$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa File: d4314907-a293-452a-8393-4b578c9f3645.roa (raw, json) Hash identifier: 4Bfh8MzAHBonmF2p7+79OwzJ6V3BTe/9MKr5WVYmOQE= Subject key identifier: 2B:26:B4:E4:BB:03:70:E2:B6:79:86:B2:5B:8C:BA:93:22:4D:3D:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2ED6CA72096824590FDDB5C9A5FE39E733AF30D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa Signing time: Mon 04 Aug 2025 17:30:35 +0000 ROA not before: Mon 04 Aug 2025 17:30:35 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d6:ca:72:09:68:24:59:0f:dd:b5:c9:a5:fe:39:e7:33:af:30:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:30:35 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a42d6eea4fde07103cace098cb850829198f742806546bf1ddc92952d91590bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:21:f7:e1:e7:29:b8:93:99:d6:cc:8e:46:62: 06:02:84:0e:36:87:e9:42:84:05:32:1c:e3:27:47: a4:39:6a:8d:41:15:fd:e6:f5:ac:d6:3f:b2:b1:13: f6:76:cc:f8:7a:a8:67:2f:03:55:5d:2e:8e:ed:ba: 2e:25:92:96:18:22:10:a2:84:4d:fd:79:1d:96:db: 67:14:73:43:84:e2:0f:cd:c0:23:e1:86:77:0d:a0: 9c:2f:a3:9f:0d:c4:7d:b2:f5:1a:14:22:17:56:fe: 4c:de:a0:67:68:45:95:f8:62:d6:40:6a:e6:0b:f9: c3:2b:f3:99:68:46:db:60:41:cd:f6:b1:ef:72:dd: 3a:73:79:6a:f5:ed:1e:0d:c2:4d:aa:ea:63:15:db: 63:87:44:ab:97:aa:5a:b8:94:85:54:40:06:45:3b: 9c:d0:d9:49:e1:7b:36:33:b5:52:e5:4b:23:d1:bb: cb:97:4e:59:58:a7:61:92:51:97:7f:2d:7b:40:7a: de:76:a8:a6:ff:e3:b0:39:8a:bd:5c:ec:1f:db:14: 83:14:f3:67:b8:25:20:d7:88:74:23:4a:94:c3:1e: c8:de:33:8f:5f:47:6c:89:ce:76:a7:95:c8:3a:05: 44:93:33:08:ac:16:99:57:8f:54:73:5f:bf:9c:15: b8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:26:B4:E4:BB:03:70:E2:B6:79:86:B2:5B:8C:BA:93:22:4D:3D:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:07:6e:19:ce:ff:04:bd:4c:fa:e4:74:17:d0:8d:9b:08:fd: 6d:de:5a:0b:33:fb:03:02:bd:d1:ce:dd:64:45:f1:f0:8d:a9: 00:0f:44:ee:03:10:5c:c1:55:d8:70:3d:2a:50:2f:45:a5:19: db:49:0f:60:06:01:aa:21:28:c2:76:4d:f9:9d:26:84:6c:ed: b1:fe:e7:80:88:43:6f:35:ef:fb:d9:80:a9:d2:e4:df:1e:31: 6d:5f:c4:99:fb:ba:a0:47:87:8f:27:ff:b6:83:98:c9:00:f2: 01:6d:b5:e0:ac:9d:de:8b:56:14:7d:da:cc:66:a0:56:d4:de: 1c:1c:9a:2f:39:5e:a4:7e:fe:c7:a5:2d:75:e2:e2:7d:66:21: 1f:eb:f6:cf:7a:bb:0c:03:4a:33:92:5a:f9:30:da:0f:0f:75: 5c:60:79:12:36:94:ae:7a:22:41:f4:08:0f:02:5d:18:b3:d1: 2f:83:21:f3:57:78:5a:1e:08:f3:97:4b:46:ff:59:09:cf:b1: 72:d1:c8:0e:5e:1e:5f:72:c8:1d:da:48:64:4a:f4:7b:c1:0f: 54:76:6e:b2:b7:f9:c9:61:e7:58:a9:d1:87:fd:52:19:0b:c6: 7a:02:28:3b:6e:c8:c7:4a:e0:ed:36:44:a1:37:be:4b:d0:09: 4c:34:17:8f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULtbKcgloJFkP3bXJpf455zOvMNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTczMDM1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDJkNmVlYTRmZGUwNzEwM2NhY2UwOThjYjg1MDgyOTE5 OGY3NDI4MDY1NDZiZjFkZGM5Mjk1MmQ5MTU5MGJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoIffh5ym4k5nWzI5GYgYChA42h+lChAUyHOMnR6Q5ao1B Ff3m9azWP7KxE/Z2zPh6qGcvA1VdLo7tui4lkpYYIhCihE39eR2W22cUc0OE4g/N wCPhhncNoJwvo58NxH2y9RoUIhdW/kzeoGdoRZX4YtZAauYL+cMr85loRttgQc32 se9y3TpzeWr17R4Nwk2q6mMV22OHRKuXqlq4lIVUQAZFO5zQ2UnhezYztVLlSyPR u8uXTllYp2GSUZd/LXtAet52qKb/47A5ir1c7B/bFIMU82e4JSDXiHQjSpTDHsje M49fR2yJznanlcg6BUSTMwisFplXj1RzX7+cFbjFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKya05LsDcOK2eYayW4y6kyJNPRMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0MzE0OTA3LWEyOTMtNDUyYS04MzkzLTRiNTc4YzlmMzY0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAOgduGc7/BL1M+uR0F9CNmwj9bd5a CzP7AwK90c7dZEXx8I2pAA9E7gMQXMFV2HA9KlAvRaUZ20kPYAYBqiEownZN+Z0m hGztsf7ngIhDbzXv+9mAqdLk3x4xbV/Emfu6oEeHjyf/toOYyQDyAW214Kyd3otW FH3azGagVtTeHByaLzlepH7+x6UtdeLifWYhH+v2z3q7DANKM5Ja+TDaDw91XGB5 EjaUrnoiQfQIDwJdGLPRL4Mh81d4Wh4I85dLRv9ZCc+xctHIDl4eX3LIHdpIZEr0 e8EPVHZusrf5yWHnWKnRh/1SGQvGegIoO27Ix0rg7TZEoTe+S9AJTDQXjw== -----END CERTIFICATE-----Generated at Sat Aug 9 10:48:37 2025 by rpki-client