$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa File: 54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa (raw, json) Hash identifier: HQ2IU//7KjgmQpokGAl+WrUi61nPyl/Y7UM+l9K+9pU= Subject key identifier: C8:3B:76:9B:1D:DA:15:96:0D:93:11:26:55:D8:75:F1:70:7E:91:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60894CED4604C93F89FA0F61115CAE263A3C61F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa Signing time: Sat 09 Aug 2025 00:01:21 +0000 ROA not before: Sat 09 Aug 2025 00:01:21 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:89:4c:ed:46:04:c9:3f:89:fa:0f:61:11:5c:ae:26:3a:3c:61:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:01:21 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=4b6e9cf59dcc82b269f8a1c0ae94f3af3e9a96349de551ebd439457818295bb9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1c:a1:a3:56:c4:e2:bf:a5:60:ba:66:42:d8: 72:01:d5:3e:73:41:21:16:9c:60:88:bf:ca:f0:bd: d2:71:16:5c:78:70:81:0b:81:76:dd:6a:b2:f0:aa: 4f:7e:28:ae:10:32:2c:19:78:51:06:08:fc:22:6f: 94:9a:0c:5c:60:9c:f7:19:de:1d:7c:d8:d2:5f:a1: 80:d5:94:97:8c:c6:e7:d5:80:81:45:20:23:cd:1c: 71:32:92:7e:a9:96:19:38:f3:dc:75:61:e9:59:13: c3:4d:52:b6:dc:07:2a:97:96:ce:28:8a:94:7f:da: e8:77:a8:a5:63:81:de:15:9c:b6:27:95:8b:58:96: 5d:41:fd:8a:78:d1:ba:66:54:75:23:cd:ed:7d:ab: 94:0b:94:a2:d9:be:59:cb:ee:68:a7:6a:d5:8b:68: 79:77:2c:70:94:f5:33:79:d7:5c:13:49:79:87:68: 1c:97:33:c2:e0:3e:79:d1:76:18:c0:fd:2d:3d:7a: 2c:92:dc:f0:9f:26:41:1d:14:84:e2:28:94:80:1f: 4f:da:3c:cf:25:ac:31:ef:89:b4:c0:2c:04:72:4c: 79:d7:fa:37:66:82:00:4a:8f:38:c3:5b:d0:4d:0e: b8:22:0e:6f:f7:86:75:a5:fa:32:f5:00:59:92:13: d4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:3B:76:9B:1D:DA:15:96:0D:93:11:26:55:D8:75:F1:70:7E:91:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:47:37:c1:4c:7c:22:e5:5e:f2:ff:2d:b5:e3:17:48:65:82: 2a:bd:b7:d5:7b:51:1d:fe:94:80:9d:91:55:08:25:24:76:e0: a5:97:d3:49:d3:17:47:6d:48:42:cf:13:b8:9b:9f:07:b6:95: f9:73:de:34:c1:10:22:1b:36:a9:0f:0f:6f:d4:12:00:85:22: 53:95:0d:9b:82:59:7e:11:72:cd:c8:89:31:9c:6f:31:49:7b: 0d:f0:29:27:fa:28:d3:97:52:2c:f5:35:a0:55:52:83:79:a7: 49:ba:95:b8:99:f1:7c:b8:ac:7c:b6:de:7f:6b:f8:ea:d4:e5: ec:54:82:4e:f3:89:12:97:26:49:59:4b:7a:32:10:9a:37:95: 2c:68:95:ec:71:d9:83:45:18:32:69:8c:f9:6e:02:c0:22:7b: 43:97:ae:e8:1e:9a:69:4b:25:e4:ff:f9:01:24:aa:58:d0:29: 7e:56:4d:a1:bb:d4:88:8a:c9:ac:e8:1f:15:b0:4d:e8:16:b7: 29:a9:50:38:9f:1a:ae:90:0e:4e:10:97:32:aa:d2:e7:66:c4: e3:c2:38:ad:ba:be:2f:e8:14:c5:2f:3e:b8:d3:6f:57:61:f7: c8:86:42:69:8a:29:bb:76:d4:dc:96:70:e5:25:1d:29:34:70: 0f:6e:b8:21 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYIlM7UYEyT+J+g9hEVyuJjo8YfcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMTIxWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjZlOWNmNTlkY2M4MmIyNjlmOGExYzBhZTk0ZjNhZjNl OWE5NjM0OWRlNTUxZWJkNDM5NDU3ODE4Mjk1YmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8HKGjVsTiv6VgumZC2HIB1T5zQSEWnGCIv8rwvdJxFlx4 cIELgXbdarLwqk9+KK4QMiwZeFEGCPwib5SaDFxgnPcZ3h182NJfoYDVlJeMxufV gIFFICPNHHEykn6plhk489x1YelZE8NNUrbcByqXls4oipR/2uh3qKVjgd4VnLYn lYtYll1B/Yp40bpmVHUjze19q5QLlKLZvlnL7minatWLaHl3LHCU9TN511wTSXmH aByXM8LgPnnRdhjA/S09eiyS3PCfJkEdFITiKJSAH0/aPM8lrDHvibTALARyTHnX +jdmggBKjzjDW9BNDrgiDm/3hnWl+jL1AFmSE9SDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyDt2mx3aFZYNkxEmVdh18XB+kSkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjRmNWJjLTMwYzctNGQyMC1hOWI0LWIzOTYyNmYzMGU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKNDANBgkqhkiG9w0BAQsFAAOCAQEArEc3wUx8IuVe8v8tteMXSGWCKr23 1XtRHf6UgJ2RVQglJHbgpZfTSdMXR21IQs8TuJufB7aV+XPeNMEQIhs2qQ8Pb9QS AIUiU5UNm4JZfhFyzciJMZxvMUl7DfApJ/oo05dSLPU1oFVSg3mnSbqVuJnxfLis fLbef2v46tTl7FSCTvOJEpcmSVlLejIQmjeVLGiV7HHZg0UYMmmM+W4CwCJ7Q5eu 6B6aaUsl5P/5ASSqWNApflZNobvUiIrJrOgfFbBN6Ba3KalQOJ8arpAOThCXMqrS 52bE48I4rbq+L+gUxS8+uNNvV2H3yIZCaYopu3bU3JZw5SUdKTRwD264IQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:24:19 2025 by rpki-client