$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa File: ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa (raw, json) Hash identifier: so0bnkuM4wbjE+B3pwd+bVdTDdm0VgIO4U/ZHByrC2M= Subject key identifier: 88:6B:53:A9:DC:CD:A3:E7:24:58:C2:C6:F2:DE:89:2F:1A:1A:6C:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62FAB8DE80A1CEED45BB836D13BCEA5F41A98518 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa Signing time: Tue 05 Aug 2025 00:42:03 +0000 ROA not before: Tue 05 Aug 2025 00:42:03 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fa:b8:de:80:a1:ce:ed:45:bb:83:6d:13:bc:ea:5f:41:a9:85:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:42:03 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=6bde9d6cc7291b481701e5b7ec0eadd5f14f9138a7294be21edb7987a985c906, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fc:8e:89:6d:64:79:3d:20:0d:69:f4:1e:da: 19:1f:af:30:30:cb:eb:2e:03:ca:be:e1:e1:f3:d8: 53:55:b6:d0:e5:88:51:99:16:9e:68:c8:b7:f0:b7: 5f:34:0e:c6:ff:75:03:4a:ce:ce:16:8e:85:0f:a3: 59:37:f4:3d:f0:2b:22:2f:6e:0b:26:4c:0c:2e:0c: 89:a2:e1:48:71:e8:20:71:73:e1:36:f5:67:c6:e8: c2:19:2c:b4:b0:2f:6b:31:c5:ef:3b:4c:66:e3:bb: a7:05:21:d1:67:80:95:9d:b3:49:a4:bf:8b:37:1e: a9:7e:95:d1:32:2d:41:a3:11:b1:b7:36:5b:c7:a3: fe:29:3c:9e:ee:da:ba:fe:9b:eb:6f:1a:68:2d:e1: e8:48:55:d8:61:c9:3c:93:c8:5b:10:17:05:a4:04: be:29:56:16:0e:ae:bb:d7:dd:e8:db:36:3b:c6:48: e6:78:7f:c7:9c:bf:19:6f:21:60:51:94:3e:bb:55: fb:86:55:7f:c1:67:cf:70:d3:3d:e9:06:74:37:e8: 40:bc:0e:50:4c:7f:09:ad:06:6a:ac:9a:48:5a:4f: 3f:07:74:1c:3f:49:ba:80:a6:e1:70:ab:3a:7e:9b: f7:a6:62:90:bf:14:27:11:11:f2:24:03:cc:29:d7: aa:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6B:53:A9:DC:CD:A3:E7:24:58:C2:C6:F2:DE:89:2F:1A:1A:6C:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.196.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:4c:56:01:c4:b0:a3:cb:2d:e5:2f:91:52:c4:73:05:f8:e6: a2:37:93:2c:60:d4:1b:51:c7:a6:41:b8:a0:05:9d:ad:3b:70: 92:17:ab:6f:0c:6b:62:4e:f9:68:23:bc:79:08:4d:0d:ed:7a: c6:2c:46:8c:dd:a3:dc:67:f0:71:19:20:63:4a:80:e2:d0:c0: b8:5f:f1:60:c2:d0:a2:3e:51:cf:f9:1f:4d:2e:df:39:b3:ab: 76:ff:45:45:63:42:cf:7a:53:4f:3f:86:ce:8d:58:6c:2f:e7: b2:15:f4:92:16:c6:f6:fb:62:72:50:bb:73:ac:2e:81:a9:20: 05:ed:2f:3b:8c:51:c8:12:b4:37:67:3c:82:72:df:03:8b:f3: da:b4:13:9a:14:c8:4c:87:25:9c:d4:0e:8c:26:4c:75:c9:ef: fe:54:98:21:23:fe:7c:32:82:15:da:bb:7b:e1:94:d8:ac:67: 6f:66:d0:f3:80:fe:6f:96:1f:e3:0e:23:25:dc:6a:ef:cf:1f: d1:68:f2:32:c4:b9:05:f7:62:6a:cd:69:08:e0:1b:0a:28:fd: 43:23:9e:73:b4:db:35:93:c4:ab:d7:ba:af:57:4a:73:52:7a: 06:11:91:ca:8f:90:97:92:ee:e8:c9:22:b2:6e:35:09:1b:0d: ae:1e:68:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYvq43oChzu1Fu4NtE7zqX0GphRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MjAzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmRlOWQ2Y2M3MjkxYjQ4MTcwMWU1YjdlYzBlYWRkNWYx NGY5MTM4YTcyOTRiZTIxZWRiNzk4N2E5ODVjOTA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs/I6JbWR5PSANafQe2hkfrzAwy+suA8q+4eHz2FNVttDl iFGZFp5oyLfwt180Dsb/dQNKzs4WjoUPo1k39D3wKyIvbgsmTAwuDImi4Uhx6CBx c+E29WfG6MIZLLSwL2sxxe87TGbju6cFIdFngJWds0mkv4s3Hql+ldEyLUGjEbG3 NlvHo/4pPJ7u2rr+m+tvGmgt4ehIVdhhyTyTyFsQFwWkBL4pVhYOrrvX3ejbNjvG SOZ4f8ecvxlvIWBRlD67VfuGVX/BZ89w0z3pBnQ36EC8DlBMfwmtBmqsmkhaTz8H dBw/SbqApuFwqzp+m/emYpC/FCcREfIkA8wp16ppAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiGtTqdzNo+ckWMLG8t6JLxoabPUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhOGJkYjIxLTEzZWYtNGZjYi1iZDU0LTZlMzQ1YzhlMzIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG4MQwDQYJKoZIhvcNAQELBQADggEBAJ1MVgHEsKPLLeUvkVLEcwX45qI3 kyxg1BtRx6ZBuKAFna07cJIXq28Ma2JO+WgjvHkITQ3tesYsRozdo9xn8HEZIGNK gOLQwLhf8WDC0KI+Uc/5H00u3zmzq3b/RUVjQs96U08/hs6NWGwv57IV9JIWxvb7 YnJQu3OsLoGpIAXtLzuMUcgStDdnPIJy3wOL89q0E5oUyEyHJZzUDowmTHXJ7/5U mCEj/nwyghXau3vhlNisZ29m0POA/m+WH+MOIyXcau/PH9Fo8jLEuQX3YmrNaQjg Gwoo/UMjnnO02zWTxKvXuq9XSnNSegYRkcqPkJeS7ujJIrJuNQkbDa4eaIE= -----END CERTIFICATE-----Generated at Thu Aug 7 05:13:20 2025 by rpki-client