$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa File: 8e20c718-da11-4efd-a5cd-defbd09e43a7.roa (raw, json) Hash identifier: S0XmbAkRkVmUqvu/ilUZyGD+edKcrtEonyQlGuJIa34= Subject key identifier: F2:BC:E4:E1:D4:6E:D3:FA:CC:7B:A8:FE:DC:B5:AD:23:03:55:04:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0306542F97A9C7899CC7D6BBF2CD0A77A192F56D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa Signing time: Mon 04 Aug 2025 16:11:56 +0000 ROA not before: Mon 04 Aug 2025 16:11:56 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:06:54:2f:97:a9:c7:89:9c:c7:d6:bb:f2:cd:0a:77:a1:92:f5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:11:56 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=165e0ecf3e91cbc69812f80f10c209fda137f697829446dd3170dae09eeaf490, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d6:b8:91:48:80:e8:3e:ea:1f:32:f2:43:c2: d3:80:41:7a:e1:b6:cb:39:e8:98:21:9a:46:23:27: 83:bf:f3:e0:46:7b:dd:9d:36:6c:3b:4c:00:86:54: f2:88:83:a6:b3:ba:0d:5c:49:6c:be:04:e8:06:ea: d2:2b:e7:77:4b:29:7d:c6:f9:a0:e2:60:20:2c:a2: 8d:04:3b:12:fc:4e:3a:51:17:9d:63:de:61:b2:6e: 81:ad:3b:37:64:4d:f4:f5:16:aa:41:d0:82:53:f0: a7:27:48:c8:3e:cd:e4:20:c7:6c:11:4d:4f:52:72: 07:06:93:0a:d1:76:e3:96:ab:92:c0:75:e9:53:18: 39:70:60:92:57:b9:46:15:5e:fe:fb:15:8b:dc:05: 03:48:24:ca:27:62:af:60:22:35:e9:f3:b0:f6:20: a7:7e:98:1f:2c:ad:78:2f:de:30:07:54:60:89:8b: b9:51:dd:7f:35:33:2a:63:45:c8:a6:d4:bb:a9:b4: be:c0:5d:6d:76:71:e3:96:1e:04:ba:d5:54:a3:07: 6c:58:ce:4d:9e:9d:72:ae:61:dd:95:8c:4c:28:31: d9:de:b5:bd:fc:39:c9:98:45:78:48:52:5e:cb:5c: c1:8e:eb:e1:92:7a:33:18:7e:ca:a6:04:8c:72:f0: 9b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BC:E4:E1:D4:6E:D3:FA:CC:7B:A8:FE:DC:B5:AD:23:03:55:04:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.81.0/24 Signature Algorithm: sha256WithRSAEncryption 49:5e:8f:e8:0c:b1:96:84:2a:e3:d6:ec:c0:60:6e:23:ce:22: 83:bb:ff:a8:c1:27:4f:fd:0c:d6:1d:c3:0f:35:72:53:95:cc: b0:32:bb:f2:65:fc:64:79:f8:62:48:a9:43:d8:77:a9:79:d2: 2b:30:68:0f:a0:31:d9:66:ac:62:50:a6:7c:37:8d:51:73:22: 72:30:0d:de:f0:10:37:97:38:eb:35:38:b8:7e:87:75:71:24: 54:8f:75:6d:a5:2a:4e:21:f6:6f:3b:6a:11:e7:23:42:15:6d: c2:24:07:ac:1e:b8:a8:f7:ae:82:9c:47:54:d5:87:4a:12:a2: 75:28:42:4c:b7:4f:7b:b2:c3:b1:60:92:b6:4b:d4:35:23:76: 99:da:f4:72:29:fc:84:a2:e4:d7:10:5b:26:cd:0c:7a:47:29: 9b:73:d1:e4:b2:cd:56:55:83:45:d5:a9:c1:6d:1b:0b:ea:08: 89:8a:3e:5d:d2:14:22:66:55:00:16:cd:ed:78:a2:92:ef:52: cd:8b:10:68:4a:cc:08:62:68:2c:58:35:fe:27:79:6b:77:64: 39:45:f5:81:8d:a3:d4:0e:3c:1d:20:1f:87:35:72:87:f1:9a: ba:26:19:d3:80:36:7c:b8:12:ff:45:0c:ab:46:d7:f6:52:65: 3f:c8:fb:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAwZUL5epx4mcx9a78s0Kd6GS9W0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYxMTU2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjVlMGVjZjNlOTFjYmM2OTgxMmY4MGYxMGMyMDlmZGEx MzdmNjk3ODI5NDQ2ZGQzMTcwZGFlMDllZWFmNDkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ1riRSIDoPuofMvJDwtOAQXrhtss56JghmkYjJ4O/8+BG e92dNmw7TACGVPKIg6azug1cSWy+BOgG6tIr53dLKX3G+aDiYCAsoo0EOxL8TjpR F51j3mGyboGtOzdkTfT1FqpB0IJT8KcnSMg+zeQgx2wRTU9ScgcGkwrRduOWq5LA delTGDlwYJJXuUYVXv77FYvcBQNIJMonYq9gIjXp87D2IKd+mB8srXgv3jAHVGCJ i7lR3X81MypjRcim1LuptL7AXW12ceOWHgS61VSjB2xYzk2enXKuYd2VjEwoMdne tb38OcmYRXhIUl7LXMGO6+GSejMYfsqmBIxy8Js/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8rzk4dRu0/rMe6j+3LWtIwNVBAowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMjBjNzE4LWRhMTEtNGVmZC1hNWNkLWRlZmJkMDllNDNhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABslEwDQYJKoZIhvcNAQELBQADggEBAElej+gMsZaEKuPW7MBgbiPOIoO7 /6jBJ0/9DNYdww81clOVzLAyu/Jl/GR5+GJIqUPYd6l50iswaA+gMdlmrGJQpnw3 jVFzInIwDd7wEDeXOOs1OLh+h3VxJFSPdW2lKk4h9m87ahHnI0IVbcIkB6weuKj3 roKcR1TVh0oSonUoQky3T3uyw7FgkrZL1DUjdpna9HIp/ISi5NcQWybNDHpHKZtz 0eSyzVZVg0XVqcFtGwvqCImKPl3SFCJmVQAWze14opLvUs2LEGhKzAhiaCxYNf4n eWt3ZDlF9YGNo9QOPB0gH4c1cofxmromGdOANny4Ev9FDKtG1/ZSZT/I+7Y= -----END CERTIFICATE-----Generated at Tue Aug 5 17:18:17 2025 by rpki-client