$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa File: 58b42984-22be-4af1-8da5-6fa235d1029c.roa (raw, json) Hash identifier: c8/r1maR8QOcZ9wB+kVoETuQH0n8Jsp7fAkaGUByZOE= Subject key identifier: 8D:43:65:86:D0:38:80:72:02:D9:66:22:81:98:6B:D6:EF:46:24:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5826D04217242E3DCEAC03B508425E2F4666C837 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa Signing time: Sat 09 Aug 2025 00:00:37 +0000 ROA not before: Sat 09 Aug 2025 00:00:37 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:26:d0:42:17:24:2e:3d:ce:ac:03:b5:08:42:5e:2f:46:66:c8:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:00:37 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=b196c981b2adca2fe405a134decd8b8ca0ed4ba85f974215950f66332a450be8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d3:fa:da:3d:2a:54:2f:0d:b9:c3:c5:ef:2d: 8b:45:e2:47:05:be:e9:f4:46:f4:1e:d0:69:8c:7c: 42:96:05:b1:76:f1:4c:49:84:45:3d:3c:82:84:ff: 1d:73:ed:21:63:d0:32:45:d2:81:ff:b6:f1:94:93: eb:77:61:7a:a3:19:c4:47:82:34:89:50:55:f8:5f: 1c:53:1c:25:28:7b:f1:fc:08:8b:a8:53:fc:b9:e6: 7b:ec:b7:96:24:fa:7d:82:3a:95:87:b6:33:cb:7c: db:08:ee:08:c3:c0:70:e8:ca:04:56:1a:a0:d4:f4: 23:be:60:e5:30:b6:31:fb:64:64:9e:53:3d:ac:1a: 1c:2a:cf:bd:aa:7a:15:6a:07:c9:84:9f:87:1c:e4: f3:20:bb:47:1a:96:1c:0e:64:ca:05:a0:93:dd:22: 16:84:77:06:5c:9b:66:07:50:60:12:2f:59:ef:c0: e6:ee:66:4b:61:86:f6:8d:d5:07:88:6b:0a:98:d5: 2c:b2:70:44:2b:ec:bb:b4:18:12:ca:9f:53:56:3d: 64:c9:2d:3d:e3:eb:e1:cb:08:fa:9a:29:ec:8f:56: 73:73:f5:bc:91:a7:7c:34:dc:57:bc:18:51:da:74: d2:c2:31:d7:28:73:50:67:16:24:44:b7:0d:c7:4d: 83:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:43:65:86:D0:38:80:72:02:D9:66:22:81:98:6B:D6:EF:46:24:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:44:36:0f:5a:3b:1d:52:ae:4a:e7:2c:46:7b:6e:4e:ef:22: 1f:74:82:90:31:51:30:b5:22:66:38:7b:59:1c:ca:35:dd:a9: f8:26:2d:38:83:6c:73:35:78:49:4d:e6:7f:1b:17:a9:86:fa: 6c:bc:42:4c:ed:a7:34:25:19:61:11:1c:35:23:4e:a1:74:f2: 60:f2:be:d8:88:6a:d8:80:59:a8:73:bf:f6:be:a7:83:c0:4f: 1a:12:84:03:6d:a9:2e:92:2b:ee:75:57:31:59:fb:47:0a:2d: 8d:e4:a2:07:6e:b4:24:9f:b5:89:15:79:c6:33:b9:ff:fc:f5: 3b:94:8d:dc:24:b3:d7:e8:fb:7e:41:8c:6b:6f:23:24:89:e2: ca:9c:95:6d:61:f3:5e:5a:da:c5:a8:e0:a2:ad:33:b4:51:1e: fd:28:fc:bb:63:4d:c9:c8:a3:06:0a:6f:90:c0:91:fd:e7:a6: 55:38:de:0e:0a:b7:02:fd:4b:c1:0a:3c:2a:bf:6c:f2:be:65: 48:c5:99:b8:6b:f4:67:26:9f:fe:78:54:86:b9:b4:1a:37:4f: ba:1e:b1:91:8a:74:bf:47:bc:d0:f7:11:92:47:6c:1f:d8:98: 8a:e6:97:db:49:4f:6b:55:96:dd:fd:96:65:b3:bc:e5:81:09: 7b:71:fc:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWCbQQhckLj3OrAO1CEJeL0ZmyDcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMDM3WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTk2Yzk4MWIyYWRjYTJmZTQwNWExMzRkZWNkOGI4Y2Ew ZWQ0YmE4NWY5NzQyMTU5NTBmNjYzMzJhNDUwYmU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe0/raPSpULw25w8XvLYtF4kcFvun0RvQe0GmMfEKWBbF2 8UxJhEU9PIKE/x1z7SFj0DJF0oH/tvGUk+t3YXqjGcRHgjSJUFX4XxxTHCUoe/H8 CIuoU/y55nvst5Yk+n2COpWHtjPLfNsI7gjDwHDoygRWGqDU9CO+YOUwtjH7ZGSe Uz2sGhwqz72qehVqB8mEn4cc5PMgu0calhwOZMoFoJPdIhaEdwZcm2YHUGASL1nv wObuZkthhvaN1QeIawqY1SyycEQr7Lu0GBLKn1NWPWTJLT3j6+HLCPqaKeyPVnNz 9byRp3w03Fe8GFHadNLCMdcoc1BnFiREtw3HTYPBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjUNlhtA4gHIC2WYigZhr1u9GJAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YjQyOTg0LTIyYmUtNGFmMS04ZGE1LTZmYTIzNWQxMDI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBAJ5ENg9aOx1SrkrnLEZ7bk7vIh90 gpAxUTC1ImY4e1kcyjXdqfgmLTiDbHM1eElN5n8bF6mG+my8QkztpzQlGWERHDUj TqF08mDyvtiIatiAWahzv/a+p4PATxoShANtqS6SK+51VzFZ+0cKLY3kogdutCSf tYkVecYzuf/89TuUjdwks9fo+35BjGtvIySJ4sqclW1h815a2sWo4KKtM7RRHv0o /LtjTcnIowYKb5DAkf3nplU43g4KtwL9S8EKPCq/bPK+ZUjFmbhr9Gcmn/54VIa5 tBo3T7oesZGKdL9HvND3EZJHbB/YmIrml9tJT2tVlt39lmWzvOWBCXtx/Ic= -----END CERTIFICATE-----Generated at Sat Aug 23 10:23:26 2025 by rpki-client