$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa File: 4b686aa2-54bd-4401-b362-571c7282451f.roa (raw, json) Hash identifier: TCdgvOHNUYNa9Tp4RCW984G2L31Ipno+XOhUQAEHzuY= Subject key identifier: C4:51:7E:DC:73:67:BF:F1:64:7B:20:72:A2:2A:83:DB:0F:E3:E1:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0385BF2210BA69F85A4F726A0F405E6299353B32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa Signing time: Tue 24 Jun 2025 00:50:18 +0000 ROA not before: Tue 24 Jun 2025 00:50:18 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:85:bf:22:10:ba:69:f8:5a:4f:72:6a:0f:40:5e:62:99:35:3b:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:50:18 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=7d934648f3c9903dbf690733c27902a64a613dcdd69c58d49d16f377ff05fa7c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c2:21:c0:4e:33:aa:84:43:3e:89:26:2d:18: ca:e7:77:53:c4:5b:30:59:f4:61:40:c4:8d:4f:d1: 73:1d:9d:71:20:0b:87:55:35:0e:fe:5f:d4:c3:52: 72:74:4f:ea:a6:12:0a:3c:0f:2c:97:49:40:05:07: 38:45:15:5f:d8:cf:a7:1c:49:a0:b6:d1:88:0e:15: 2a:25:cd:21:b2:83:66:4f:a8:10:21:c4:86:b2:32: df:c1:77:76:f2:12:5a:4a:01:db:f9:56:00:41:c9: 57:18:4c:43:2a:d7:df:4e:af:56:d1:35:84:78:77: ab:b5:7a:a6:bf:73:cc:a5:2e:a7:d5:09:bc:2e:d4: 1f:e9:9e:38:8a:3c:6d:ab:07:c9:ef:12:3e:02:10: 86:38:b0:09:df:d4:84:9e:98:da:00:74:6a:2d:6a: a9:50:be:24:cb:2c:7a:75:25:bb:7b:c1:01:3e:3a: 45:1d:85:04:a7:94:66:a9:5a:aa:a8:64:cd:cb:62: 17:33:7e:10:50:ce:46:a4:4d:df:e0:64:20:84:3a: f5:e4:97:78:b6:5e:98:12:55:43:4f:1c:3e:e4:24: 03:3f:e6:e2:2f:20:ad:f6:ff:75:5f:32:f2:14:d1: 00:9d:76:a8:52:0b:aa:99:9c:85:a8:40:91:a3:e3: f1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:51:7E:DC:73:67:BF:F1:64:7B:20:72:A2:2A:83:DB:0F:E3:E1:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.192.0/22 Signature Algorithm: sha256WithRSAEncryption 14:fd:4f:53:1f:86:81:b2:4d:e3:ac:b8:c0:80:fe:bb:0a:21: 49:55:33:b9:aa:65:05:0b:e1:5d:c1:5f:30:e2:ee:7b:2f:e0: 17:9f:be:da:1c:3a:a0:b1:35:d1:ae:6b:88:b9:1d:3c:04:b7: b8:5f:f5:d1:06:d9:62:49:7b:9d:9b:78:44:e9:e1:c1:6b:3a: e0:fe:7f:9a:97:0e:c1:45:42:bc:c6:52:34:f6:7a:07:38:92: e4:4b:15:8f:4a:f4:d3:e5:5e:5a:35:67:b7:84:45:31:ad:fc: f9:5d:51:c5:55:9d:02:89:93:61:98:04:87:4d:38:27:d2:ab: 1b:3b:b1:b6:84:7b:8b:8b:ad:4c:11:3d:8a:34:be:dd:07:d4: 2c:83:3e:dc:ca:ab:e2:64:a6:fe:1c:45:0d:3a:7c:dc:ce:da: 53:7b:a8:18:fc:b4:38:6d:52:64:30:29:a4:e2:b6:58:c5:e8: fd:08:5c:2f:f3:7e:d3:46:cc:49:37:cb:92:ab:59:a8:60:bd: 27:9e:ef:74:15:e2:f4:8e:18:36:82:0f:2a:16:d6:e5:8a:1b: c6:6e:c4:1f:9e:f8:9d:e3:40:ce:d8:8c:10:22:1a:9f:72:36: 29:6b:d0:57:ef:a1:fb:59:1f:05:18:73:f2:3f:86:05:25:1b: b2:64:15:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA4W/IhC6afhaT3JqD0BeYpk1OzIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDA1MDE4WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDkzNDY0OGYzYzk5MDNkYmY2OTA3MzNjMjc5MDJhNjRh NjEzZGNkZDY5YzU4ZDQ5ZDE2ZjM3N2ZmMDVmYTdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2wiHATjOqhEM+iSYtGMrnd1PEWzBZ9GFAxI1P0XMdnXEg C4dVNQ7+X9TDUnJ0T+qmEgo8DyyXSUAFBzhFFV/Yz6ccSaC20YgOFSolzSGyg2ZP qBAhxIayMt/Bd3byElpKAdv5VgBByVcYTEMq199Or1bRNYR4d6u1eqa/c8ylLqfV Cbwu1B/pnjiKPG2rB8nvEj4CEIY4sAnf1ISemNoAdGotaqlQviTLLHp1Jbt7wQE+ OkUdhQSnlGapWqqoZM3LYhczfhBQzkakTd/gZCCEOvXkl3i2XpgSVUNPHD7kJAM/ 5uIvIK32/3VfMvIU0QCddqhSC6qZnIWoQJGj4/GnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxFF+3HNnv/FkeyByoiqD2w/j4VYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiNjg2YWEyLTU0YmQtNDQwMS1iMzYyLTU3MWM3MjgyNDUxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTsAwDQYJKoZIhvcNAQELBQADggEBABT9T1MfhoGyTeOsuMCA/rsKIUlV M7mqZQUL4V3BXzDi7nsv4BefvtocOqCxNdGua4i5HTwEt7hf9dEG2WJJe52beETp 4cFrOuD+f5qXDsFFQrzGUjT2egc4kuRLFY9K9NPlXlo1Z7eERTGt/PldUcVVnQKJ k2GYBIdNOCfSqxs7sbaEe4uLrUwRPYo0vt0H1CyDPtzKq+Jkpv4cRQ06fNzO2lN7 qBj8tDhtUmQwKaTitljF6P0IXC/zftNGzEk3y5KrWahgvSee73QV4vSOGDaCDyoW 1uWKG8ZuxB+e+J3jQM7YjBAiGp9yNilr0FfvoftZHwUYc/I/hgUlG7JkFck= -----END CERTIFICATE-----Generated at Wed Jul 2 20:20:45 2025 by rpki-client