$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6ee53c7-e7a3-426d-8035-0c0d6b7ea0eb.roa File: e6ee53c7-e7a3-426d-8035-0c0d6b7ea0eb.roa (raw, json) Hash identifier: bGGBbUTN0n8PDCuyBB5JxpzxR9v4reCDLH4x6jeN6fM= Subject key identifier: 8E:9B:69:E0:0C:92:84:2F:A2:98:BF:E1:62:E4:6D:BA:2A:83:A8:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A4A262909E92B34884E2065D627E9DC380A4DF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6ee53c7-e7a3-426d-8035-0c0d6b7ea0eb.roa Signing time: Tue 22 Jul 2025 00:31:52 +0000 ROA not before: Tue 22 Jul 2025 00:31:52 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.220.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4a:26:29:09:e9:2b:34:88:4e:20:65:d6:27:e9:dc:38:0a:4d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:31:52 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=b697f256288c374b215369539996eb343f19b3b71a7cda96b630624758d17bb6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:91:50:71:a4:5b:4a:09:58:86:1d:dd:26:93: 6e:a9:8a:2b:2a:a7:46:d4:37:d3:74:78:69:b0:1e: 16:9a:ff:7a:f4:9c:d8:19:b6:2f:bc:58:5f:bf:a1: e6:b9:77:bb:00:54:21:46:5c:9d:4f:70:82:7b:79: 84:cf:05:17:9b:58:04:1a:56:bc:db:a2:3a:06:0e: 79:68:a0:44:17:50:ef:05:11:3d:d4:c9:60:99:af: ba:55:65:42:60:10:24:44:7b:de:c2:a6:28:f4:c7: 03:e8:c0:25:cc:46:12:97:34:53:41:3f:95:86:29: a7:bb:d3:45:1f:88:e1:8e:76:48:e6:9e:99:96:2f: 3d:1e:52:2e:93:73:47:7f:05:d8:d6:d4:3e:f0:4a: e8:f9:a7:71:cd:e0:c5:37:72:99:5c:d8:0a:c9:41: 72:2c:2e:9e:3c:c7:93:49:72:9c:26:4b:c4:d7:8a: b5:de:ec:03:fe:d2:1b:01:dc:45:30:85:6a:e3:b3: dc:df:cf:96:a7:3d:21:38:f4:0f:9d:30:7f:26:0a: 41:34:69:d8:98:94:32:dc:c6:57:58:f8:1c:9b:b3: b0:16:81:61:e3:d6:4e:fd:43:e9:77:0c:8b:6f:01: f5:76:c1:d9:ac:3d:6a:bd:b7:60:d8:47:39:4e:f4: 11:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9B:69:E0:0C:92:84:2F:A2:98:BF:E1:62:E4:6D:BA:2A:83:A8:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6ee53c7-e7a3-426d-8035-0c0d6b7ea0eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.220.72.0/22 Signature Algorithm: sha256WithRSAEncryption d2:f9:4a:0d:bc:96:1d:84:6c:14:f2:72:91:e6:ba:7c:00:c3: ac:87:98:5f:4b:c7:25:9e:ad:3c:d6:88:2d:18:5d:04:4f:a6: 3b:96:5e:bc:ff:d8:5d:f3:38:a6:b2:f9:73:77:36:8c:19:95: 5a:13:34:2b:de:fe:4b:85:41:d0:3b:8b:7c:30:fd:d0:3b:2b: ab:2c:e5:21:82:81:ae:05:a0:12:33:b9:0f:ba:bb:4e:16:bc: d3:c4:75:cc:c8:de:54:ec:56:fe:8e:fb:89:ce:47:d1:fe:07: 57:c4:f2:c2:fa:22:51:00:0a:ff:40:6e:46:9d:89:a1:17:f5: c2:55:5e:0d:e9:ea:0b:02:8e:33:22:2d:c2:d9:69:f7:cf:72: 82:97:0a:d9:35:f2:d7:64:bc:27:b9:29:4e:fc:12:0d:14:72: 3a:d1:74:ef:5e:ad:18:12:a4:1b:ab:f3:8a:42:55:82:c0:c5: 30:9b:c9:d1:a7:5e:66:51:b1:59:89:32:f1:77:51:1e:2c:90: 19:3c:ba:ce:33:86:8f:ea:b0:77:5b:f0:86:ad:8a:2b:c5:2c: ae:2a:b0:d6:aa:02:a5:80:0c:93:a4:e2:f0:0d:71:0f:b6:2c: 9c:90:6a:77:6d:bb:c2:14:2c:51:35:2c:0f:2e:87:bd:05:49: e4:ed:1b:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUekomKQnpKzSITiBl1ifp3DgKTfAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAzMTUyWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjk3ZjI1NjI4OGMzNzRiMjE1MzY5NTM5OTk2ZWIzNDNm MTliM2I3MWE3Y2RhOTZiNjMwNjI0NzU4ZDE3YmI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3kVBxpFtKCViGHd0mk26piisqp0bUN9N0eGmwHhaa/3r0 nNgZti+8WF+/oea5d7sAVCFGXJ1PcIJ7eYTPBRebWAQaVrzbojoGDnlooEQXUO8F ET3UyWCZr7pVZUJgECREe97Cpij0xwPowCXMRhKXNFNBP5WGKae700UfiOGOdkjm npmWLz0eUi6Tc0d/BdjW1D7wSuj5p3HN4MU3cplc2ArJQXIsLp48x5NJcpwmS8TX irXe7AP+0hsB3EUwhWrjs9zfz5anPSE49A+dMH8mCkE0adiYlDLcxldY+Bybs7AW gWHj1k79Q+l3DItvAfV2wdmsPWq9t2DYRzlO9BELAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjptp4AyShC+imL/hYuRtuiqDqKAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U2ZWU1M2M3LWU3YTMtNDI2ZC04MDM1LTBjMGQ2YjdlYTBlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs3EgwDQYJKoZIhvcNAQELBQADggEBANL5Sg28lh2EbBTycpHmunwAw6yH mF9LxyWerTzWiC0YXQRPpjuWXrz/2F3zOKay+XN3NowZlVoTNCve/kuFQdA7i3ww /dA7K6ss5SGCga4FoBIzuQ+6u04WvNPEdczI3lTsVv6O+4nOR9H+B1fE8sL6IlEA Cv9AbkadiaEX9cJVXg3p6gsCjjMiLcLZaffPcoKXCtk18tdkvCe5KU78Eg0UcjrR dO9erRgSpBur84pCVYLAxTCbydGnXmZRsVmJMvF3UR4skBk8us4zho/qsHdb8Iat iivFLK4qsNaqAqWADJOk4vANcQ+2LJyQandtu8IULFE1LA8uh70FSeTtG/U= -----END CERTIFICATE-----Generated at Mon Aug 4 16:05:17 2025 by rpki-client