$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa File: c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa (raw, json) Hash identifier: mgNNc5XNNjI32xHLViyAigVICSLwsuSGiSqqHOntxUk= Subject key identifier: 18:E4:5F:9D:6A:26:4B:C4:58:5D:58:BD:72:DB:B3:67:3E:0D:DB:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B1D1E55118AB598F80EA1CA24CC80AD5A163400 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa Signing time: Tue 22 Jul 2025 15:00:18 +0000 ROA not before: Tue 22 Jul 2025 15:00:18 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1d:1e:55:11:8a:b5:98:f8:0e:a1:ca:24:cc:80:ad:5a:16:34:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 15:00:18 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=10188712da42afce9daf448a6a86b665b2e813c643e40a0e3848883df1f1f90f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:11:2b:56:e1:a8:38:e2:69:ef:61:fb:b9:08: 3c:3b:84:ba:95:a5:fa:06:5a:78:e2:e3:bf:ba:a6: de:49:50:69:d6:a4:5a:e7:03:e5:2d:8c:2d:75:d2: c9:16:af:12:1e:1e:6a:0e:9d:75:a9:ad:30:3b:ef: 20:17:99:70:79:f9:83:9b:05:95:32:9c:d4:b5:52: e5:3d:e2:64:f4:94:90:18:0c:41:c5:78:d7:ef:ea: d4:93:67:bb:6e:cb:42:78:16:76:85:c3:55:1d:5e: 21:cd:f2:7c:44:39:ab:50:ec:65:d1:21:99:7b:63: d0:6f:49:12:d9:5d:1a:da:aa:00:05:03:58:fb:90: 70:a2:c0:23:d2:b9:3a:35:3c:f4:c0:ac:ef:f4:75: ed:d1:21:94:4a:a0:29:06:9b:db:b2:fc:19:ed:91: b4:78:1c:c0:d4:04:d6:57:95:48:3f:93:c3:04:bb: 4b:8f:99:91:e0:30:02:a1:f5:57:e0:4e:f9:66:27: 19:2b:5f:b2:ee:c4:5d:5b:9b:02:61:9f:c6:3c:65: a3:40:df:38:fe:dd:1f:e3:ef:c6:a1:1d:33:ec:f4: 67:5c:10:58:de:d7:76:62:92:04:7c:61:9e:f3:56: 0c:32:f9:c3:1b:b5:32:c2:78:6e:ee:a4:f2:b0:3e: a1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E4:5F:9D:6A:26:4B:C4:58:5D:58:BD:72:DB:B3:67:3E:0D:DB:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:09:0a:2f:a8:8c:04:0a:b1:8f:27:97:27:b0:fa:53:1d:3e: 39:e9:d5:5b:37:2b:1c:07:ad:e0:c8:39:82:d7:41:67:da:ac: 22:76:23:47:af:4a:5b:75:65:d7:9d:43:74:b2:86:c4:44:88: 0b:b6:b8:bb:eb:61:b1:7f:b5:02:16:be:5c:39:f5:db:87:e1: 46:ba:e0:8e:59:7b:1b:2d:17:a0:81:df:13:88:0e:ec:5c:d0: f4:43:71:f1:d6:31:f0:70:b1:12:7b:74:34:91:91:c2:99:b3: dd:5a:40:23:27:41:bf:d4:b3:34:83:69:a0:0c:1d:b1:96:9d: 70:1f:1b:71:eb:a8:d0:ce:ca:ea:8c:bd:2a:5e:d0:48:e3:7f: ce:e4:e5:ff:7c:0f:04:4b:a4:88:e1:27:74:90:9a:e7:17:cf: 1d:9e:73:64:a5:6c:a6:1c:c6:5e:73:a4:a8:95:21:51:d7:99: 9a:1e:18:2c:6f:70:ae:ab:b3:7f:69:17:d1:ae:d0:4a:1d:58: c0:93:d1:f1:a1:8f:2c:8f:01:f3:01:44:81:e5:a9:c4:e8:f7: 7d:43:9b:6b:96:a3:e4:5a:c1:3e:bd:b3:e9:38:10:83:6b:17: f1:b3:31:89:c8:de:1e:41:db:1c:13:b7:f3:57:32:7f:39:29: c6:af:b0:8c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSx0eVRGKtZj4DqHKJMyArVoWNAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMTUwMDE4WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDE4ODcxMmRhNDJhZmNlOWRhZjQ0OGE2YTg2YjY2NWIy ZTgxM2M2NDNlNDBhMGUzODQ4ODgzZGYxZjFmOTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwEStW4ag44mnvYfu5CDw7hLqVpfoGWnji47+6pt5JUGnW pFrnA+UtjC110skWrxIeHmoOnXWprTA77yAXmXB5+YObBZUynNS1UuU94mT0lJAY DEHFeNfv6tSTZ7tuy0J4FnaFw1UdXiHN8nxEOatQ7GXRIZl7Y9BvSRLZXRraqgAF A1j7kHCiwCPSuTo1PPTArO/0de3RIZRKoCkGm9uy/BntkbR4HMDUBNZXlUg/k8ME u0uPmZHgMAKh9VfgTvlmJxkrX7LuxF1bmwJhn8Y8ZaNA3zj+3R/j78ahHTPs9Gdc EFje13ZikgR8YZ7zVgwy+cMbtTLCeG7upPKwPqFlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGORfnWomS8RYXVi9ctuzZz4N2+AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwZjcyYTE0LTcxYTktNDdhMS1hZDljLTFmOTEyOTA3OWJmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4WTANBgkqhkiG9w0BAQsFAAOCAQEAjQkKL6iMBAqxjyeXJ7D6Ux0+OenV WzcrHAet4Mg5gtdBZ9qsInYjR69KW3Vl151DdLKGxESIC7a4u+thsX+1Aha+XDn1 24fhRrrgjll7Gy0XoIHfE4gO7FzQ9ENx8dYx8HCxEnt0NJGRwpmz3VpAIydBv9Sz NINpoAwdsZadcB8bceuo0M7K6oy9Kl7QSON/zuTl/3wPBEukiOEndJCa5xfPHZ5z ZKVsphzGXnOkqJUhUdeZmh4YLG9wrquzf2kX0a7QSh1YwJPR8aGPLI8B8wFEgeWp xOj3fUOba5aj5FrBPr2z6TgQg2sX8bMxicjeHkHbHBO381cyfzkpxq+wjA== -----END CERTIFICATE-----Generated at Tue Aug 5 17:12:23 2025 by rpki-client