$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa File: 944259e1-46ec-4cd6-a18d-22caadd7e03a.roa (raw, json) Hash identifier: 0ZICqL/eri2SQxfYmLOESlRbkEC7LDQSSYLElXVv9DM= Subject key identifier: 6C:3C:4F:B3:33:CF:A0:06:9D:43:13:EA:FF:8F:E1:8C:4F:85:EF:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FD88EC4ACEDD82B9B17B63635EF1EBD16966A5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa Signing time: Tue 05 Aug 2025 00:31:47 +0000 ROA not before: Tue 05 Aug 2025 00:31:47 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.180.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d8:8e:c4:ac:ed:d8:2b:9b:17:b6:36:35:ef:1e:bd:16:96:6a:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:31:47 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=070ac23f547c76e77fa61a828df7bf3f773aec6fa71d0ceacd35175bccc155a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:51:a9:c7:3b:bd:c8:d3:37:37:e3:07:32: db:ea:6e:53:b6:78:61:a7:03:08:10:e0:06:51:cb: 40:ec:76:f1:3b:79:d1:c9:1b:0c:ec:d7:46:e8:04: f5:59:9c:df:11:c5:1c:af:6d:56:1a:cd:da:97:d5: a2:79:bb:cc:69:be:74:32:91:29:2a:65:c2:cb:89: 72:46:b7:02:59:48:34:98:44:a9:c3:c5:ed:e6:2c: b1:3b:fc:e9:02:01:06:ad:f6:f5:d1:67:ca:cd:55: 1b:71:cf:63:9c:e8:26:90:75:11:48:02:46:cd:c2: 5b:60:2a:41:bd:fd:14:bc:e4:36:52:e8:25:39:16: e1:f6:ba:63:29:c4:a5:74:f4:e0:80:d0:88:c8:73: 8f:86:00:c1:99:7c:93:e9:75:c0:61:2d:9e:a8:b2: c7:33:42:41:42:e3:39:10:14:69:0f:83:7e:c1:cb: 8c:57:34:0e:c4:e3:8f:9c:3c:9f:d7:6c:f6:64:f6: 21:0b:96:1a:7a:33:2b:93:28:19:94:ef:de:80:69: b6:7c:20:6d:f0:c6:4d:00:41:4a:95:bb:7a:35:1b: 02:7b:76:f1:c6:41:e7:db:d4:2a:06:55:e9:00:88: 81:88:4f:e6:1a:19:d4:95:7d:70:5f:3c:bb:be:d9: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3C:4F:B3:33:CF:A0:06:9D:43:13:EA:FF:8F:E1:8C:4F:85:EF:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.180.0.0/16 Signature Algorithm: sha256WithRSAEncryption a2:5a:5c:2d:f5:88:b8:06:bf:fe:c7:fb:f7:bb:d4:fb:cb:bd: b8:2a:ac:67:bf:1b:3e:68:49:e5:82:ac:c4:46:3c:f8:5d:58: 05:a0:b5:21:ac:aa:f6:d9:77:a5:74:7c:11:2d:2c:77:80:a3: b9:2b:28:2c:43:a8:c4:80:4c:13:fd:04:d9:24:99:2e:68:76: 88:48:43:c9:1b:8d:41:2a:91:0a:77:03:e8:8a:f3:a1:03:6a: 64:80:90:47:23:cf:97:99:cd:ff:13:09:f8:7f:33:fe:e2:7b: 29:dc:ab:28:5e:8b:69:e6:a8:4b:c0:91:6a:36:8f:5c:3c:7d: 8f:c9:d8:0d:1a:20:e3:46:7b:34:a3:a8:fe:a3:96:ec:4c:26: 88:3d:2c:75:35:bf:47:ae:f3:e9:4e:a0:0a:23:cf:27:10:f7: ea:7c:7e:b9:e0:f7:81:6f:76:8c:6a:a5:87:72:78:56:ae:01: fb:1f:ab:2a:9f:b2:22:1c:33:ef:2a:ac:29:20:5b:bb:cc:50: bb:ae:e1:d6:73:f8:c6:de:1d:d3:9c:18:4e:2a:3f:76:6e:2b: 47:a3:83:65:bd:6d:94:33:d9:50:7e:11:f1:cc:54:2d:66:1c: e0:f0:12:08:a2:d5:8e:43:a2:d6:aa:4e:c6:98:1a:5e:41:c9: 57:3c:1d:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT9iOxKzt2CubF7Y2Ne8evRaWalwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMTQ3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzBhYzIzZjU0N2M3NmU3N2ZhNjFhODI4ZGY3YmYzZjc3 M2FlYzZmYTcxZDBjZWFjZDM1MTc1YmNjYzE1NWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV1lGpxzu9yNM3N+MHMtvqblO2eGGnAwgQ4AZRy0DsdvE7 edHJGwzs10boBPVZnN8RxRyvbVYazdqX1aJ5u8xpvnQykSkqZcLLiXJGtwJZSDSY RKnDxe3mLLE7/OkCAQat9vXRZ8rNVRtxz2Oc6CaQdRFIAkbNwltgKkG9/RS85DZS 6CU5FuH2umMpxKV09OCA0IjIc4+GAMGZfJPpdcBhLZ6ossczQkFC4zkQFGkPg37B y4xXNA7E44+cPJ/XbPZk9iELlhp6MyuTKBmU796AabZ8IG3wxk0AQUqVu3o1GwJ7 dvHGQefb1CoGVekAiIGIT+YaGdSVfXBfPLu+2ZS3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbDxPszPPoAadQxPq/4/hjE+F7/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0NDI1OWUxLTQ2ZWMtNGNkNi1hMThkLTIyY2FhZGQ3ZTAzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4tDANBgkqhkiG9w0BAQsFAAOCAQEAolpcLfWIuAa//sf797vU+8u9uCqs Z78bPmhJ5YKsxEY8+F1YBaC1Iayq9tl3pXR8ES0sd4CjuSsoLEOoxIBME/0E2SSZ Lmh2iEhDyRuNQSqRCncD6IrzoQNqZICQRyPPl5nN/xMJ+H8z/uJ7KdyrKF6Laeao S8CRajaPXDx9j8nYDRog40Z7NKOo/qOW7EwmiD0sdTW/R67z6U6gCiPPJxD36nx+ ueD3gW92jGqlh3J4Vq4B+x+rKp+yIhwz7yqsKSBbu8xQu67h1nP4xt4d05wYTio/ dm4rR6ODZb1tlDPZUH4R8cxULWYc4PASCKLVjkOi1qpOxpgaXkHJVzwdkA== -----END CERTIFICATE-----Generated at Wed Aug 6 16:14:19 2025 by rpki-client