$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa File: 9c26edbe-f9e0-44ae-b884-a96f794843e1.roa (raw, json) Hash identifier: ZNi3Oe+AF2nF0zzCSyx/e/ikaIsMWyKwdtfSZS6b6DY= Subject key identifier: 79:22:49:D9:23:8F:11:4E:2D:2F:24:AF:C9:44:3B:00:53:0D:74:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66C7C4FA75F232F9D25408C0E8B4E717D164CFA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa Signing time: Mon 04 Aug 2025 15:31:25 +0000 ROA not before: Mon 04 Aug 2025 15:31:25 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.175.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c7:c4:fa:75:f2:32:f9:d2:54:08:c0:e8:b4:e7:17:d1:64:cf:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:31:25 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=f1fa31c5255b1ab9b2b2379009a70d062ffb792777cf96850441de54240b82f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ac:ce:e1:23:6b:d6:e3:20:27:ec:a4:41:01: 2c:79:5f:44:de:65:03:4a:32:cf:d4:1c:80:59:b4: 0d:5a:ee:07:1e:f0:31:0c:26:53:ca:a2:d4:3b:f9: 0d:01:7d:4b:03:92:5f:8d:ef:e5:ff:81:b6:0c:98: 19:e1:50:72:d3:db:f1:a6:4e:be:70:78:37:04:1b: 7a:e3:e3:85:b2:20:97:4b:50:2a:3a:ac:68:7e:eb: 1a:80:09:ee:b5:a6:13:63:c3:c6:fc:45:a7:ce:01: a8:f3:04:21:3b:2b:79:da:35:a6:a6:9a:27:bd:0f: d6:23:08:49:3b:c7:39:b1:30:d5:39:aa:49:ca:ed: 2e:71:eb:fd:62:1c:53:08:04:4a:e0:42:f5:b1:fc: 46:3d:1d:ca:08:fb:fb:69:25:05:73:39:c9:ce:d2: 5f:3b:8c:59:1b:40:35:c6:cd:b4:5e:80:3f:2a:1e: aa:f1:09:b6:d1:57:3d:42:04:d4:0b:5b:b2:0b:c4: 78:af:5c:c0:1e:4b:2c:aa:aa:30:d6:5a:1e:fb:7b: 56:da:f2:2b:7b:33:8a:49:e4:4a:bd:cb:9d:b7:56: 31:90:4d:f5:f4:11:3c:57:93:ce:69:49:6c:0c:14: 75:58:1e:cb:64:14:42:4f:c1:ac:46:d8:09:64:38: d6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:22:49:D9:23:8F:11:4E:2D:2F:24:AF:C9:44:3B:00:53:0D:74:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.175.64.0/18 Signature Algorithm: sha256WithRSAEncryption 47:95:9f:30:26:7e:6b:72:95:61:0c:f2:3e:11:c0:e7:8b:b1: d5:83:22:9f:6c:4f:60:4b:42:96:c6:37:eb:dd:ce:36:d4:eb: 81:36:56:18:ec:dd:c9:68:c8:b5:e3:45:da:fa:b6:c9:f0:11: da:8a:0f:b0:48:21:e8:c9:84:7c:5d:20:18:f7:f6:fa:e5:60: 58:93:01:7a:d2:25:e0:05:96:bc:eb:90:b3:67:16:aa:08:f8: f8:99:7c:a5:aa:4e:fe:c6:67:6c:c3:42:9d:75:95:1b:30:d3: be:dd:58:e6:a1:f5:37:51:67:ce:07:2b:6e:ce:21:f0:59:c1: 2e:d6:9a:b1:7c:3a:61:89:a5:80:3c:f8:99:bf:08:f0:60:2b: 40:a2:e2:5f:c2:b8:79:cf:67:d9:f2:c1:0a:d4:58:8b:16:a3: 55:4c:53:c3:3f:51:10:5f:a7:ea:62:76:cc:ca:c6:d9:fb:c3: 2c:30:31:0f:47:6f:08:c1:11:d7:ff:eb:e2:b5:85:ba:4b:df: 71:98:96:4d:e4:c0:48:2c:c5:4d:9b:69:61:ad:b3:b1:90:dc: 9a:e9:a7:2f:2b:c7:3c:19:a5:f9:c8:a0:68:00:00:76:04:1c: 90:72:0e:f7:e6:c2:1b:cb:36:cc:32:ed:61:81:1e:fb:40:1d: 3f:6a:d9:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZsfE+nXyMvnSVAjA6LTnF9Fkz6UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUzMTI1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWZhMzFjNTI1NWIxYWI5YjJiMjM3OTAwOWE3MGQwNjJm ZmI3OTI3NzdjZjk2ODUwNDQxZGU1NDI0MGI4MmY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDirM7hI2vW4yAn7KRBASx5X0TeZQNKMs/UHIBZtA1a7gce 8DEMJlPKotQ7+Q0BfUsDkl+N7+X/gbYMmBnhUHLT2/GmTr5weDcEG3rj44WyIJdL UCo6rGh+6xqACe61phNjw8b8RafOAajzBCE7K3naNaammie9D9YjCEk7xzmxMNU5 qknK7S5x6/1iHFMIBErgQvWx/EY9HcoI+/tpJQVzOcnO0l87jFkbQDXGzbRegD8q HqrxCbbRVz1CBNQLW7ILxHivXMAeSyyqqjDWWh77e1ba8it7M4pJ5Eq9y523VjGQ TfX0ETxXk85pSWwMFHVYHstkFEJPwaxG2AlkONYLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeSJJ2SOPEU4tLySvyUQ7AFMNdNUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljMjZlZGJlLWY5ZTAtNDRhZS1iODg0LWE5NmY3OTQ4NDNlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4r0AwDQYJKoZIhvcNAQELBQADggEBAEeVnzAmfmtylWEM8j4RwOeLsdWD Ip9sT2BLQpbGN+vdzjbU64E2Vhjs3cloyLXjRdr6tsnwEdqKD7BIIejJhHxdIBj3 9vrlYFiTAXrSJeAFlrzrkLNnFqoI+PiZfKWqTv7GZ2zDQp11lRsw077dWOah9TdR Z84HK27OIfBZwS7WmrF8OmGJpYA8+Jm/CPBgK0Ci4l/CuHnPZ9nywQrUWIsWo1VM U8M/URBfp+pidszKxtn7wywwMQ9HbwjBEdf/6+K1hbpL33GYlk3kwEgsxU2baWGt s7GQ3Jrppy8rxzwZpfnIoGgAAHYEHJByDvfmwhvLNswy7WGBHvtAHT9q2dw= -----END CERTIFICATE-----Generated at Fri Aug 8 20:47:53 2025 by rpki-client