$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655d9c54-1648-4b17-915a-5b868df7eca4.roa File: 655d9c54-1648-4b17-915a-5b868df7eca4.roa (raw, json) Hash identifier: Eh67zzBO+9FkQczGuprcioYEGf9h1zTTbwZs+jQv9Xg= Subject key identifier: D4:AA:4F:65:AD:4A:61:2F:D2:4C:C8:B7:DD:8A:58:54:60:A5:06:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 252DB44D877EC78517BB6432225BFC7AC4403D9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655d9c54-1648-4b17-915a-5b868df7eca4.roa Signing time: Fri 18 Jul 2025 00:40:57 +0000 ROA not before: Fri 18 Jul 2025 00:40:57 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:2d:b4:4d:87:7e:c7:85:17:bb:64:32:22:5b:fc:7a:c4:40:3d:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:40:57 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=4db7d0c6eb807a819f6162ad0dada70006a812c12a1cd1571cff8633f1bb2114, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:ea:62:a6:95:61:02:c4:f2:5c:72:33:48: f5:f5:f4:be:e2:4a:8d:24:08:cf:fb:eb:e2:af:7f: 1a:68:01:6a:53:ad:43:49:f5:36:ee:6d:31:38:18: 78:9b:17:8e:6d:25:69:27:4e:87:22:69:4b:36:fc: b9:c7:a3:02:39:70:38:93:1f:18:ae:fa:a1:ac:8f: 4a:67:4b:1c:33:b9:68:a7:89:79:99:61:bb:3c:ae: 6b:e0:99:46:61:93:89:cf:9d:c5:bd:fc:39:71:e4: 0f:ea:64:3c:97:ba:db:8b:6a:ee:fc:6a:88:1e:38: 58:7c:af:ff:cc:06:df:df:e0:a3:47:aa:f0:3e:49: 7c:f8:12:62:42:58:1a:7a:d3:88:4b:c3:20:2c:56: ce:a8:68:be:9d:fa:9d:7e:6a:fb:1f:7a:52:33:97: 63:98:a6:6e:3f:ff:b3:d8:bb:97:c9:78:b8:60:6b: a3:b8:fc:76:53:48:05:15:83:25:59:31:f6:46:80: 1c:33:19:b6:0c:e2:3d:a2:af:d1:66:2d:c1:77:0f: e7:a5:fb:4f:d4:ab:e7:24:7c:39:eb:5e:44:46:69: 5c:4d:f0:ac:b4:f8:d6:0d:89:f3:ae:92:62:69:3e: 8e:78:ab:14:35:83:0d:7a:1a:52:59:7c:e9:04:d5: 09:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:AA:4F:65:AD:4A:61:2F:D2:4C:C8:B7:DD:8A:58:54:60:A5:06:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/655d9c54-1648-4b17-915a-5b868df7eca4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:9c:89:a7:a4:fd:53:40:b7:7c:5a:0a:b9:dc:aa:d3:63:a5: d0:97:91:5f:5a:e0:0d:44:be:a1:68:b2:59:65:9f:e8:11:44: 04:78:36:dd:dc:a3:a0:ec:74:99:65:01:4c:77:1a:64:85:64: 2a:26:29:34:82:b7:63:68:84:86:ff:6a:75:b8:18:54:df:50: 0c:ee:0f:3f:87:9a:ce:05:4c:04:52:75:a0:57:93:23:4d:58: 8c:83:ae:2c:b1:77:85:67:33:28:99:3e:95:fb:59:cf:ba:fd: 9a:15:79:f7:a4:9a:21:03:03:0e:ed:76:3e:90:3c:be:47:b3: d2:65:9e:8f:4b:58:e2:a4:29:51:62:6d:da:2d:db:d9:43:20: 39:c1:11:0a:aa:37:af:3f:b8:1c:c3:e7:84:85:7f:3e:f7:4f: a9:47:14:5f:a6:7c:24:47:e6:40:a1:12:57:98:a5:6f:8e:49: 47:36:f0:9f:26:60:2e:f2:d3:47:68:f7:56:14:7c:42:fb:e3: c4:38:0c:14:96:60:dd:d6:77:92:25:54:34:e5:51:a7:04:dd: ac:ed:e5:80:bc:bc:44:3d:28:3a:45:4b:5e:fa:a6:77:02:81: f3:19:ac:4f:24:7c:84:62:c6:56:d8:37:b6:9e:51:dd:6d:49: 7a:81:49:1c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJS20TYd+x4UXu2QyIlv8esRAPZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA0MDU3WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGI3ZDBjNmViODA3YTgxOWY2MTYyYWQwZGFkYTcwMDA2 YTgxMmMxMmExY2QxNTcxY2ZmODYzM2YxYmIyMTE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+i+pippVhAsTyXHIzSPX19L7iSo0kCM/76+KvfxpoAWpT rUNJ9TbubTE4GHibF45tJWknTociaUs2/LnHowI5cDiTHxiu+qGsj0pnSxwzuWin iXmZYbs8rmvgmUZhk4nPncW9/Dlx5A/qZDyXutuLau78aogeOFh8r//MBt/f4KNH qvA+SXz4EmJCWBp604hLwyAsVs6oaL6d+p1+avsfelIzl2OYpm4//7PYu5fJeLhg a6O4/HZTSAUVgyVZMfZGgBwzGbYM4j2ir9FmLcF3D+el+0/Uq+ckfDnrXkRGaVxN 8Ky0+NYNifOukmJpPo54qxQ1gw16GlJZfOkE1QnLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1KpPZa1KYS/STMi33YpYVGClBj8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1NWQ5YzU0LTE2NDgtNGIxNy05MTVhLTViODY4ZGY3ZWNhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBLTzANBgkqhkiG9w0BAQsFAAOCAQEAe5yJp6T9U0C3fFoKudyq02Ol0JeR X1rgDUS+oWiyWWWf6BFEBHg23dyjoOx0mWUBTHcaZIVkKiYpNIK3Y2iEhv9qdbgY VN9QDO4PP4eazgVMBFJ1oFeTI01YjIOuLLF3hWczKJk+lftZz7r9mhV596SaIQMD Du12PpA8vkez0mWej0tY4qQpUWJt2i3b2UMgOcERCqo3rz+4HMPnhIV/PvdPqUcU X6Z8JEfmQKESV5ilb45JRzbwnyZgLvLTR2j3VhR8QvvjxDgMFJZg3dZ3kiVUNOVR pwTdrO3lgLy8RD0oOkVLXvqmdwKB8xmsTyR8hGLGVtg3tp5R3W1JeoFJHA== -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:19 2025 by rpki-client