$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa File: 1fc5eba9-ba1e-4271-a295-a0083fa60075.roa (raw, json) Hash identifier: 7WW5Kt6KYIgRH5M2zVhHHI22Mem2HWHOowhakgFwAFo= Subject key identifier: 18:6B:37:93:23:C3:EF:D5:FE:FA:25:FC:B9:54:07:57:24:79:60:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3367F9461216F0ED5A5BD4D95815C19C26138A86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa Signing time: Tue 12 Aug 2025 00:00:23 +0000 ROA not before: Tue 12 Aug 2025 00:00:23 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.131.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:67:f9:46:12:16:f0:ed:5a:5b:d4:d9:58:15:c1:9c:26:13:8a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:00:23 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=fa92e28da67941d6e5b03802ce0497247938ba226ab8d9026f3fca9763b8ed6f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fb:ea:a3:a2:c8:62:9a:26:10:c7:e5:84:3a: 11:49:13:f2:2f:76:fe:15:c6:8a:e8:9c:7e:17:2b: 49:f0:b9:63:b7:e2:c2:8d:99:3d:4e:35:49:95:92: 5e:37:aa:fb:7c:48:77:ac:93:81:64:b5:81:e5:a7: 0b:75:b8:eb:8d:da:16:8b:18:8e:c6:23:4d:1a:7c: 3d:25:f4:b8:bc:98:88:26:f7:91:58:81:c2:1d:27: fe:84:cc:3d:a3:c6:52:54:dc:68:3e:0d:73:4c:cb: f5:1a:e0:3a:4a:71:7f:95:ea:45:90:b8:29:c9:ee: 73:40:3e:6f:47:2e:43:e4:01:68:d6:18:e8:6f:63: fc:cf:87:57:4b:b7:f3:9d:22:c8:0a:fb:7c:e8:1d: 32:47:e5:99:dd:78:91:d0:08:b4:0c:70:57:c7:07: 60:42:2c:cf:04:83:db:43:b2:8a:b1:54:26:a5:fa: 5a:e0:65:23:ab:50:28:b0:cd:65:84:f0:bc:09:31: 4f:d6:d8:47:34:d7:66:28:30:47:c1:b5:cc:04:32: a7:67:94:9d:42:e6:47:6a:eb:94:8b:78:db:9e:40: fe:d4:df:39:7f:f1:d6:00:22:cc:b0:fa:58:e1:97: 18:12:8b:d6:e0:f6:7a:d1:31:4d:a0:76:17:6a:ce: 47:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6B:37:93:23:C3:EF:D5:FE:FA:25:FC:B9:54:07:57:24:79:60:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.131.128.0/19 Signature Algorithm: sha256WithRSAEncryption 02:a6:08:a6:7a:f9:5f:2b:c8:e5:f8:56:e4:17:63:37:97:d1: ef:aa:2f:7c:ab:85:63:fb:06:4b:5e:c7:d6:0b:5f:88:19:3a: 00:b5:3b:30:7a:ac:14:e0:5f:22:06:2b:77:c2:f3:b7:63:57: e8:c3:d0:9c:06:43:2c:85:24:55:ac:53:d9:fd:24:d2:01:0b: f1:b5:85:28:7d:a0:ea:89:bf:49:07:cf:59:c1:89:02:fd:43: 99:90:4f:e5:77:a3:9a:a7:18:72:0b:9d:77:cb:27:05:d4:af: 13:04:25:a8:89:c5:ce:26:8f:8a:eb:ce:49:51:6f:73:b8:7e: 49:42:32:81:e9:59:1a:e7:bd:c0:d0:fa:b9:51:3b:b2:71:fb: c4:93:a6:b4:11:2d:21:06:0f:35:18:6a:20:70:0e:72:72:4c: 7c:a1:14:11:5c:7c:e8:f0:f2:60:c6:95:81:ae:d8:7b:e8:7f: e4:44:cf:34:17:d3:de:90:d0:e4:d1:4f:62:e8:2e:b0:38:4e: 73:be:06:6c:2a:5b:ed:e4:84:53:f7:bb:24:77:f3:de:b0:99: 60:b9:e6:d6:44:d2:81:a8:c4:15:e5:45:bb:d9:43:86:80:36: 99:45:08:29:77:4e:b2:60:25:f0:fb:22:b5:d4:80:f5:ea:5f: 31:4b:0e:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM2f5RhIW8O1aW9TZWBXBnCYTioYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMDIzWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTkyZTI4ZGE2Nzk0MWQ2ZTViMDM4MDJjZTA0OTcyNDc5 MzhiYTIyNmFiOGQ5MDI2ZjNmY2E5NzYzYjhlZDZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6++qjoshimiYQx+WEOhFJE/Ivdv4VxoronH4XK0nwuWO3 4sKNmT1ONUmVkl43qvt8SHesk4FktYHlpwt1uOuN2haLGI7GI00afD0l9Li8mIgm 95FYgcIdJ/6EzD2jxlJU3Gg+DXNMy/Ua4DpKcX+V6kWQuCnJ7nNAPm9HLkPkAWjW GOhvY/zPh1dLt/OdIsgK+3zoHTJH5ZndeJHQCLQMcFfHB2BCLM8Eg9tDsoqxVCal +lrgZSOrUCiwzWWE8LwJMU/W2Ec012YoMEfBtcwEMqdnlJ1C5kdq65SLeNueQP7U 3zl/8dYAIsyw+ljhlxgSi9bg9nrRMU2gdhdqzkdnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGGs3kyPD79X++iX8uVQHVyR5YK0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYzVlYmE5LWJhMWUtNDI3MS1hMjk1LWEwMDgzZmE2MDA3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXOg4AwDQYJKoZIhvcNAQELBQADggEBAAKmCKZ6+V8ryOX4VuQXYzeX0e+q L3yrhWP7Bktex9YLX4gZOgC1OzB6rBTgXyIGK3fC87djV+jD0JwGQyyFJFWsU9n9 JNIBC/G1hSh9oOqJv0kHz1nBiQL9Q5mQT+V3o5qnGHILnXfLJwXUrxMEJaiJxc4m j4rrzklRb3O4fklCMoHpWRrnvcDQ+rlRO7Jx+8STprQRLSEGDzUYaiBwDnJyTHyh FBFcfOjw8mDGlYGu2Hvof+REzzQX096Q0OTRT2LoLrA4TnO+BmwqW+3khFP3uyR3 896wmWC55tZE0oGoxBXlRbvZQ4aANplFCCl3TrJgJfD7IrXUgPXqXzFLDhw= -----END CERTIFICATE-----Generated at Sat Aug 23 06:46:37 2025 by rpki-client