$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa File: dc633947-b61c-41cb-9d60-602b871ef0ec.roa (raw, json) Hash identifier: dd91k2/C9eOBscBWCJx6gs4jW0ya/UVbfT+KpzZ4qss= Subject key identifier: C9:4D:58:0A:48:8D:5B:84:3D:4B:AE:9D:BF:C7:35:0D:7A:D4:71:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46ED064FD21F7583F7AC994F10E7ACAB4B3BE62A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa Signing time: Tue 05 Aug 2025 00:41:17 +0000 ROA not before: Tue 05 Aug 2025 00:41:17 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.2.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ed:06:4f:d2:1f:75:83:f7:ac:99:4f:10:e7:ac:ab:4b:3b:e6:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:41:17 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d8f3b61404b15543db6f68ec72b83fe4e1ce5c72590756589ca9c33d71f90dcd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:24:fd:3e:b3:2d:d5:25:ec:4e:17:56:02: 8d:0b:f6:e5:d2:ed:ed:29:b0:4e:1f:ac:30:f1:57: 1c:0a:20:68:df:89:4a:85:34:ef:c2:f6:70:c3:cc: e3:02:4b:62:8b:9d:fc:1b:f7:2e:76:0d:72:18:78: 6a:59:5e:46:67:3d:dc:2b:b4:5a:ca:80:79:0c:f8: b9:21:25:9f:48:d5:cd:43:48:a1:8a:47:a4:14:9f: 63:0e:fd:a2:13:85:ba:c6:19:5a:76:99:a4:be:a4: 2d:73:fa:9e:2b:5e:3a:4b:c2:da:59:4e:26:9e:e7: bf:df:23:18:c9:ec:a6:7e:78:93:ec:17:4e:f8:17: 30:eb:b3:f4:32:57:40:47:47:2c:9a:2f:17:d1:c0: ff:84:23:56:28:49:9f:5c:ce:87:19:9f:3e:9c:5c: 99:40:50:58:ec:d1:26:a6:7c:89:1d:16:29:dc:a3: 24:8b:ae:8f:cf:d5:44:df:f3:e3:ff:07:30:eb:f1: 12:81:3f:6b:f9:f1:93:95:43:5b:42:2a:84:fe:3c: c6:5d:26:ec:b3:37:d0:f3:c1:1a:4b:9c:c6:8f:90: 9c:62:e5:22:80:e4:3f:e7:18:81:a8:11:99:de:ed: b5:6d:c6:93:5b:c4:38:dc:e7:c4:70:33:b3:1f:f6: 95:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4D:58:0A:48:8D:5B:84:3D:4B:AE:9D:BF:C7:35:0D:7A:D4:71:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.2.16.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d2:50:16:c5:12:08:96:62:18:1c:21:ba:8f:07:77:ae:1f: 65:48:a3:05:80:87:43:5c:fe:39:db:af:75:ee:c6:ad:2c:6e: bf:fa:ce:0b:4f:18:9e:b2:c7:49:e6:e2:59:f1:c7:86:0c:5a: f2:50:df:95:bf:a5:d2:33:d3:e7:3c:07:c0:75:58:41:6b:92: 9b:1d:7c:a1:ec:c9:98:81:6e:c8:b7:d7:9b:79:ea:a1:db:b1: 54:fa:71:49:35:a7:38:37:c3:e4:12:87:69:8e:ec:50:8f:45: b8:6f:49:c5:a3:38:78:6b:4e:ca:80:b4:a7:33:90:07:37:cf: e0:f7:85:e5:99:a8:d7:69:a6:18:dd:d2:d1:39:3a:b7:e6:68: 78:9c:8c:88:9c:0d:55:b7:06:03:70:7f:a4:da:37:ef:93:3c: b8:ae:69:11:22:c3:a7:60:b4:50:82:b5:b3:ff:42:39:88:02: 3f:98:e3:a6:ec:e1:ff:bc:20:be:e2:d5:65:81:46:f1:4d:d6: 05:bd:46:f9:8f:8c:eb:98:98:f5:3d:0d:8a:ee:69:33:ea:23: 1d:c3:b9:ae:f8:b5:51:3c:02:20:28:23:bc:dd:5a:cb:f2:63: 41:06:d9:95:9d:c4:b3:e8:7b:4d:b4:87:a5:a0:e4:84:b0:00: 5c:83:8e:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURu0GT9IfdYP3rJlPEOesq0s75iowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MTE3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGYzYjYxNDA0YjE1NTQzZGI2ZjY4ZWM3MmI4M2ZlNGUx Y2U1YzcyNTkwNzU2NTg5Y2E5YzMzZDcxZjkwZGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFjST9PrMt1SXsThdWAo0L9uXS7e0psE4frDDxVxwKIGjf iUqFNO/C9nDDzOMCS2KLnfwb9y52DXIYeGpZXkZnPdwrtFrKgHkM+LkhJZ9I1c1D SKGKR6QUn2MO/aIThbrGGVp2maS+pC1z+p4rXjpLwtpZTiae57/fIxjJ7KZ+eJPs F074FzDrs/QyV0BHRyyaLxfRwP+EI1YoSZ9czocZnz6cXJlAUFjs0SamfIkdFinc oySLro/P1UTf8+P/BzDr8RKBP2v58ZOVQ1tCKoT+PMZdJuyzN9DzwRpLnMaPkJxi 5SKA5D/nGIGoEZne7bVtxpNbxDjc58RwM7Mf9pXFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyU1YCkiNW4Q9S66dv8c1DXrUcTEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjNjMzOTQ3LWI2MWMtNDFjYi05ZDYwLTYwMmI4NzFlZjBlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFBAhAwDQYJKoZIhvcNAQELBQADggEBAG3SUBbFEgiWYhgcIbqPB3euH2VI owWAh0Nc/jnbr3Xuxq0sbr/6zgtPGJ6yx0nm4lnxx4YMWvJQ35W/pdIz0+c8B8B1 WEFrkpsdfKHsyZiBbsi315t56qHbsVT6cUk1pzg3w+QSh2mO7FCPRbhvScWjOHhr TsqAtKczkAc3z+D3heWZqNdpphjd0tE5OrfmaHicjIicDVW3BgNwf6TaN++TPLiu aREiw6dgtFCCtbP/QjmIAj+Y46bs4f+8IL7i1WWBRvFN1gW9RvmPjOuYmPU9DYru aTPqIx3Dua74tVE8AiAoI7zdWsvyY0EG2ZWdxLPoe020h6Wg5ISwAFyDjrM= -----END CERTIFICATE-----Generated at Wed Aug 6 13:10:31 2025 by rpki-client