$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa File: ef251cf4-ade4-418e-b4fb-7951801e00bc.roa (raw, json) Hash identifier: 7iPpNgzeByX7ClFF4Xlpa9mYIa9JUaoqCFyJ+EIq5PY= Subject key identifier: 45:17:76:B5:61:C5:76:B1:08:80:54:4E:8E:91:75:06:1B:A1:8F:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CF05C3262D40101F553A2A3E51BBF0633FB3114 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa Signing time: Sat 02 Aug 2025 00:51:43 +0000 ROA not before: Sat 02 Aug 2025 00:51:43 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f0:5c:32:62:d4:01:01:f5:53:a2:a3:e5:1b:bf:06:33:fb:31:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:51:43 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=c193e7bab47a8e98b95a3611481d58a192b977865025eff58453b9c71b8f6023, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:a7:fa:3a:41:0d:3b:e5:64:71:db:b4:de: 5f:1c:f4:c3:46:e2:99:33:eb:a9:1e:ef:5e:98:8b: 0b:50:8e:b5:73:10:3a:42:87:50:9d:25:e3:f7:5d: c4:42:1b:5b:25:3c:c0:02:1f:56:88:47:c9:5b:b3: b5:98:ec:3c:1e:1a:70:64:ac:79:a4:1d:98:d3:ef: fc:cf:02:08:dc:a0:6e:6b:9a:64:58:b7:32:4e:64: 35:4d:6f:e6:67:10:b6:7b:da:27:f9:e9:2d:69:3d: 40:64:5e:5b:49:8d:c6:26:81:0c:1f:9f:0e:a0:69: 3d:ef:e9:32:9f:24:de:ee:01:29:7d:10:de:c8:42: f1:fc:8f:ee:87:19:76:c7:d2:6c:33:1b:5f:5a:16: 89:d4:35:cc:3c:a4:e8:3a:cf:d4:31:4c:8a:ad:c2: 77:80:81:45:13:95:ed:ed:b5:2f:9e:34:42:5a:41: f2:84:eb:3b:62:e5:fd:42:ca:e5:2c:cc:89:b6:5a: 87:f4:85:26:d8:00:17:55:a8:a9:16:df:1c:c4:00: ec:6b:ff:98:25:c4:15:73:b7:02:21:b1:72:fe:9c: 17:48:61:c2:54:48:63:56:73:78:8d:77:cf:93:20: 8b:bd:cf:cc:2f:96:45:68:68:f2:29:e9:cc:88:eb: 1c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:17:76:B5:61:C5:76:B1:08:80:54:4E:8E:91:75:06:1B:A1:8F:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.218.0/23 Signature Algorithm: sha256WithRSAEncryption c5:99:30:5a:36:72:55:25:89:e6:92:26:18:1a:2e:4b:61:64: b2:22:3b:35:d0:b2:f8:33:78:5c:eb:0c:aa:60:60:73:85:c2: 8d:26:e9:8d:c0:e9:47:4b:e3:9d:a9:ab:ab:7b:32:9e:cb:be: 7a:5e:aa:7e:ef:c5:a8:48:5b:3f:ca:e3:65:1f:15:80:dd:f5: 43:09:7a:50:49:ff:b8:9e:86:ed:19:e6:46:1b:a7:9b:88:e6: 57:28:3a:60:58:01:9d:cb:11:7d:7d:73:86:9f:bf:9c:c6:c2: 27:00:f6:94:71:cd:c2:cf:0e:a9:a3:fd:5a:67:b9:8b:99:09: e7:a3:68:42:92:89:92:b9:07:ad:3a:f3:1d:73:2f:a5:3d:4e: d5:c3:ef:69:91:37:dc:36:1e:cf:b7:32:f5:f3:0d:37:f7:a3: 0b:a8:f1:6a:da:3f:d1:56:a8:aa:82:62:2f:fd:77:c9:26:96: 3a:c0:07:e7:32:00:29:c7:b0:a4:58:04:29:52:d4:ee:f9:17: 1a:a2:b1:11:da:ac:c1:b0:08:0c:62:a5:46:cd:d9:69:e8:1b: 07:13:89:8f:40:3c:db:4c:a7:bc:3f:f6:f9:23:c1:22:da:a6: 43:29:2c:ec:d8:83:76:ea:cf:c4:c4:80:cc:5e:4d:a0:10:c6: 10:90:57:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULPBcMmLUAQH1U6Kj5Ru/BjP7MRQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MTQzWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTkzZTdiYWI0N2E4ZTk4Yjk1YTM2MTE0ODFkNThhMTky Yjk3Nzg2NTAyNWVmZjU4NDUzYjljNzFiOGY2MDIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8tqf6OkENO+Vkcdu03l8c9MNG4pkz66ke716YiwtQjrVz EDpCh1CdJeP3XcRCG1slPMACH1aIR8lbs7WY7DweGnBkrHmkHZjT7/zPAgjcoG5r mmRYtzJOZDVNb+ZnELZ72if56S1pPUBkXltJjcYmgQwfnw6gaT3v6TKfJN7uASl9 EN7IQvH8j+6HGXbH0mwzG19aFonUNcw8pOg6z9QxTIqtwneAgUUTle3ttS+eNEJa QfKE6zti5f1CyuUszIm2Wof0hSbYABdVqKkW3xzEAOxr/5glxBVztwIhsXL+nBdI YcJUSGNWc3iNd8+TIIu9z8wvlkVoaPIp6cyI6xx3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURRd2tWHFdrEIgFROjpF1BhuhjwEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmMjUxY2Y0LWFkZTQtNDE4ZS1iNGZiLTc5NTE4MDFlMDBiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM7NowDQYJKoZIhvcNAQELBQADggEBAMWZMFo2clUlieaSJhgaLkthZLIi OzXQsvgzeFzrDKpgYHOFwo0m6Y3A6UdL452pq6t7Mp7Lvnpeqn7vxahIWz/K42Uf FYDd9UMJelBJ/7iehu0Z5kYbp5uI5lcoOmBYAZ3LEX19c4afv5zGwicA9pRxzcLP Dqmj/VpnuYuZCeejaEKSiZK5B6068x1zL6U9TtXD72mRN9w2Hs+3MvXzDTf3owuo 8WraP9FWqKqCYi/9d8kmljrAB+cyACnHsKRYBClS1O75FxqisRHarMGwCAxipUbN 2WnoGwcTiY9APNtMp7w/9vkjwSLapkMpLOzYg3bqz8TEgMxeTaAQxhCQV74= -----END CERTIFICATE-----Generated at Mon Aug 4 22:23:04 2025 by rpki-client