$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: 9fkLqPRjFXpPRGKuFz9iSrvHu2l5QYcoSDF+vN62x2o= Subject key identifier: 05:A5:A8:42:E0:2D:10:ED:68:34:CF:BE:75:C4:D9:82:1A:19:05:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 071ECF5D038B0421D301B304A123865051BCB425 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Wed 06 Aug 2025 00:11:07 +0000 ROA not before: Wed 06 Aug 2025 00:11:07 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:1e:cf:5d:03:8b:04:21:d3:01:b3:04:a1:23:86:50:51:bc:b4:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:11:07 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=6828c1e1453ccd735ee9fb1fb4466dcd0aad55197bbac090932996ab5e24dead, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:52:35:6b:33:79:a9:9f:34:4b:d9:16:67:7a: 88:3c:be:9d:6f:91:44:ed:18:b3:3a:9a:14:af:1e: 79:c1:0b:3d:08:39:d5:d5:fb:13:c8:e6:bf:e3:dd: 7d:eb:0b:84:79:86:3a:a7:90:a2:42:70:93:e4:97: bb:74:c2:39:0b:ae:81:9e:9f:56:da:c5:1b:a1:7e: 9e:48:d4:49:63:62:34:d2:04:46:dd:fb:cd:90:b4: 72:d0:4b:85:fb:6f:49:66:60:c3:e5:9a:4d:00:51: 2e:08:8a:fd:c5:7e:f8:fe:d1:bf:17:a5:a3:01:d3: c3:8f:c4:6a:6b:32:e8:6a:ef:17:68:31:60:38:81: 1e:f7:52:a3:c9:aa:59:5c:e7:95:73:97:31:ce:e8: d1:a8:59:52:8c:ba:f6:eb:db:ca:93:3f:8c:ef:52: 83:6b:a7:d5:c1:04:08:bd:f6:d8:96:24:0e:a5:f7: 67:b2:88:a1:0b:e4:c7:ba:79:3a:fd:e9:77:8b:c6: fa:ec:c8:0d:d6:59:40:a8:6d:ce:ea:3e:8e:7d:ba: 2a:f8:53:12:03:04:13:41:36:f4:be:50:e3:a8:3a: 2c:c1:43:07:28:c7:5e:cd:56:50:dc:7b:4a:58:56: 99:a8:2b:83:cd:dd:c5:13:e9:27:f9:58:f2:60:21: eb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A5:A8:42:E0:2D:10:ED:68:34:CF:BE:75:C4:D9:82:1A:19:05:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:7d:d8:69:b5:5a:cc:5f:6f:c8:15:d0:c3:35:ba:2c:9b:05: 94:46:86:8e:c3:36:e0:00:a0:82:3a:50:6d:77:76:a8:0a:20: 72:87:9c:ea:20:3e:d0:db:55:57:3b:e6:db:c7:48:38:cf:59: 90:65:b2:e5:e2:86:18:81:6b:e5:9d:25:10:12:d1:d1:69:82: f5:57:2a:1e:18:d4:63:a4:c6:f1:6f:98:a2:b7:55:ef:cc:8a: 8f:d9:5e:b8:c1:a9:58:ec:ed:ca:db:e5:7b:5f:ba:71:a8:96: 70:ea:cf:4e:43:ed:29:fa:47:80:4c:7a:1e:cc:36:3d:3f:05: c4:33:64:a6:87:5e:75:ff:9c:28:a9:ee:68:8b:6d:b4:e0:dd: bb:14:44:60:cd:30:a9:50:57:50:cc:68:0c:05:e3:12:8c:b7: c4:78:ae:93:3d:38:d4:bd:56:e5:28:d9:c4:a1:b5:9b:f1:bf: 3e:c1:4f:a6:bb:20:8d:c1:1d:d8:7f:39:bf:62:64:9b:5b:d6: 1c:96:82:2a:b3:72:3d:f0:b3:27:b6:b5:70:27:7e:50:1b:3d: d2:b2:b1:5a:80:8b:80:f6:a9:76:e2:4b:a9:05:08:70:61:3f: 06:9e:81:8b:e8:a6:3a:78:fd:35:d8:60:2a:f4:68:a7:6a:05: 24:37:68:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBx7PXQOLBCHTAbMEoSOGUFG8tCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMTA3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODI4YzFlMTQ1M2NjZDczNWVlOWZiMWZiNDQ2NmRjZDBh YWQ1NTE5N2JiYWMwOTA5MzI5OTZhYjVlMjRkZWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrUjVrM3mpnzRL2RZneog8vp1vkUTtGLM6mhSvHnnBCz0I OdXV+xPI5r/j3X3rC4R5hjqnkKJCcJPkl7t0wjkLroGen1baxRuhfp5I1EljYjTS BEbd+82QtHLQS4X7b0lmYMPlmk0AUS4Iiv3Ffvj+0b8XpaMB08OPxGprMuhq7xdo MWA4gR73UqPJqllc55VzlzHO6NGoWVKMuvbr28qTP4zvUoNrp9XBBAi99tiWJA6l 92eyiKEL5Me6eTr96XeLxvrsyA3WWUCobc7qPo59uir4UxIDBBNBNvS+UOOoOizB Qwcox17NVlDce0pYVpmoK4PN3cUT6Sf5WPJgIesNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBaWoQuAtEO1oNM++dcTZghoZBf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAIn3YabVazF9vyBXQwzW6LJsFlEaG jsM24ACggjpQbXd2qAogcoec6iA+0NtVVzvm28dIOM9ZkGWy5eKGGIFr5Z0lEBLR 0WmC9VcqHhjUY6TG8W+YordV78yKj9leuMGpWOztytvle1+6caiWcOrPTkPtKfpH gEx6Hsw2PT8FxDNkpodedf+cKKnuaItttODduxREYM0wqVBXUMxoDAXjEoy3xHiu kz041L1W5SjZxKG1m/G/PsFPprsgjcEd2H85v2Jkm1vWHJaCKrNyPfCzJ7a1cCd+ UBs90rKxWoCLgPapduJLqQUIcGE/Bp6Bi+imOnj9NdhgKvRop2oFJDdo9A== -----END CERTIFICATE-----Generated at Fri Aug 8 19:27:38 2025 by rpki-client