$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa File: 71e4dd76-d0a5-4298-b47e-b983c7943d01.roa (raw, json) Hash identifier: 7dcYlcVM9eowlzij2mB0+e8QswCE/B+2dFBp3FaBQWs= Subject key identifier: C3:E5:8F:FB:5A:36:67:DD:66:BD:33:7A:37:F1:8B:BB:C4:97:F1:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E588BE36722D735B303648F428E653022C1E142 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa Signing time: Sat 02 Aug 2025 00:10:15 +0000 ROA not before: Sat 02 Aug 2025 00:10:15 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:58:8b:e3:67:22:d7:35:b3:03:64:8f:42:8e:65:30:22:c1:e1:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:10:15 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=db09fc754ceb26359e13b3a939a97228d7ca5ab9d81f13be57e940bee69d2bfa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:d6:58:3d:e6:fd:13:52:c6:ae:1e:51:d4: db:61:ff:49:84:de:25:6c:ac:39:e5:c7:db:6b:49: fa:7a:2d:46:2b:d2:24:cf:99:00:f2:23:81:28:f9: e0:32:65:a8:f6:1c:68:23:bf:c5:cc:55:17:16:47: ae:01:cf:88:a4:f8:a4:76:ad:40:8c:76:53:b0:e5: 75:bc:4d:26:d2:fc:c3:a5:27:54:73:ed:7f:b5:4c: b7:5c:e8:1f:8e:f2:c0:cb:8e:ec:9a:8f:0a:90:53: 12:82:6f:d4:df:a5:a0:e9:c4:56:d7:e4:1d:02:aa: 1c:2f:c6:51:1b:f6:fc:ee:ff:63:45:09:65:e9:20: 78:9a:98:56:05:8c:be:f7:5c:bf:2d:39:8a:a4:a7: df:dc:6d:b1:1c:5f:65:11:ea:26:fc:c3:9b:6c:95: 8d:0b:bc:24:9d:7e:f7:db:4a:a9:cd:30:12:40:75: 3b:58:a7:9d:09:98:0c:19:ea:3d:6a:75:4f:86:ef: 46:0c:91:a9:35:10:b7:ba:d4:dc:a4:1d:e4:81:9f: 9f:59:b6:c4:28:af:65:66:bf:08:32:15:fc:c2:e7: ae:82:6b:9e:25:f6:ca:0e:85:9f:20:86:2e:d3:d0: 4a:05:40:86:91:2e:c0:2d:04:b6:59:9d:a2:a4:28: de:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E5:8F:FB:5A:36:67:DD:66:BD:33:7A:37:F1:8B:BB:C4:97:F1:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71e4dd76-d0a5-4298-b47e-b983c7943d01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption b4:30:a0:98:04:dc:bc:fe:51:c0:75:28:03:70:f1:2e:14:94: f8:e1:be:67:b3:8c:8a:79:31:9b:16:37:df:0d:98:68:86:e1: 8a:3c:11:f1:f7:72:f0:86:8c:44:13:3b:c6:4d:62:51:08:31: f2:db:8f:21:51:a5:fb:0b:2b:34:bc:94:65:ef:f8:1d:85:bb: 06:c0:c5:89:1d:11:e0:a8:5f:c5:68:fd:6c:ff:7b:33:f8:8e: fd:4d:85:b3:c1:4d:ae:d9:26:c1:ff:17:8f:19:23:59:99:4d: 80:aa:fa:12:f8:50:36:c9:58:a2:1d:02:df:ca:53:a0:e7:86: 1a:55:4f:c6:68:f1:f5:4a:a6:36:60:da:da:17:5a:23:ad:29: d9:49:aa:1b:fe:ab:1a:9b:13:dc:0f:a1:ca:1d:1e:29:cb:04: be:f1:2e:bc:bd:91:ac:77:28:ef:8f:ae:ea:16:f8:49:16:6b: 8b:f5:38:e0:c0:80:5a:c2:c7:31:ba:f5:6d:3b:59:19:7a:96: e0:6a:87:f0:8f:37:b3:d8:a6:fd:34:8d:79:d3:6a:0e:b9:50: a7:d3:39:11:41:1d:9f:d7:18:ee:69:49:7d:c6:2f:cd:d0:e7: a9:ac:35:da:02:4d:2a:d6:d9:e2:3e:8e:08:51:47:ad:9c:f7: 56:8e:ab:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDliL42ci1zWzA2SPQo5lMCLB4UIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAxMDE1WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjA5ZmM3NTRjZWIyNjM1OWUxM2IzYTkzOWE5NzIyOGQ3 Y2E1YWI5ZDgxZjEzYmU1N2U5NDBiZWU2OWQyYmZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF+9ZYPeb9E1LGrh5R1Nth/0mE3iVsrDnlx9trSfp6LUYr 0iTPmQDyI4Eo+eAyZaj2HGgjv8XMVRcWR64Bz4ik+KR2rUCMdlOw5XW8TSbS/MOl J1Rz7X+1TLdc6B+O8sDLjuyajwqQUxKCb9TfpaDpxFbX5B0CqhwvxlEb9vzu/2NF CWXpIHiamFYFjL73XL8tOYqkp9/cbbEcX2UR6ib8w5tslY0LvCSdfvfbSqnNMBJA dTtYp50JmAwZ6j1qdU+G70YMkak1ELe61NykHeSBn59ZtsQor2VmvwgyFfzC566C a54l9soOhZ8ghi7T0EoFQIaRLsAtBLZZnaKkKN7FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw+WP+1o2Z91mvTN6N/GLu8SX8RkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxZTRkZDc2LWQwYTUtNDI5OC1iNDdlLWI5ODNjNzk0M2QwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBALQwoJgE3Lz+UcB1KANw8S4UlPjh vmezjIp5MZsWN98NmGiG4Yo8EfH3cvCGjEQTO8ZNYlEIMfLbjyFRpfsLKzS8lGXv +B2FuwbAxYkdEeCoX8Vo/Wz/ezP4jv1NhbPBTa7ZJsH/F48ZI1mZTYCq+hL4UDbJ WKIdAt/KU6DnhhpVT8Zo8fVKpjZg2toXWiOtKdlJqhv+qxqbE9wPocodHinLBL7x Lry9kax3KO+PruoW+EkWa4v1OODAgFrCxzG69W07WRl6luBqh/CPN7PYpv00jXnT ag65UKfTORFBHZ/XGO5pSX3GL83Q56msNdoCTSrW2eI+jghRR62c91aOq38= -----END CERTIFICATE-----Generated at Mon Aug 4 22:27:31 2025 by rpki-client