$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50988588-6545-4acd-aaf1-bb3943b2fcca.roa File: 50988588-6545-4acd-aaf1-bb3943b2fcca.roa (raw, json) Hash identifier: 35TiYZuR9o6osPpdUqj03fOpR9ShudQ7lnctv84CZYA= Subject key identifier: E8:7A:2A:D0:A7:28:3F:C7:98:F7:E3:20:B4:43:A6:96:F6:17:BB:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3947B72040520B67EF6C999854338E83B9510A19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50988588-6545-4acd-aaf1-bb3943b2fcca.roa Signing time: Wed 16 Jul 2025 00:20:29 +0000 ROA not before: Wed 16 Jul 2025 00:20:29 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 182.29.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:47:b7:20:40:52:0b:67:ef:6c:99:98:54:33:8e:83:b9:51:0a:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:20:29 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=912d3df8b4d125ad6ebf7d3be4d43118a0199dcb77ce39ab9e96d8ac1b336f50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:bf:ad:d7:b6:16:44:f5:c6:ec:1a:45:80: 73:ef:56:c3:b6:f7:37:e4:a1:18:ef:da:07:22:d3: 59:bd:0b:7b:72:21:13:8c:a9:91:8b:e8:94:b4:7f: 33:19:ad:e1:bb:d8:f1:2a:35:f0:90:c5:30:e6:b9: 97:6f:c8:c2:58:f6:09:6e:f7:05:a3:0b:25:ce:20: f9:d5:1e:f7:5b:66:a7:ac:5c:ad:45:02:52:bb:85: 74:45:07:b0:a8:ce:d0:4f:91:80:ed:36:c3:7a:37: 4d:38:57:2c:55:d2:61:60:0c:43:f0:e6:4c:a0:06: b3:fe:8a:62:0f:a7:39:ca:60:65:a9:3f:84:5d:80: e7:05:f6:84:43:40:ee:18:20:17:bd:6f:13:6e:a7: 25:9c:f0:d7:f3:2b:d8:cc:40:4d:ca:73:80:44:9d: 51:d1:64:e4:43:d7:bb:fd:48:c9:fc:3c:75:ae:dc: 5c:cd:18:d0:7a:8f:7f:62:e4:12:a5:24:a6:8a:13: c7:03:eb:89:04:40:1d:0c:02:1e:2e:2c:94:e1:13: 13:f8:e2:c5:27:99:90:d9:6a:40:cc:5a:5c:81:97: 76:c7:74:c5:f7:b1:cf:60:7e:46:b0:ba:a1:a6:ba: 11:bf:96:bd:f3:c4:b1:99:82:15:96:50:08:5d:54: 66:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7A:2A:D0:A7:28:3F:C7:98:F7:E3:20:B4:43:A6:96:F6:17:BB:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50988588-6545-4acd-aaf1-bb3943b2fcca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:67:25:8b:46:54:d1:48:d5:64:90:c2:72:50:61:dc:54:f3: fa:15:26:6b:c5:a3:58:f1:57:38:5f:68:dd:c1:21:09:50:39: e5:82:86:2a:b9:79:17:3d:db:73:35:92:50:0f:33:aa:ff:1b: c2:2e:c5:90:53:cf:18:c8:61:15:c3:2e:19:79:a6:ec:3a:03: c0:e5:19:b5:30:5c:6c:5b:ba:ac:96:ee:dc:ec:fe:56:a4:06: e2:52:e1:01:5e:6f:b8:50:a3:57:96:27:30:d7:f8:45:f2:5d: ad:ad:78:be:77:4b:5c:14:07:eb:23:4f:77:59:80:8c:49:f8: 4b:d7:22:5f:01:08:aa:7d:9c:40:e9:a9:13:9a:43:73:9b:88: 41:e5:50:64:c2:96:fa:8b:4a:50:5e:4b:18:75:a7:ae:b4:84: a9:56:60:ce:54:30:d8:b2:a3:0b:fd:5c:3d:5b:4f:3a:09:91: 15:92:e3:b0:32:41:42:43:88:b9:08:9c:3f:02:b3:e3:53:50: ea:b1:e0:96:7b:72:c6:29:bc:e3:81:6d:a6:f0:6a:12:3e:30: f9:fb:77:8c:d5:00:26:f0:a3:8b:13:09:71:95:e4:41:37:19: cb:01:66:c8:4a:57:1c:4f:12:2b:99:23:d7:53:88:b6:c1:02: 97:7d:2e:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOUe3IEBSC2fvbJmYVDOOg7lRChkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAyMDI5WhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTJkM2RmOGI0ZDEyNWFkNmViZjdkM2JlNGQ0MzExOGEw MTk5ZGNiNzdjZTM5YWI5ZTk2ZDhhYzFiMzM2ZjUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuQb+t17YWRPXG7BpFgHPvVsO29zfkoRjv2gci01m9C3ty IROMqZGL6JS0fzMZreG72PEqNfCQxTDmuZdvyMJY9glu9wWjCyXOIPnVHvdbZqes XK1FAlK7hXRFB7CoztBPkYDtNsN6N004VyxV0mFgDEPw5kygBrP+imIPpznKYGWp P4RdgOcF9oRDQO4YIBe9bxNupyWc8NfzK9jMQE3Kc4BEnVHRZORD17v9SMn8PHWu 3FzNGNB6j39i5BKlJKaKE8cD64kEQB0MAh4uLJThExP44sUnmZDZakDMWlyBl3bH dMX3sc9gfkawuqGmuhG/lr3zxLGZghWWUAhdVGYNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6Hoq0KcoP8eY9+MgtEOmlvYXu1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwOTg4NTg4LTY1NDUtNGFjZC1hYWYxLWJiMzk0M2IyZmNjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwC2HTANBgkqhkiG9w0BAQsFAAOCAQEAvGcli0ZU0UjVZJDCclBh3FTz+hUm a8WjWPFXOF9o3cEhCVA55YKGKrl5Fz3bczWSUA8zqv8bwi7FkFPPGMhhFcMuGXmm 7DoDwOUZtTBcbFu6rJbu3Oz+VqQG4lLhAV5vuFCjV5YnMNf4RfJdra14vndLXBQH 6yNPd1mAjEn4S9ciXwEIqn2cQOmpE5pDc5uIQeVQZMKW+otKUF5LGHWnrrSEqVZg zlQw2LKjC/1cPVtPOgmRFZLjsDJBQkOIuQicPwKz41NQ6rHglntyxim844FtpvBq Ej4w+ft3jNUAJvCjixMJcZXkQTcZywFmyEpXHE8SK5kj11OItsECl30uQQ== -----END CERTIFICATE-----Generated at Sat Aug 9 15:11:14 2025 by rpki-client