$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa File: f962418c-9cd6-4d29-bc13-088cd1d70e66.roa (raw, json) Hash identifier: B66hcw5adrZQhiXcMzwzPaean1/HGNyvdPA/PL1cD78= Subject key identifier: CF:11:C8:9B:31:62:A9:E6:58:10:4E:D5:75:3C:99:04:AF:2F:AE:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1817D6760BFF7C6A338A464A18F5699E1FFB5150 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa Signing time: Fri 18 Jul 2025 00:01:01 +0000 ROA not before: Fri 18 Jul 2025 00:01:01 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.93.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:17:d6:76:0b:ff:7c:6a:33:8a:46:4a:18:f5:69:9e:1f:fb:51:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:01:01 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=757b3600a91602137fa3b2b99836f9d53bf7a6e48ab253b1159efe29768a922b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6d:98:89:ec:70:18:99:65:2a:ff:76:e9:83: 2f:3e:e0:e5:08:aa:82:dc:1c:8a:2c:73:16:e4:2d: 53:bc:32:94:d0:b1:6e:90:a1:a1:ff:66:10:d3:99: c2:60:ba:6d:dd:f1:44:c2:b5:26:71:f2:5d:4f:5b: 2c:16:9a:dc:0d:d6:6e:d1:3c:27:ff:ea:97:62:41: a3:93:48:66:a6:fd:ef:05:98:e9:0f:ca:df:4d:a4: ea:62:88:4a:39:3c:bd:0a:38:1e:bd:d3:b4:75:2e: 54:12:a2:78:72:5e:f3:dd:b9:7d:cb:b2:46:99:23: 03:f9:94:d1:04:52:64:92:b7:4a:35:38:71:e7:86: 21:09:a7:02:65:de:b5:dc:ce:ae:42:b1:ab:cc:a4: 91:fd:af:9b:2a:7a:25:c8:25:1d:19:58:41:66:46: 9c:c4:5f:fa:ef:9d:b5:71:bf:e7:e4:2f:48:d1:f6: 3b:ba:1d:41:cc:b6:36:e8:bd:b2:c1:76:14:49:f8: a4:53:09:bb:95:aa:d2:62:7b:8d:8d:75:7b:54:b5: c3:18:98:91:0b:f5:8a:f6:51:76:80:d8:c2:c5:ea: f1:b7:fc:67:37:95:f7:33:ec:eb:61:90:73:e7:89: f7:f8:be:fc:0c:52:65:aa:66:3a:6e:6f:05:61:ab: 51:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:11:C8:9B:31:62:A9:E6:58:10:4E:D5:75:3C:99:04:AF:2F:AE:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:aa:05:dc:26:f8:eb:56:01:66:4f:58:03:38:49:ec:a9:4d: db:a4:28:a1:b0:b3:44:3d:81:ee:e1:72:27:ed:d0:65:45:73: 81:a0:75:52:a3:6a:d0:92:cb:3a:e0:36:69:80:72:be:2a:0f: a9:56:9b:c2:eb:b9:3f:ff:f3:cf:d3:49:b7:1f:35:9a:eb:71: 59:0b:07:65:4b:dd:52:3a:91:ac:40:a6:ea:ca:81:70:7c:9f: a0:6c:14:01:75:f9:a7:27:c5:9e:99:ec:11:9d:03:53:ce:41: 49:d9:fb:8a:70:35:54:87:9a:c4:96:3d:92:b1:6b:24:6c:07: 41:5a:33:3c:ec:8e:c9:31:5d:20:da:66:7e:30:f7:a0:ab:23: f0:82:4b:97:b7:58:6e:a8:d5:56:0f:e7:1c:14:72:17:48:31: 07:76:29:42:ca:eb:8b:53:65:7d:70:24:55:54:1c:33:f6:e1: 2f:19:b4:bf:11:a8:24:30:b2:b4:09:c6:5b:73:ae:e8:6e:8e: d3:b2:ba:b7:a0:a5:c6:63:93:e3:6f:b5:86:dc:b6:cd:2a:7c: 2a:20:14:f1:fe:e2:2c:8f:ea:f6:ae:81:5a:76:0f:0c:05:ff: 21:54:f7:c4:72:43:cb:06:e1:dc:db:ec:83:cb:ec:b2:43:f7: f5:66:1c:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGBfWdgv/fGozikZKGPVpnh/7UVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAwMTAxWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTdiMzYwMGE5MTYwMjEzN2ZhM2IyYjk5ODM2ZjlkNTNi ZjdhNmU0OGFiMjUzYjExNTllZmUyOTc2OGE5MjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjbZiJ7HAYmWUq/3bpgy8+4OUIqoLcHIoscxbkLVO8MpTQ sW6QoaH/ZhDTmcJgum3d8UTCtSZx8l1PWywWmtwN1m7RPCf/6pdiQaOTSGam/e8F mOkPyt9NpOpiiEo5PL0KOB6907R1LlQSonhyXvPduX3LskaZIwP5lNEEUmSSt0o1 OHHnhiEJpwJl3rXczq5CsavMpJH9r5sqeiXIJR0ZWEFmRpzEX/rvnbVxv+fkL0jR 9ju6HUHMtjbovbLBdhRJ+KRTCbuVqtJie42NdXtUtcMYmJEL9Yr2UXaA2MLF6vG3 /Gc3lfcz7OthkHPniff4vvwMUmWqZjpubwVhq1FFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzxHImzFiqeZYEE7VdTyZBK8vrkYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5NjI0MThjLTljZDYtNGQyOS1iYzEzLTA4OGNkMWQ3MGU2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXTANBgkqhkiG9w0BAQsFAAOCAQEAMqoF3Cb461YBZk9YAzhJ7KlN26Qo obCzRD2B7uFyJ+3QZUVzgaB1UqNq0JLLOuA2aYByvioPqVabwuu5P//zz9NJtx81 mutxWQsHZUvdUjqRrECm6sqBcHyfoGwUAXX5pyfFnpnsEZ0DU85BSdn7inA1VIea xJY9krFrJGwHQVozPOyOyTFdINpmfjD3oKsj8IJLl7dYbqjVVg/nHBRyF0gxB3Yp Qsrri1NlfXAkVVQcM/bhLxm0vxGoJDCytAnGW3Ou6G6O07K6t6ClxmOT42+1hty2 zSp8KiAU8f7iLI/q9q6BWnYPDAX/IVT3xHJDywbh3Nvsg8vsskP39WYcSA== -----END CERTIFICATE-----Generated at Mon Aug 4 22:18:48 2025 by rpki-client