$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa File: 4f0b048d-2305-43d3-a474-0e095ab7e09b.roa (raw, json) Hash identifier: jLLiIhnVTrvoYNQUBfmuxNCozl3Helpv5BqbObQrcPg= Subject key identifier: 5A:AB:FB:7C:A8:B6:7A:1D:E0:C2:F3:4A:BA:EA:B2:B6:89:D8:33:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 266A95DC05C7B430A85F36E813FF64D486500442 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa Signing time: Tue 19 Aug 2025 00:20:12 +0000 ROA not before: Tue 19 Aug 2025 00:20:12 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.53.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:6a:95:dc:05:c7:b4:30:a8:5f:36:e8:13:ff:64:d4:86:50:04:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:20:12 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=b109b85e46ad3beb57ae1205177bb149e3eaab69f18bde6197d9dd1a4f195319, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:07:e3:4d:b4:8b:40:47:23:87:71:d8:33:36: 8d:6a:78:6f:cf:07:de:a6:2f:ea:e1:e8:8d:f5:e2: 1b:5d:6b:47:3c:64:ba:2d:a2:d6:76:02:a4:07:27: 32:ca:a3:5c:36:ed:de:64:f9:b4:81:31:ae:f8:fb: d2:2b:61:be:2f:44:d2:54:c2:fa:5a:eb:44:91:e0: 16:77:72:01:db:3f:d0:ee:0f:17:6e:e9:ea:6e:ce: aa:48:4e:6f:ae:c6:c5:66:83:f6:b6:ab:78:38:cf: a8:6d:f8:c3:79:82:72:8b:d4:35:50:99:f6:d8:e9: 9f:4b:34:e4:8a:34:0e:52:9d:dd:66:8d:17:ed:8e: e0:b1:e7:eb:c5:79:1a:ff:80:ba:48:66:d8:46:de: 19:92:16:29:08:c8:f0:65:db:97:75:17:b2:aa:56: ca:18:b3:97:ac:2f:09:81:6d:ac:c5:0e:81:07:44: ba:e7:d7:a3:e9:db:e3:bf:f5:f1:64:b8:6d:af:4c: 67:9c:53:53:2e:bf:74:9a:a9:ac:30:3c:ed:71:41: ca:f8:df:61:84:d6:60:eb:52:fe:99:03:69:68:c2: ae:dc:88:22:f1:b7:79:14:7b:14:62:76:dc:7e:e7: e9:8a:ed:01:78:60:18:95:e5:cb:be:46:b5:b5:66: f2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AB:FB:7C:A8:B6:7A:1D:E0:C2:F3:4A:BA:EA:B2:B6:89:D8:33:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.53.192.0/20 Signature Algorithm: sha256WithRSAEncryption 68:85:2d:6e:a5:b8:e9:75:28:44:fe:0c:3e:dd:0a:db:6a:99: 8a:32:d6:28:3b:f7:67:ca:81:ff:7b:c3:1d:eb:65:a4:eb:87: dc:4a:72:d7:cf:f4:ae:c3:ae:24:be:69:02:38:6f:27:21:9e: ea:84:01:e3:fd:72:8d:6d:bc:d2:67:41:7f:1f:cd:e0:87:c3: ca:9e:a6:26:9e:25:99:24:6a:a6:17:43:f2:98:8f:e3:04:37: 0c:32:86:9a:4b:96:4c:29:15:a7:a0:e6:2b:10:f3:04:6b:dd: 2f:f5:e3:24:b3:15:9f:7d:6a:20:d4:06:a2:9b:5e:75:ab:72: 3e:34:ef:ea:38:1c:28:e0:cb:99:27:70:80:21:3d:ad:6f:ef: d8:3a:51:1d:2b:83:7b:e2:8b:df:17:8a:97:16:3b:e4:f1:46: 61:b9:29:c2:07:00:12:0b:6e:e1:0d:31:f7:6c:e5:55:c4:5d: 17:93:c0:38:76:f7:13:1a:86:10:02:69:22:01:81:21:46:27: 26:e0:6d:97:7b:86:5a:e4:ae:55:23:93:ea:0e:24:38:bd:70: 06:2d:da:2d:55:58:4b:d9:cb:fc:25:6c:9d:79:a3:bf:54:df: b3:dc:27:22:4a:b0:a3:64:b3:86:65:23:68:04:ad:18:07:60: 27:23:3b:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJmqV3AXHtDCoXzboE/9k1IZQBEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAyMDEyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTA5Yjg1ZTQ2YWQzYmViNTdhZTEyMDUxNzdiYjE0OWUz ZWFhYjY5ZjE4YmRlNjE5N2Q5ZGQxYTRmMTk1MzE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtB+NNtItARyOHcdgzNo1qeG/PB96mL+rh6I314htda0c8 ZLototZ2AqQHJzLKo1w27d5k+bSBMa74+9IrYb4vRNJUwvpa60SR4BZ3cgHbP9Du Dxdu6epuzqpITm+uxsVmg/a2q3g4z6ht+MN5gnKL1DVQmfbY6Z9LNOSKNA5Snd1m jRftjuCx5+vFeRr/gLpIZthG3hmSFikIyPBl25d1F7KqVsoYs5esLwmBbazFDoEH RLrn16Pp2+O/9fFkuG2vTGecU1Muv3SaqawwPO1xQcr432GE1mDrUv6ZA2lowq7c iCLxt3kUexRidtx+5+mK7QF4YBiV5cu+RrW1ZvLjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWqv7fKi2eh3gwvNKuuqytonYMyswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMGIwNDhkLTIzMDUtNDNkMy1hNDc0LTBlMDk1YWI3ZTA5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFNcAwDQYJKoZIhvcNAQELBQADggEBAGiFLW6luOl1KET+DD7dCttqmYoy 1ig792fKgf97wx3rZaTrh9xKctfP9K7DriS+aQI4bychnuqEAeP9co1tvNJnQX8f zeCHw8qepiaeJZkkaqYXQ/KYj+MENwwyhppLlkwpFaeg5isQ8wRr3S/14ySzFZ99 aiDUBqKbXnWrcj407+o4HCjgy5kncIAhPa1v79g6UR0rg3vii98XipcWO+TxRmG5 KcIHABILbuENMfds5VXEXReTwDh29xMahhACaSIBgSFGJybgbZd7hlrkrlUjk+oO JDi9cAYt2i1VWEvZy/wlbJ15o79U37PcJyJKsKNks4ZlI2gErRgHYCcjOwg= -----END CERTIFICATE-----Generated at Sat Aug 23 14:04:52 2025 by rpki-client