$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa File: 2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa (raw, json) Hash identifier: BLthdOY+ulDJGtqgFUci2BcXvIN2TEKT1/oN2O5Ft84= Subject key identifier: B9:48:C0:E1:EF:21:B9:E4:7C:FD:36:96:33:FF:86:81:8E:68:9D:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C1A5B31547E0143EA28E5B3237E76CC99542628 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa Signing time: Fri 08 Aug 2025 00:21:17 +0000 ROA not before: Fri 08 Aug 2025 00:21:17 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1a:5b:31:54:7e:01:43:ea:28:e5:b3:23:7e:76:cc:99:54:26:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:21:17 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=5ffd9ea07f4302d87ebb48cbe1d68bc6f623237137a5a51753dcd981c58bcacd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:44:b5:e6:e1:27:18:6e:37:3e:28:a6:34:81: e6:19:2e:cb:45:57:13:5f:2a:d6:c9:94:f1:f4:b9: 97:21:56:ce:bc:4a:29:2c:5a:a8:6d:d3:ee:a4:8e: 5d:27:5f:fd:21:aa:53:9c:c6:ff:41:34:c2:18:16: e7:ec:77:60:c2:07:85:e9:f2:12:07:68:80:e1:1a: 54:29:2f:7b:70:e0:ab:5c:6f:d3:90:62:4d:7c:87: 71:4a:bc:4f:02:a5:d3:43:65:fa:72:7a:0b:19:15: 34:d8:8f:9c:bf:3e:53:05:13:34:25:82:2b:8e:a3: fe:9c:e4:3d:f5:d4:b6:d4:67:16:c3:2a:6a:2d:1b: 95:63:6c:20:16:4a:b3:03:ad:a3:ee:68:bc:65:ef: 20:de:61:6c:b3:3d:f1:54:5d:dc:d3:cf:55:39:d4: a1:be:3d:2e:ee:82:62:e6:b9:d1:ca:e5:e0:03:cb: 2b:b5:ea:bb:f4:c7:7b:25:a2:10:80:4c:ad:e2:47: ce:7f:d9:b1:8f:8a:4a:4b:87:22:6a:f2:3a:77:9c: 0b:79:2e:b5:8b:96:03:16:59:86:22:b1:ef:25:13: ea:eb:12:40:0b:a1:0a:de:b2:8f:16:45:1e:df:11: bf:27:6b:bb:8d:dc:5e:14:19:b3:57:ba:bb:77:ff: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:48:C0:E1:EF:21:B9:E4:7C:FD:36:96:33:FF:86:81:8E:68:9D:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2af70416-397a-4ea4-b7b1-ad7e045c72b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:18:ad:98:13:d4:ec:57:8e:88:34:26:c4:f2:29:6d:39:98: 76:d7:8f:a0:96:5e:67:6a:ee:c1:f7:24:55:5f:93:1f:1a:2c: c3:6c:b6:79:80:ab:db:3b:31:01:d0:de:29:93:a5:83:22:fd: 36:04:73:9f:ea:44:c4:c8:4f:7e:1f:22:49:73:c2:1c:5f:71: 56:03:c1:ce:f4:d9:57:31:f5:77:12:26:79:e8:07:ca:38:28: 1c:fa:1b:97:fd:0b:cb:5c:dc:0f:2e:19:2d:0b:e5:63:53:d4: a1:7d:17:16:2f:cf:45:e2:77:23:bc:46:d3:12:f0:f1:ee:ea: 94:7a:af:4f:8e:da:ab:46:c3:00:ab:e8:53:b7:a4:4b:50:79: 30:9b:3b:6d:d6:58:ca:55:d8:d5:0f:fb:2a:3a:e8:95:21:ad: 1f:5e:f9:9a:1d:8b:aa:7f:bf:eb:56:7e:70:3b:50:2a:26:42: 84:ce:50:22:4e:18:b0:7c:00:a5:ff:4e:18:ef:03:65:df:6c: 66:0d:3a:1f:60:0f:7a:da:0f:69:8f:6f:6b:b6:39:7b:dd:84: 07:8c:01:86:b5:17:ef:29:74:72:23:13:cd:70:b0:7e:3d:43: e1:68:e0:95:21:77:ff:a6:31:4c:6d:46:d6:ff:69:5a:48:7b: 39:b7:9a:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHBpbMVR+AUPqKOWzI352zJlUJigwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMTE3WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmZkOWVhMDdmNDMwMmQ4N2ViYjQ4Y2JlMWQ2OGJjNmY2 MjMyMzcxMzdhNWE1MTc1M2RjZDk4MWM1OGJjYWNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtRLXm4ScYbjc+KKY0geYZLstFVxNfKtbJlPH0uZchVs68 SiksWqht0+6kjl0nX/0hqlOcxv9BNMIYFufsd2DCB4Xp8hIHaIDhGlQpL3tw4Ktc b9OQYk18h3FKvE8CpdNDZfpyegsZFTTYj5y/PlMFEzQlgiuOo/6c5D311LbUZxbD KmotG5VjbCAWSrMDraPuaLxl7yDeYWyzPfFUXdzTz1U51KG+PS7ugmLmudHK5eAD yyu16rv0x3slohCATK3iR85/2bGPikpLhyJq8jp3nAt5LrWLlgMWWYYise8lE+rr EkALoQreso8WRR7fEb8na7uN3F4UGbNXurt3/xY5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuUjA4e8hueR8/TaWM/+GgY5ondQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZjcwNDE2LTM5N2EtNGVhNC1iN2IxLWFkN2UwNDVjNzJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2hjANBgkqhkiG9w0BAQsFAAOCAQEAtxitmBPU7FeOiDQmxPIpbTmYdteP oJZeZ2ruwfckVV+THxosw2y2eYCr2zsxAdDeKZOlgyL9NgRzn+pExMhPfh8iSXPC HF9xVgPBzvTZVzH1dxImeegHyjgoHPobl/0Ly1zcDy4ZLQvlY1PUoX0XFi/PReJ3 I7xG0xLw8e7qlHqvT47aq0bDAKvoU7ekS1B5MJs7bdZYylXY1Q/7KjrolSGtH175 mh2Lqn+/61Z+cDtQKiZChM5QIk4YsHwApf9OGO8DZd9sZg06H2APetoPaY9va7Y5 e92EB4wBhrUX7yl0ciMTzXCwfj1D4WjglSF3/6YxTG1G1v9pWkh7ObeaQg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:21:51 2025 by rpki-client