$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa File: 8a4b8157-155f-49b1-815b-a783006f50ed.roa (raw, json) Hash identifier: JkAbSfxlPa2Mzi/Iu+dJWJTHPAuTvrQ+//ff7f0PXQY= Subject key identifier: 5A:C3:50:03:10:C3:4C:9B:4E:49:7F:2E:A7:83:77:19:BE:93:C1:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 509B8825ACFBD72BBD17F299C6A803518B1C27F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa Signing time: Wed 23 Jul 2025 00:10:12 +0000 ROA not before: Wed 23 Jul 2025 00:10:12 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9b:88:25:ac:fb:d7:2b:bd:17:f2:99:c6:a8:03:51:8b:1c:27:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:10:12 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=2b8e0c9ead4cdcc07d3dd1aab79189804b3fe87d29f653604da5de68d0e5cfe2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:27:d0:c5:c2:ff:d3:66:c5:3d:4d:38:02:c5: 00:a0:9f:a8:2d:dd:dc:36:e4:6e:3f:16:08:ac:1d: 1d:b2:5b:63:d9:8d:ef:4a:6f:70:8f:2c:d0:86:d3: f7:e7:63:d1:00:e2:75:c5:39:96:21:f1:b2:de:66: 17:90:27:19:58:87:03:cb:3d:67:61:32:3f:a1:c9: 40:f4:49:5c:3a:0a:48:24:c1:f5:a7:07:d4:d3:97: 13:37:39:85:bb:2f:7f:e8:76:c7:37:42:f0:71:65: 7a:b9:4f:4b:01:23:08:6b:5e:1a:ce:74:80:97:d4: 0b:74:6c:ca:70:07:9a:59:c9:a7:d4:73:81:b6:04: fe:79:39:6a:2b:73:2c:7a:2c:40:0d:98:78:73:a6: 2d:33:b0:fa:a3:c6:a2:f7:3d:49:c7:79:72:cb:8d: 67:6a:ee:6f:44:08:e8:85:ff:74:89:07:3e:dc:95: e2:a5:6c:ff:b7:98:c5:b3:b8:2f:c1:36:93:eb:ea: e3:0a:4c:36:41:eb:73:fd:a9:37:75:09:68:02:83: 06:8c:6e:7b:95:62:70:17:02:d0:9f:36:46:6e:68: 15:f8:68:fd:e2:99:27:b8:0e:52:95:6c:0a:5e:02: 2b:da:a9:42:50:39:4f:16:88:db:6f:75:58:0b:65: 0f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C3:50:03:10:C3:4C:9B:4E:49:7F:2E:A7:83:77:19:BE:93:C1:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:34:2e:4f:f5:a2:08:20:1a:49:09:9a:7c:34:f4:1e:12:95: 25:4d:b2:a4:1a:c3:a3:c9:45:0f:7f:99:44:eb:a2:6c:15:49: 43:d9:42:e8:26:a2:c6:d3:01:b4:a4:86:84:45:26:2d:cd:84: d8:75:27:7e:d6:2c:4c:c4:3c:a3:a5:a7:bd:69:1e:b8:7e:5e: 30:e8:dc:be:ce:86:42:d0:58:7c:63:41:1c:6d:ea:28:8f:5b: 1a:bb:19:16:6e:3b:9c:6e:85:e5:19:31:6b:0b:48:9e:e0:22: 2f:b1:cc:fb:67:5c:27:32:28:58:35:c0:b6:8f:6e:4a:a6:89: c3:92:22:71:d2:01:15:0c:d5:c9:1d:4e:68:66:66:b6:15:68: 03:f3:70:59:84:4b:4c:e1:fb:22:4c:9b:d5:0e:99:6e:71:5b: 86:2c:d9:d7:81:a3:88:36:75:4c:ec:4f:51:73:08:73:ad:03: dc:20:ed:9b:4c:60:78:50:5c:14:f3:41:d6:c3:9a:6b:cb:4b: ab:8e:19:9d:dc:70:74:cd:6d:5f:50:46:e2:b3:0c:98:a4:e7: b2:ea:de:39:df:ab:2b:6d:a8:4d:bd:8d:80:b9:c3:7e:16:19: 7c:30:d3:e8:e2:48:d5:c7:22:08:77:82:1a:8d:2e:11:b9:41: 24:6e:d5:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUJuIJaz71yu9F/KZxqgDUYscJ/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAxMDEyWhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjhlMGM5ZWFkNGNkY2MwN2QzZGQxYWFiNzkxODk4MDRi M2ZlODdkMjlmNjUzNjA0ZGE1ZGU2OGQwZTVjZmUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYJ9DFwv/TZsU9TTgCxQCgn6gt3dw25G4/FgisHR2yW2PZ je9Kb3CPLNCG0/fnY9EA4nXFOZYh8bLeZheQJxlYhwPLPWdhMj+hyUD0SVw6Ckgk wfWnB9TTlxM3OYW7L3/odsc3QvBxZXq5T0sBIwhrXhrOdICX1At0bMpwB5pZyafU c4G2BP55OWorcyx6LEANmHhzpi0zsPqjxqL3PUnHeXLLjWdq7m9ECOiF/3SJBz7c leKlbP+3mMWzuC/BNpPr6uMKTDZB63P9qTd1CWgCgwaMbnuVYnAXAtCfNkZuaBX4 aP3imSe4DlKVbApeAivaqUJQOU8WiNtvdVgLZQ/RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWsNQAxDDTJtOSX8up4N3Gb6TwVswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhNGI4MTU3LTE1NWYtNDliMS04MTViLWE3ODMwMDZmNTBlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoAwDQYJKoZIhvcNAQELBQADggEBAF80Lk/1ogggGkkJmnw09B4SlSVN sqQaw6PJRQ9/mUTromwVSUPZQugmosbTAbSkhoRFJi3NhNh1J37WLEzEPKOlp71p Hrh+XjDo3L7OhkLQWHxjQRxt6iiPWxq7GRZuO5xuheUZMWsLSJ7gIi+xzPtnXCcy KFg1wLaPbkqmicOSInHSARUM1ckdTmhmZrYVaAPzcFmES0zh+yJMm9UOmW5xW4Ys 2deBo4g2dUzsT1FzCHOtA9wg7ZtMYHhQXBTzQdbDmmvLS6uOGZ3ccHTNbV9QRuKz DJik57Lq3jnfqyttqE29jYC5w34WGXww0+jiSNXHIgh3ghqNLhG5QSRu1Q4= -----END CERTIFICATE-----Generated at Wed Aug 6 13:18:41 2025 by rpki-client