$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa File: 78ea6c31-0dc6-42b2-989e-2ae62658190d.roa (raw, json) Hash identifier: exYqpo4iVZ4k4Sf7p4HHXyHIc7XeekWcgGqPOotKjSQ= Subject key identifier: 4C:EA:F1:E7:69:D2:7A:88:E0:99:65:F9:ED:FF:41:12:6F:61:07:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AC992B87A28C28AF654F071EF4F7504715ABBD6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa Signing time: Tue 12 Aug 2025 00:11:36 +0000 ROA not before: Tue 12 Aug 2025 00:11:36 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.124.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c9:92:b8:7a:28:c2:8a:f6:54:f0:71:ef:4f:75:04:71:5a:bb:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:11:36 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=dd51d1826c3cd3597f422d80121ca92ae7679d6d38a4ccda07f6209f508a3a89, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d2:29:36:50:e0:0f:55:d9:a3:cd:60:ec:98: 99:ad:34:2e:29:a3:cd:24:3c:43:85:02:3d:39:97: 03:24:7d:d0:40:ee:49:bd:ec:40:77:1c:e1:d3:bb: 88:93:aa:ff:29:f9:67:5f:de:2e:de:c6:88:de:f2: a3:ae:eb:f9:23:eb:e3:6d:01:69:2b:9e:df:0c:b3: 0e:88:04:b0:64:34:19:2a:f1:f7:05:a7:e0:8d:a2: 85:21:48:1d:d9:e5:91:f5:5f:b1:0e:e2:f7:c8:0f: 5f:f1:9f:f4:96:b1:8b:d3:27:19:89:dc:81:42:cb: ac:b2:8c:6d:8a:9c:a9:29:68:ec:00:4f:d6:18:6e: b2:31:c2:d1:74:a5:3c:3f:4a:f4:8d:1e:d1:da:bb: df:7f:2c:05:63:54:79:1c:87:4d:ba:60:4b:bd:e3: 05:6d:be:c6:d9:cb:3f:54:5f:1d:d8:e2:8c:fa:1e: 2b:ed:c5:ee:51:5b:a1:51:5c:a4:b9:0b:5b:1d:02: 1b:93:ce:13:d3:f4:78:52:d0:be:4d:6e:9a:fc:86: 01:91:4d:98:9d:04:21:23:09:4b:7b:e4:30:41:12: 23:d3:d5:95:f0:8d:e0:7c:96:64:47:e4:06:cf:96: 6a:60:d8:8d:27:89:5c:8b:f6:15:3e:f6:00:2e:f1: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EA:F1:E7:69:D2:7A:88:E0:99:65:F9:ED:FF:41:12:6F:61:07:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.124.0.0/18 Signature Algorithm: sha256WithRSAEncryption 36:30:56:52:b3:5f:8e:76:4c:bc:c4:81:a4:72:a9:68:44:0e: 25:7b:84:d2:a0:67:5d:13:94:fe:03:9f:d9:ba:6b:cd:e2:0d: f8:5a:e1:d2:8d:ff:9f:8f:66:d6:f9:b4:69:57:b7:82:a9:59: 9e:d0:12:4e:72:0b:c8:b9:36:29:b4:de:26:cd:fc:da:2d:37: c3:d2:14:4b:87:3f:02:a2:38:02:87:0e:b3:5b:6a:9b:ee:d5: 54:5d:57:9b:37:f6:c9:ce:3a:13:d5:1a:ed:c2:7e:52:95:8f: ad:30:0b:a8:08:f3:21:51:f6:40:88:2c:02:c8:ca:ad:ba:17: db:ef:d4:c6:30:e4:dc:1f:1a:fc:21:0e:92:9a:cf:d6:c5:d3: f6:1e:6f:e0:56:21:57:3e:f1:83:f5:87:cb:2b:82:34:b8:93: bb:72:7a:02:be:88:6a:ee:63:c0:81:53:ae:6b:fd:4c:74:cc: 7b:92:e9:a7:21:35:2b:81:88:6e:0a:be:fb:51:1d:6c:41:df: 22:a7:78:f5:68:76:73:57:29:df:c4:e4:fa:fc:ec:85:57:b8: 06:4e:1b:b0:c2:82:cb:11:95:d3:9d:21:c9:c6:4a:30:7a:25: da:9c:1c:f6:a7:31:7e:c3:e5:cb:83:f3:e4:34:8e:3f:77:3a: ad:61:58:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGsmSuHoowor2VPBx7091BHFau9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMTM2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDUxZDE4MjZjM2NkMzU5N2Y0MjJkODAxMjFjYTkyYWU3 Njc5ZDZkMzhhNGNjZGEwN2Y2MjA5ZjUwOGEzYTg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh0ik2UOAPVdmjzWDsmJmtNC4po80kPEOFAj05lwMkfdBA 7km97EB3HOHTu4iTqv8p+Wdf3i7exoje8qOu6/kj6+NtAWkrnt8Msw6IBLBkNBkq 8fcFp+CNooUhSB3Z5ZH1X7EO4vfID1/xn/SWsYvTJxmJ3IFCy6yyjG2KnKkpaOwA T9YYbrIxwtF0pTw/SvSNHtHau99/LAVjVHkch026YEu94wVtvsbZyz9UXx3Y4oz6 Hivtxe5RW6FRXKS5C1sdAhuTzhPT9HhS0L5Nbpr8hgGRTZidBCEjCUt75DBBEiPT 1ZXwjeB8lmRH5AbPlmpg2I0niVyL9hU+9gAu8Rf1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTOrx52nSeojgmWX57f9BEm9hB1MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZWE2YzMxLTBkYzYtNDJiMi05ODllLTJhZTYyNjU4MTkwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbQfAAwDQYJKoZIhvcNAQELBQADggEBADYwVlKzX452TLzEgaRyqWhEDiV7 hNKgZ10TlP4Dn9m6a83iDfha4dKN/5+PZtb5tGlXt4KpWZ7QEk5yC8i5Nim03ibN /NotN8PSFEuHPwKiOAKHDrNbapvu1VRdV5s39snOOhPVGu3CflKVj60wC6gI8yFR 9kCILALIyq26F9vv1MYw5NwfGvwhDpKaz9bF0/Yeb+BWIVc+8YP1h8srgjS4k7ty egK+iGruY8CBU65r/Ux0zHuS6achNSuBiG4KvvtRHWxB3yKnePVodnNXKd/E5Pr8 7IVXuAZOG7DCgssRldOdIcnGSjB6JdqcHPanMX7D5cuD8+Q0jj93Oq1hWHg= -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:56 2025 by rpki-client