d2:07:5d:0e:98:1b:ab:3d:63:84:86:ff:72:fa: db:c1:34:db:0c:95:fe:d9:3c:c5:86:93:52:60:b5: 57:80:35:02:93:78:93:3b:60:04:f9:ed:ae:25:ff: 6e:01:a1:d5:32:ef:5a:7e:5e:22:ae:ba:55:49:9e: 9d:69:4a:08:8b:2d:1b:b9:ca:21:5a:69:b9:d2:f4: d3:5e:7b:60:80:19:bd:76:bd:f7:bc:f2:c2:f2:48: 58:29:b6:7c:53:ab:f6:48:e4:65:16:bb:a6:7c:5e: e6:ef:3e:4d:93:51:0d:94:03:f4:01:a9:4c:db:84: cf:fd:22:ea:4b:d9:e0:3d:60:ed:0b:e3:22:85:fa: e9:89:4d:04:f1:4a:38:48:0a:51:2c:ba:7a:67:81: da:74:92:a8:86:ba:7f:b7:e7:c3:e4:24:0e:a3:27: 24:63:d0:c9:f9:08:c7:11:10:78:04:f9:fc:44:bd: ac:74:56:f5:a7:5e:37:c4:6a:bb:97:51:75:3d:e1: c4:af:5f:3d:03:4c:38:4d:88:3f:a2:06:36:bd:3a: 3b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C0:AC:CD:C5:51:2D:3E:0B:2C:86:AE:2B:32:9A:46:39:10:78:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:87:1a:c1:48:7c:6b:d7:9d:04:1e:96:fa:0f:01:a0:17:84: df:4c:31:26:e6:ca:dd:f8:0b:99:1e:aa:c3:fd:37:ff:ae:23: 1a:eb:b2:96:2d:da:6c:1f:3d:ad:e8:40:e9:1f:99:ad:3a:50: c6:eb:03:d8:45:01:af:84:0e:e4:7d:3a:b7:2b:54:1b:67:41: c4:7e:4c:3a:9e:67:c7:cb:04:1f:dc:c7:09:c3:bb:87:4a:c3: 51:4c:7b:2a:47:71:3e:ad:34:57:83:cd:f1:61:59:a1:06:02: 6c:51:f9:80:80:4e:b5:e3:7e:e1:5f:ef:d1:83:f9:dc:8e:1a: 89:13:6d:60:56:e9:ac:2c:37:4f:c9:79:a5:b1:22:45:13:df: 80:da:61:f9:3e:5d:3a:82:46:34:91:66:5a:c0:53:08:b5:0e: ec:65:e0:74:7a:ed:8a:3c:9f:00:9b:92:a2:36:c6:7f:e5:13: fa:29:50:3b:96:08:67:f2:20:bb:b6:6c:c2:09:37:fa:a8:f3: 93:a0:f9:47:34:ba:70:1c:81:6a:a4:bc:9f:3f:75:7b:78:80: ba:a9:13:76:ad:30:bb:be:cc:17:cb:af:51:7c:80:87:a9:ee: 2a:de:81:5f:35:ce:b0:65:e2:93:c0:48:1a:11:cb:40:eb:1a: 65:6c:12:91 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQr45GGFAD0GJnlo9fjVg3mYzo3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTczMTExWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDg2ODQ2NDQ2OTFlYzY2NjZhZTY3ODA2YTQ3ZWE5YTkw OGJkNTA1OTkxZTliMzUzYTBhNTc5NmFmZWNhNmYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF7SXE2LPT9Q7a888xyekPogkcIvCSA67LmUG6oijBHwos cAfbmI/1kgQ+FbzSB10OmBurPWOEhv9y+tvBNNsMlf7ZPMWGk1JgtVeANQKTeJM7 YAT57a4l/24BodUy71p+XiKuulVJnp1pSgiLLRu5yiFaabnS9NNee2CAGb12vfe8 8sLySFgptnxTq/ZI5GUWu6Z8XubvPk2TUQ2UA/QBqUzbhM/9IupL2eA9YO0L4yKF +umJTQTxSjhIClEsunpngdp0kqiGun+358PkJA6jJyRj0Mn5CMcREHgE+fxEvax0 VvWnXjfEaruXUXU94cSvXz0DTDhNiD+iBja9OjsXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURMCszcVRLT4LLIauKzKaRjkQeHMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2MTUxMmUwLWE3MmItNGU5NS1iNjc1LTI3YWM1MzFjNTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2czANBgkqhkiG9w0BAQsFAAOCAQEAq4cawUh8a9edBB6W+g8BoBeE30wx JubK3fgLmR6qw/03/64jGuuyli3abB89rehA6R+ZrTpQxusD2EUBr4QO5H06tytU G2dBxH5MOp5nx8sEH9zHCcO7h0rDUUx7KkdxPq00V4PN8WFZoQYCbFH5gIBOteN+ 4V/v0YP53I4aiRNtYFbprCw3T8l5pbEiRRPfgNph+T5dOoJGNJFmWsBTCLUO7GXg dHrtijyfAJuSojbGf+UT+ilQO5YIZ/Igu7Zswgk3+qjzk6D5RzS6cByBaqS8nz91 e3iAuqkTdq0wu77MF8uvUXyAh6nuKt6BXzXOsGXik8BIGhHLQOsaZWwSkQ== -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:49 2025 by rpki-client