$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9c65ad6-72a2-4464-8c5f-50a3e14f1c34.roa File: d9c65ad6-72a2-4464-8c5f-50a3e14f1c34.roa (raw, json) Hash identifier: RYl8H7vAjDO7j0nNPN45NjXNmy1XQ2Kj8XDjN3htG1g= Subject key identifier: 62:3D:92:F8:06:E4:CC:20:1D:D3:41:45:04:43:81:2A:81:16:A9:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FF96DC3343375BE8F4BA5209B858878AA8F4BF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9c65ad6-72a2-4464-8c5f-50a3e14f1c34.roa Signing time: Wed 06 Aug 2025 00:10:13 +0000 ROA not before: Wed 06 Aug 2025 00:10:13 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.148.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f9:6d:c3:34:33:75:be:8f:4b:a5:20:9b:85:88:78:aa:8f:4b:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:10:13 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=4da851e13b17e13da71e222d0559d7c2242c6f63c2dfa47325bc3f84d2267092, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9d:ef:4e:07:09:6d:6f:78:af:73:79:ce:e8: ec:65:62:48:80:b9:63:9c:c0:ce:da:45:ed:a3:bf: 91:61:45:22:a4:e8:42:ba:18:5b:ac:0d:29:52:d5: a8:b5:2a:d8:06:ee:30:13:4b:c0:76:6d:36:cf:f5: c0:8d:bd:70:a9:b6:a7:52:28:d0:c1:44:f6:d8:d8: 38:a7:88:8e:e8:48:e2:09:26:c3:2b:72:b7:93:c8: 68:44:e6:a8:13:e2:5c:e3:ad:01:77:cc:bd:e7:4d: 32:f8:7b:bc:88:d1:94:7d:17:32:fb:9a:28:b8:5d: 52:01:68:50:99:ab:4b:49:a4:93:0a:68:3f:23:59: cc:b9:75:74:63:e1:21:fd:bd:5a:8a:b1:0d:03:80: 1d:b2:8d:df:17:cd:de:17:e8:dc:be:b1:1c:60:e6: a3:26:ce:4a:a2:f4:75:fe:77:f0:99:4b:15:b5:c8: 12:13:d8:92:73:3a:db:23:20:8c:ec:18:06:ad:7a: b4:9e:bb:50:b8:2d:5e:a1:d2:73:64:05:e5:6c:2f: ab:1e:88:58:ee:19:9f:e0:92:b3:6c:bc:23:59:84: 9e:82:cf:bf:ad:41:a1:d9:46:2e:bc:13:a3:f8:0d: 87:14:23:de:bf:fe:f9:93:ee:68:78:b5:4b:0a:7d: 05:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3D:92:F8:06:E4:CC:20:1D:D3:41:45:04:43:81:2A:81:16:A9:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9c65ad6-72a2-4464-8c5f-50a3e14f1c34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.148.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:31:c4:b0:4b:6f:cd:79:db:70:27:d9:6e:85:00:c0:43:b8: c3:d6:7e:bd:0f:aa:b9:cd:e3:8a:12:48:95:b0:d1:7c:f5:12: f2:f7:7f:0d:4f:73:b3:fc:46:bd:62:11:11:35:1b:48:99:18: c8:27:53:9f:ab:de:e8:8e:47:cc:f0:d0:9f:a7:5a:fc:39:70: b6:fd:7b:b2:b4:90:60:07:60:b6:20:6d:8a:22:83:e6:12:08: af:9a:df:df:56:d0:15:8a:0d:29:da:e2:23:80:73:43:70:ab: 93:3d:c7:39:db:77:4c:05:2b:7c:4e:68:f1:97:29:49:d7:35: 4f:fd:50:a3:73:e0:6d:31:ed:32:a2:4d:5a:99:4b:ea:51:73: 8f:83:3e:ce:33:92:a5:9a:7a:09:ae:6e:a0:12:ac:69:c6:77: b0:11:ce:98:50:e9:16:df:82:6a:8c:e3:b9:51:9f:38:16:7c: c7:88:5e:9a:1c:85:7b:58:c6:3d:a0:cf:b2:69:79:aa:a5:a1: 1b:ec:e6:ce:99:0d:5b:a4:30:87:2e:0c:5e:9a:50:20:12:15: 10:4d:bd:f7:cf:7a:4e:fa:f7:28:c4:14:5e:46:a1:ae:0e:ac: 4f:26:70:14:21:72:f4:41:69:88:35:5d:99:d3:14:ea:f5:29: e9:a9:8c:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf/ltwzQzdb6PS6Ugm4WIeKqPS/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMDEzWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGE4NTFlMTNiMTdlMTNkYTcxZTIyMmQwNTU5ZDdjMjI0 MmM2ZjYzYzJkZmE0NzMyNWJjM2Y4NGQyMjY3MDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlne9OBwltb3ivc3nO6OxlYkiAuWOcwM7aRe2jv5FhRSKk 6EK6GFusDSlS1ai1KtgG7jATS8B2bTbP9cCNvXCptqdSKNDBRPbY2DiniI7oSOIJ JsMrcreTyGhE5qgT4lzjrQF3zL3nTTL4e7yI0ZR9FzL7mii4XVIBaFCZq0tJpJMK aD8jWcy5dXRj4SH9vVqKsQ0DgB2yjd8Xzd4X6Ny+sRxg5qMmzkqi9HX+d/CZSxW1 yBIT2JJzOtsjIIzsGAaterSeu1C4LV6h0nNkBeVsL6seiFjuGZ/gkrNsvCNZhJ6C z7+tQaHZRi68E6P4DYcUI96//vmT7mh4tUsKfQVvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYj2S+AbkzCAd00FFBEOBKoEWqdowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5YzY1YWQ2LTcyYTItNDQ2NC04YzVmLTUwYTNlMTRmMWMzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQlDANBgkqhkiG9w0BAQsFAAOCAQEAiDHEsEtvzXnbcCfZboUAwEO4w9Z+ vQ+quc3jihJIlbDRfPUS8vd/DU9zs/xGvWIRETUbSJkYyCdTn6ve6I5HzPDQn6da /Dlwtv17srSQYAdgtiBtiiKD5hIIr5rf31bQFYoNKdriI4BzQ3Crkz3HOdt3TAUr fE5o8ZcpSdc1T/1Qo3PgbTHtMqJNWplL6lFzj4M+zjOSpZp6Ca5uoBKsacZ3sBHO mFDpFt+CaozjuVGfOBZ8x4hemhyFe1jGPaDPsml5qqWhG+zmzpkNW6Qwhy4MXppQ IBIVEE299896Tvr3KMQUXkahrg6sTyZwFCFy9EFpiDVdmdMU6vUp6amMNQ== -----END CERTIFICATE-----Generated at Wed Aug 6 04:15:38 2025 by rpki-client