$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa File: f6194b27-8378-4959-8e87-076083a0e654.roa (raw, json) Hash identifier: /Osva3jbETNTiKr1wmR/a8MrAny5zsGjW+fWg8G1IqA= Subject key identifier: 1C:87:C7:96:7F:BD:79:41:30:5D:54:4F:E0:89:20:69:5B:E1:C8:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CE67BB6587A430808C81748FE9A4B8203C63060 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa Signing time: Fri 25 Jul 2025 00:00:17 +0000 ROA not before: Fri 25 Jul 2025 00:00:17 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.179.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e6:7b:b6:58:7a:43:08:08:c8:17:48:fe:9a:4b:82:03:c6:30:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:00:17 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=fc7476aebc967d6dd2ec96339959a0dd49f657e6573edf30e13470a187f10057, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3a:50:fa:e7:1c:2e:e0:41:9d:0d:9b:ab:0e: 38:88:08:96:48:97:48:33:03:ff:01:13:23:ba:94: 7d:3d:1a:47:32:b9:68:48:45:d3:4a:5e:82:f8:e6: 68:2e:ce:3b:fa:01:8f:83:a5:c9:51:75:ce:28:6c: 63:82:5c:6a:fe:4d:f5:11:cc:f9:8d:cc:5c:3e:67: 29:06:d2:b4:c1:44:ae:ec:60:01:51:37:9a:14:e7: 26:0d:a0:7e:fe:a8:70:db:b6:f6:20:ea:73:f7:8a: a5:97:20:6f:e4:05:10:d9:70:b1:28:ad:09:7e:04: b5:ea:45:30:74:ab:8f:7c:e0:52:8e:c4:2e:ac:d6: 2b:2f:04:f5:df:e1:38:01:d9:1e:79:b4:92:88:aa: d4:f4:fc:56:84:da:b8:60:e1:93:37:0b:22:85:c2: d3:47:49:d9:51:bb:ec:d8:92:1f:00:23:57:a7:c2: 3b:aa:5f:9d:b0:12:c6:ba:e9:0f:e2:5b:7c:42:c0: e2:76:8a:c1:14:70:3a:c4:83:bd:f5:08:37:64:9b: 17:e5:6a:ad:44:0c:31:5a:51:bd:6b:d0:50:38:fd: cf:74:94:87:76:b3:24:61:b2:b5:e0:06:dc:2a:3c: 44:21:57:7a:73:56:91:a6:09:b8:6c:93:e4:c5:be: a3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:87:C7:96:7F:BD:79:41:30:5D:54:4F:E0:89:20:69:5B:E1:C8:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6194b27-8378-4959-8e87-076083a0e654.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.179.0.0/17 Signature Algorithm: sha256WithRSAEncryption c4:d9:3e:b1:e5:b5:fd:dd:fc:b8:6c:a7:58:81:5b:13:d3:88: 6d:77:ff:33:79:e6:59:31:cf:38:2d:cf:7e:e3:ed:72:cd:78: 41:a2:87:e4:3e:ab:5c:5e:b7:e9:c2:43:2a:db:b2:28:81:fb: fd:27:bc:7a:4d:b9:3c:8d:a1:af:4d:ed:fc:ab:fe:cc:59:01: ce:fe:89:dc:13:8f:63:40:c5:27:b7:d3:14:ba:95:d9:3f:84: 82:90:f2:1f:4e:a0:a7:60:3f:35:e9:01:a1:7d:4c:8e:09:a3: 29:4e:83:b5:a9:1f:43:53:c6:66:cd:69:34:80:05:57:eb:85: ea:80:33:31:21:47:c7:ac:5a:59:eb:86:8a:0b:e2:ca:56:93: 9e:93:41:28:80:d2:3f:02:71:64:77:d6:c0:e8:40:65:4d:72: de:03:43:23:42:e1:29:16:66:f5:c5:5f:59:d1:f4:ed:71:96: 80:8e:3d:8c:18:a3:03:69:81:92:fd:b7:f8:4c:83:d8:c7:06: 21:c2:78:97:07:11:3d:14:13:ab:94:f1:fd:2e:e6:95:f7:eb: e7:02:d2:4e:fd:14:9e:f5:67:81:cb:54:9d:cd:78:0f:60:b9: 73:75:57:08:cf:76:d7:e4:ca:59:6d:dd:30:08:6e:cc:20:9f: 9c:1d:f3:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULOZ7tlh6QwgIyBdI/ppLggPGMGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAwMDE3WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzc0NzZhZWJjOTY3ZDZkZDJlYzk2MzM5OTU5YTBkZDQ5 ZjY1N2U2NTczZWRmMzBlMTM0NzBhMTg3ZjEwMDU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVOlD65xwu4EGdDZurDjiICJZIl0gzA/8BEyO6lH09Gkcy uWhIRdNKXoL45mguzjv6AY+DpclRdc4obGOCXGr+TfURzPmNzFw+ZykG0rTBRK7s YAFRN5oU5yYNoH7+qHDbtvYg6nP3iqWXIG/kBRDZcLEorQl+BLXqRTB0q4984FKO xC6s1isvBPXf4TgB2R55tJKIqtT0/FaE2rhg4ZM3CyKFwtNHSdlRu+zYkh8AI1en wjuqX52wEsa66Q/iW3xCwOJ2isEUcDrEg731CDdkmxflaq1EDDFaUb1r0FA4/c90 lId2syRhsrXgBtwqPEQhV3pzVpGmCbhsk+TFvqNNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHIfHln+9eUEwXVRP4IkgaVvhyEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2MTk0YjI3LTgzNzgtNDk1OS04ZTg3LTA3NjA4M2EwZTY1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdrswAwDQYJKoZIhvcNAQELBQADggEBAMTZPrHltf3d/Lhsp1iBWxPTiG13 /zN55lkxzzgtz37j7XLNeEGih+Q+q1xet+nCQyrbsiiB+/0nvHpNuTyNoa9N7fyr /sxZAc7+idwTj2NAxSe30xS6ldk/hIKQ8h9OoKdgPzXpAaF9TI4JoylOg7WpH0NT xmbNaTSABVfrheqAMzEhR8esWlnrhooL4spWk56TQSiA0j8CcWR31sDoQGVNct4D QyNC4SkWZvXFX1nR9O1xloCOPYwYowNpgZL9t/hMg9jHBiHCeJcHET0UE6uU8f0u 5pX36+cC0k79FJ71Z4HLVJ3NeA9guXN1VwjPdtfkyllt3TAIbswgn5wd8wU= -----END CERTIFICATE-----Generated at Sun Aug 10 10:38:55 2025 by rpki-client