$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a05d74c7-b24d-49cc-98eb-23622038f686.roa File: a05d74c7-b24d-49cc-98eb-23622038f686.roa (raw, json) Hash identifier: 02Nh3x9supSds6YXfoKnh6m2H27LMqJN4YjqQXitj28= Subject key identifier: 9B:64:71:FA:68:21:9B:10:DE:63:4F:13:B4:CE:0F:28:9E:B4:00:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39A8E804B376DF62FB7F53707A66AFB1DC22F69A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a05d74c7-b24d-49cc-98eb-23622038f686.roa Signing time: Wed 06 Aug 2025 06:38:07 +0000 ROA not before: Wed 06 Aug 2025 06:38:07 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 45.34.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a8:e8:04:b3:76:df:62:fb:7f:53:70:7a:66:af:b1:dc:22:f6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 06:38:07 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=d2022f629dc176243881fc769edde689d02627e163b5687592ea9d47eb630721, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:22:f4:fb:2d:c9:22:ec:01:c5:4a:ec:b9:88: fe:45:7c:58:3c:88:62:c8:be:ef:04:06:c4:2e:24: 77:54:b0:0a:8a:7c:1d:73:cd:1f:bb:d7:9d:97:84: c6:d9:ee:86:14:87:73:ea:e6:00:60:a7:52:7b:d2: d2:4c:6d:ed:ea:f2:8f:bd:5a:f1:94:42:bb:d0:9a: 98:61:f4:23:06:63:b5:d2:f2:d9:c0:41:ac:9c:f7: f9:ee:5d:e7:6d:9b:00:8e:25:b7:af:8e:d7:b8:0f: 65:4b:94:0f:5f:00:35:25:17:69:3b:42:78:1d:4e: 05:37:ac:da:1a:af:d8:73:bd:15:b7:13:4b:0d:52: ff:08:86:75:56:49:a0:72:cc:2d:a9:13:a6:98:9f: f1:da:74:97:92:7f:f7:72:6b:b4:9e:db:c4:27:08: 0f:b1:6a:68:4e:e9:30:47:20:de:36:d5:33:57:f8: aa:a5:55:6f:31:ae:96:39:93:04:1e:b1:93:73:97: f6:2d:dd:b8:d2:7e:52:70:6d:7d:bf:5c:41:85:88: cd:b3:80:c7:d0:aa:91:54:bb:90:67:e5:93:ed:55: 5b:ba:47:6f:78:5c:ec:a8:85:7f:16:97:53:c2:ed: d6:13:41:e2:b0:6f:44:80:37:97:1d:97:ae:7c:cb: 47:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:64:71:FA:68:21:9B:10:DE:63:4F:13:B4:CE:0F:28:9E:B4:00:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a05d74c7-b24d-49cc-98eb-23622038f686.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.34.0.0/15 Signature Algorithm: sha256WithRSAEncryption 4c:f6:16:a8:05:85:81:fd:08:20:9b:aa:3f:2d:3a:5c:95:49: 97:be:7d:19:14:55:c8:ef:59:1f:a2:3e:23:af:3c:15:d0:fb: c4:c2:ae:b4:fd:b1:11:9b:2e:0e:1e:00:74:e7:15:05:23:99: a8:99:c8:3f:ea:34:eb:28:a8:35:9c:20:78:b1:dd:6d:a4:dc: 05:cf:23:38:5a:8a:d7:12:7a:69:a6:78:ba:59:3e:38:36:e3: 65:24:21:ab:02:83:4c:bb:05:10:9f:17:20:db:26:1b:ad:46: 4a:5b:dc:50:3d:15:94:3a:a7:e3:d3:a8:8e:2a:2c:a9:f6:0c: 8d:1d:67:d7:36:0a:8c:bf:5c:02:17:bf:8c:4c:7c:fb:db:b8: e2:c1:42:36:81:c8:34:49:3c:d5:30:12:90:38:49:b4:1e:85: e7:b9:66:4f:12:c1:2b:fb:3a:c5:65:af:31:8e:7f:ea:3f:70: 94:7f:72:f0:47:4c:3b:f6:8f:97:ff:4e:2c:e6:3f:77:90:47: 83:22:96:eb:06:94:81:3d:65:d0:29:38:ca:cf:7e:d8:ea:09: 3c:68:3e:0d:56:78:62:87:ad:e3:10:8c:37:e4:c8:09:61:70: e3:e4:58:0b:a7:e1:b4:39:5e:65:a7:d3:46:6f:32:a2:f5:9e: ca:02:a0:77 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOajoBLN232L7f1Nwemavsdwi9powDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDYzODA3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjAyMmY2MjlkYzE3NjI0Mzg4MWZjNzY5ZWRkZTY4OWQw MjYyN2UxNjNiNTY4NzU5MmVhOWQ0N2ViNjMwNzIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1IvT7Lcki7AHFSuy5iP5FfFg8iGLIvu8EBsQuJHdUsAqK fB1zzR+7152XhMbZ7oYUh3Pq5gBgp1J70tJMbe3q8o+9WvGUQrvQmphh9CMGY7XS 8tnAQayc9/nuXedtmwCOJbevjte4D2VLlA9fADUlF2k7QngdTgU3rNoar9hzvRW3 E0sNUv8IhnVWSaByzC2pE6aYn/HadJeSf/dya7Se28QnCA+xamhO6TBHIN421TNX +KqlVW8xrpY5kwQesZNzl/Yt3bjSflJwbX2/XEGFiM2zgMfQqpFUu5Bn5ZPtVVu6 R294XOyohX8Wl1PC7dYTQeKwb0SAN5cdl658y0f/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUm2Rx+mghmxDeY08TtM4PKJ60ANYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwNWQ3NGM3LWIyNGQtNDljYy05OGViLTIzNjIyMDM4ZjY4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEtIjANBgkqhkiG9w0BAQsFAAOCAQEATPYWqAWFgf0IIJuqPy06XJVJl759 GRRVyO9ZH6I+I688FdD7xMKutP2xEZsuDh4AdOcVBSOZqJnIP+o06yioNZwgeLHd baTcBc8jOFqK1xJ6aaZ4ulk+ODbjZSQhqwKDTLsFEJ8XINsmG61GSlvcUD0VlDqn 49OojiosqfYMjR1n1zYKjL9cAhe/jEx8+9u44sFCNoHINEk81TASkDhJtB6F57lm TxLBK/s6xWWvMY5/6j9wlH9y8EdMO/aPl/9OLOY/d5BHgyKW6waUgT1l0Ck4ys9+ 2OoJPGg+DVZ4Yoet4xCMN+TICWFw4+RYC6fhtDleZafTRm8yovWeygKgdw== -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:39 2025 by rpki-client