$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa File: 4259474a-bf94-4fce-960e-600c8e86c25b.roa (raw, json) Hash identifier: 6KLKoLZVzU0WTDERPQqAVR4c0zFL9QoElOgu9SzEbRk= Subject key identifier: 96:52:96:D4:D1:A3:92:3F:06:72:00:36:75:AA:67:E7:23:C2:FC:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 115AB336C3A9CD7A06B16E6908A9CD43B329684D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa Signing time: Mon 18 Aug 2025 15:10:19 +0000 ROA not before: Mon 18 Aug 2025 15:10:19 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5a:b3:36:c3:a9:cd:7a:06:b1:6e:69:08:a9:cd:43:b3:29:68:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:10:19 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=b9d32c5fed52bddd202c6545317ecabc4c75bde99f4f2659e862e54e91b8d0c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:01:e2:ef:a5:99:87:1d:ea:2b:e0:8c:a0:7b: 91:8c:38:99:f5:79:da:37:da:73:26:d6:8b:70:38: dc:cb:67:5e:1c:07:5d:be:7a:c2:fe:aa:45:d1:42: 3c:78:70:e9:d6:73:2c:5c:d8:1b:2d:b4:7f:4a:e4: 39:67:20:c1:e8:c4:a8:5a:57:d7:f0:80:9b:42:66: f9:d7:53:0b:37:78:a7:9c:51:fa:b4:7d:89:98:43: 2a:42:5e:b6:69:22:c0:a0:39:e7:f5:02:b3:3f:7e: be:7c:9e:ac:8d:43:4f:24:95:06:24:19:3d:c8:d2: 84:83:af:61:8f:70:16:2d:56:d0:97:9d:84:bd:10: d1:b8:9a:a4:22:06:b4:ff:6e:11:5a:7f:b6:6b:b3: 03:2b:95:6a:36:06:1d:a9:31:24:6b:3f:6b:27:ad: e2:64:54:be:38:c3:0b:67:ac:a5:be:2b:79:3c:ed: 6e:8e:a3:0d:b9:a7:ce:22:4d:3c:cd:fe:c2:6d:67: 62:f9:13:3b:f2:c8:2d:13:0a:d8:c8:57:59:e5:d1: d6:ee:a8:1f:e6:4d:b7:7b:5a:e9:28:5b:f9:af:71: f9:35:d7:22:5b:bf:0d:5d:ab:62:a2:5e:db:39:87: 3a:16:69:81:2d:da:33:ee:70:35:27:69:9d:c0:a6: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:52:96:D4:D1:A3:92:3F:06:72:00:36:75:AA:67:E7:23:C2:FC:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:8a:17:66:50:22:1a:79:98:63:3c:9d:5b:24:3d:d8:73:43: 64:81:5f:2d:6d:6d:81:37:79:6e:f0:e4:e5:c4:d9:7a:3d:df: f9:e8:3e:7c:ef:6c:ac:17:fb:f0:1d:81:d1:db:7f:b3:8d:9a: 1f:37:c2:f6:5f:69:67:cc:65:af:d6:9a:a3:c5:fa:15:e8:e2: 9b:59:c5:e1:26:75:3e:7f:da:52:25:f7:49:47:53:e8:a2:29: b7:08:c3:b6:96:d2:6f:03:09:a1:b3:08:b8:55:2b:7d:58:f8: e9:2c:26:3e:ff:33:dc:11:fe:4e:ef:70:7d:02:f8:4e:d7:11: f7:ad:92:93:0b:2a:ba:62:12:c2:f6:d7:12:f1:d1:3d:87:a9: da:59:22:8d:90:98:cc:7c:8f:f9:e8:33:db:c3:30:62:ee:4c: 52:bf:a6:8c:b1:80:f2:1b:f1:2f:89:0e:59:8a:8d:59:8a:77: e1:12:c0:63:39:f3:ea:89:84:20:0a:4d:b0:bb:cb:7f:f0:fd: d8:c8:9c:05:67:f5:a6:6b:8e:b7:6c:c9:60:96:b6:fd:06:86: 3f:cb:9d:f8:cd:93:25:7e:99:67:e3:84:ee:9a:ee:82:1f:36: 55:50:29:3c:da:82:d6:aa:9f:9a:99:6f:a4:bd:98:2a:6b:4c: 78:bb:91:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEVqzNsOpzXoGsW5pCKnNQ7MpaE0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMDE5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWQzMmM1ZmVkNTJiZGRkMjAyYzY1NDUzMTdlY2FiYzRj NzViZGU5OWY0ZjI2NTllODYyZTU0ZTkxYjhkMGM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfAeLvpZmHHeor4Iyge5GMOJn1edo32nMm1otwONzLZ14c B12+esL+qkXRQjx4cOnWcyxc2BsttH9K5DlnIMHoxKhaV9fwgJtCZvnXUws3eKec Ufq0fYmYQypCXrZpIsCgOef1ArM/fr58nqyNQ08klQYkGT3I0oSDr2GPcBYtVtCX nYS9ENG4mqQiBrT/bhFaf7ZrswMrlWo2Bh2pMSRrP2snreJkVL44wwtnrKW+K3k8 7W6Oow25p84iTTzN/sJtZ2L5EzvyyC0TCtjIV1nl0dbuqB/mTbd7WukoW/mvcfk1 1yJbvw1dq2KiXts5hzoWaYEt2jPucDUnaZ3ApqfNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUllKW1NGjkj8GcgA2dapn5yPC/NowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTk0NzRhLWJmOTQtNGZjZS05NjBlLTYwMGM4ZTg2YzI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZjANBgkqhkiG9w0BAQsFAAOCAQEAZ4oXZlAiGnmYYzydWyQ92HNDZIFf LW1tgTd5bvDk5cTZej3f+eg+fO9srBf78B2B0dt/s42aHzfC9l9pZ8xlr9aao8X6 Fejim1nF4SZ1Pn/aUiX3SUdT6KIptwjDtpbSbwMJobMIuFUrfVj46SwmPv8z3BH+ Tu9wfQL4TtcR962SkwsqumISwvbXEvHRPYep2lkijZCYzHyP+egz28MwYu5MUr+m jLGA8hvxL4kOWYqNWYp34RLAYznz6omEIApNsLvLf/D92MicBWf1pmuOt2zJYJa2 /QaGP8ud+M2TJX6ZZ+OE7prugh82VVApPNqC1qqfmplvpL2YKmtMeLuRSg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:22 2025 by rpki-client