$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa File: a4227170-2265-45c8-950f-f4e81e32653b.roa (raw, json) Hash identifier: wcuONJ1KFlS2QU1B0WkAu3zWGcBNrzncgr3j9TgYHXk= Subject key identifier: 8D:F1:11:4D:E6:90:BF:33:5A:9E:4F:DB:36:09:2A:36:F7:ED:E9:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 650BC45BE2463CA8CA687F1746454CDD6BE6F9A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa Signing time: Fri 08 Aug 2025 00:20:31 +0000 ROA not before: Fri 08 Aug 2025 00:20:31 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0b:c4:5b:e2:46:3c:a8:ca:68:7f:17:46:45:4c:dd:6b:e6:f9:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:20:31 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=3ed31457a96e1ab49b7945b1420715318c514a104e4e59083334b059389d57be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:c6:7d:cc:33:af:2e:33:4b:88:d9:ae:3b: b7:b9:fb:4b:d3:df:bc:bb:00:4f:34:eb:41:0a:13: 5e:2f:8c:0c:0b:fa:9f:b2:52:fa:57:a9:45:c1:35: 9f:91:4f:55:6d:2e:5f:3d:72:9c:94:15:73:97:11: 38:78:68:b6:cd:16:e0:d5:d0:c1:79:df:05:1b:88: c8:12:f3:a3:d2:9a:1d:cf:94:dd:f7:a4:b1:62:d3: 0c:34:6b:30:59:e3:41:e9:5c:f6:06:28:ac:cb:44: a8:8c:1c:dd:17:3f:25:2b:63:90:d3:ce:f0:62:c8: 25:c8:fd:3b:93:4e:28:f6:9e:34:d8:a5:b4:4a:13: 98:62:84:c1:53:ce:ae:d3:81:05:58:e0:1e:a8:2a: 6a:ee:f3:9f:f1:d8:48:e0:67:00:8f:ce:87:23:49: 14:d0:e4:82:cf:4b:99:a3:b7:d3:5c:12:70:69:a1: 97:7f:0b:e1:d3:3f:65:24:d7:42:76:ea:68:e0:3f: c5:55:45:72:d5:10:08:e7:4c:f2:ab:92:74:c2:1c: b2:3f:5a:cf:8d:d4:81:ce:51:15:e9:42:22:a2:31: 96:27:d2:66:8d:9a:0c:8a:26:5f:ad:4d:6a:cf:0f: e1:26:81:cb:72:28:8d:3b:e9:cb:84:ae:1d:5e:26: c8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F1:11:4D:E6:90:BF:33:5A:9E:4F:DB:36:09:2A:36:F7:ED:E9:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 91:d3:57:b4:e4:bf:ac:2b:24:bf:97:3e:55:7d:f2:83:4d:8b: a3:db:78:a6:26:dc:6f:a1:eb:6e:21:c9:14:7f:09:cc:07:e9: 2b:5b:02:d3:eb:54:cd:80:23:4b:07:c3:a7:f4:02:99:2a:79: 74:ed:d2:57:fc:aa:74:90:8e:48:d7:0d:b2:1f:c9:09:d2:1b: 12:9c:61:f3:2d:27:4c:2d:8c:a3:84:00:0e:ff:01:17:3a:6e: bc:64:f6:03:03:e1:7e:56:0a:45:1a:e9:b9:54:6d:fd:31:ba: c3:42:4a:28:b6:29:70:44:a6:c3:c4:fa:97:60:df:13:35:cc: c3:7d:2c:e7:06:9d:b2:17:12:1a:63:cc:09:5d:fd:65:97:bc: c7:83:b1:74:78:ad:1c:fa:51:22:3c:48:52:21:b0:dc:82:f6: c0:d2:06:13:2b:fe:3b:68:7e:89:f9:66:f4:e9:15:1f:c5:3b: c7:97:ad:8c:50:c3:a7:fa:8d:62:1c:22:6a:ac:ef:6f:a5:5d: 38:e4:aa:5f:11:4d:9b:07:12:0e:a6:d7:93:c9:74:2d:d1:47: ed:34:b7:3b:e4:f6:18:f8:65:13:2c:d6:91:8c:dc:a4:71:8e: a0:43:c3:f5:58:af:7f:34:59:15:7e:93:36:53:22:9f:46:57: 8a:b1:02:7a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZQvEW+JGPKjKaH8XRkVM3Wvm+akwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMDMxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWQzMTQ1N2E5NmUxYWI0OWI3OTQ1YjE0MjA3MTUzMThj NTE0YTEwNGU0ZTU5MDgzMzM0YjA1OTM4OWQ1N2JlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCa8Z9zDOvLjNLiNmuO7e5+0vT37y7AE8060EKE14vjAwL +p+yUvpXqUXBNZ+RT1VtLl89cpyUFXOXETh4aLbNFuDV0MF53wUbiMgS86PSmh3P lN33pLFi0ww0azBZ40HpXPYGKKzLRKiMHN0XPyUrY5DTzvBiyCXI/TuTTij2njTY pbRKE5hihMFTzq7TgQVY4B6oKmru85/x2EjgZwCPzocjSRTQ5ILPS5mjt9NcEnBp oZd/C+HTP2Uk10J26mjgP8VVRXLVEAjnTPKrknTCHLI/Ws+N1IHOURXpQiKiMZYn 0maNmgyKJl+tTWrPD+EmgctyKI076cuErh1eJsiJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjfERTeaQvzNank/bNgkqNvft6cgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0MjI3MTcwLTIyNjUtNDVjOC05NTBmLWY0ZTgxZTMyNjUzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBgADANBgkqhkiG9w0BAQsFAAOCAQEAkdNXtOS/rCskv5c+VX3yg02Lo9t4 pibcb6HrbiHJFH8JzAfpK1sC0+tUzYAjSwfDp/QCmSp5dO3SV/yqdJCOSNcNsh/J CdIbEpxh8y0nTC2Mo4QADv8BFzpuvGT2AwPhflYKRRrpuVRt/TG6w0JKKLYpcESm w8T6l2DfEzXMw30s5wadshcSGmPMCV39ZZe8x4OxdHitHPpRIjxIUiGw3IL2wNIG Eyv+O2h+iflm9OkVH8U7x5etjFDDp/qNYhwiaqzvb6VdOOSqXxFNmwcSDqbXk8l0 LdFH7TS3O+T2GPhlEyzWkYzcpHGOoEPD9VivfzRZFX6TNlMin0ZXirECeg== -----END CERTIFICATE-----Generated at Sat Aug 9 03:02:05 2025 by rpki-client