$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ea8bcc3-dbdd-4625-8fcb-b88f42d1cd0a.roa File: 8ea8bcc3-dbdd-4625-8fcb-b88f42d1cd0a.roa (raw, json) Hash identifier: ZXQFDQ139Z/Gpg1OXO5z5XplI6I64iOOgtsM5APjabQ= Subject key identifier: 55:6A:BF:54:32:2B:66:F1:97:12:AF:00:1B:14:04:49:81:90:6B:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A827D0BA55901ECA757F6947F901238AA1AD150 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ea8bcc3-dbdd-4625-8fcb-b88f42d1cd0a.roa Signing time: Fri 22 Aug 2025 00:31:17 +0000 ROA not before: Fri 22 Aug 2025 00:31:17 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.244.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:82:7d:0b:a5:59:01:ec:a7:57:f6:94:7f:90:12:38:aa:1a:d1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:31:17 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=abf895a97c477b1e9b68b36a07ee119ca2bd45c8571a4c12169bc929a4a253a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4a:95:a5:bc:c7:d9:dc:5f:2f:81:af:7d:28: fe:d1:25:de:3f:fc:df:af:66:ad:99:46:68:14:b9: 9c:cb:ad:63:c1:44:43:05:fe:db:6a:0d:e5:e4:80: fa:0d:00:fd:a2:58:66:dc:e5:ff:fb:58:bc:cc:19: 57:70:bc:b5:96:15:ab:92:95:03:87:25:98:90:18: 99:f1:84:ff:c1:f9:c4:74:6f:7e:84:f8:c1:a0:10: 60:e0:a2:87:73:8d:6a:c3:2d:62:1d:64:15:ba:c0: 29:ad:b1:dc:dc:bd:29:e7:ea:2e:0e:57:4a:07:f0: 43:1b:22:4b:a7:92:39:d9:1a:56:ef:46:3a:34:2f: 63:8e:7a:1d:a0:df:10:dd:4b:74:35:1c:25:77:52: 5e:ed:ba:1e:ef:c5:dd:f9:8a:eb:6b:1a:c4:79:6c: 80:ba:57:cd:6f:19:6a:0a:90:3e:bd:e8:ff:8a:ba: f4:d1:b0:de:8c:4a:84:9b:7d:a9:14:80:c0:7e:7c: a5:56:44:24:38:77:8d:e5:b9:5c:52:7d:af:81:6c: 60:dc:05:74:e2:2a:fb:fc:46:2d:44:43:af:94:1e: db:42:a9:0b:91:ee:47:4c:40:40:1e:03:9c:17:10: e9:c3:68:d1:fc:5f:84:c3:b8:36:2f:9d:fc:e3:9a: 48:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6A:BF:54:32:2B:66:F1:97:12:AF:00:1B:14:04:49:81:90:6B:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ea8bcc3-dbdd-4625-8fcb-b88f42d1cd0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.244.0.0/18 Signature Algorithm: sha256WithRSAEncryption 4b:1f:ba:b1:4b:f1:7f:e8:ce:fc:28:b1:a7:ff:d7:aa:bf:d3: 2b:b0:9b:26:d1:b7:5b:ca:e1:c9:f1:10:a1:b0:4f:ab:c7:74: 07:c4:9e:02:82:8c:9b:90:3d:12:6d:15:12:cc:c9:7d:76:21: a1:36:f6:3a:bb:11:af:bb:7d:0e:14:c7:8f:50:3a:00:5e:dc: 17:69:18:2d:ff:4a:0e:11:71:bc:1f:a5:ff:54:46:b4:06:67: 79:c7:ef:b8:63:33:52:ce:fa:62:c9:93:3e:76:28:e6:09:b9: 51:ba:f4:b9:77:1e:43:38:11:60:ba:10:87:3f:6c:86:85:c8: ee:f1:67:45:9f:e6:6b:43:59:02:88:2a:09:91:0b:53:9e:ab: d5:17:12:9b:1d:89:33:fa:f6:72:3a:b5:b3:91:5e:37:5c:e0: 03:cc:93:50:cc:fa:27:fb:08:c1:6f:e5:76:a3:54:ae:23:0f: 05:c4:83:85:b8:17:4a:06:70:09:c8:bc:c7:4b:3f:86:97:2d: c1:57:04:dd:ef:3f:3f:33:dc:2d:55:56:b5:d8:76:01:7c:ed: 0a:d5:00:09:24:c9:d0:b0:81:90:46:41:43:18:dc:f9:f7:d0: 00:99:27:37:2a:a3:67:5d:18:4f:2f:ce:35:fe:ef:db:59:93: f1:4c:82:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKoJ9C6VZAeynV/aUf5ASOKoa0VAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAzMTE3WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmY4OTVhOTdjNDc3YjFlOWI2OGIzNmEwN2VlMTE5Y2Ey YmQ0NWM4NTcxYTRjMTIxNjliYzkyOWE0YTI1M2ExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOSpWlvMfZ3F8vga99KP7RJd4//N+vZq2ZRmgUuZzLrWPB REMF/ttqDeXkgPoNAP2iWGbc5f/7WLzMGVdwvLWWFauSlQOHJZiQGJnxhP/B+cR0 b36E+MGgEGDgoodzjWrDLWIdZBW6wCmtsdzcvSnn6i4OV0oH8EMbIkunkjnZGlbv Rjo0L2OOeh2g3xDdS3Q1HCV3Ul7tuh7vxd35iutrGsR5bIC6V81vGWoKkD696P+K uvTRsN6MSoSbfakUgMB+fKVWRCQ4d43luVxSfa+BbGDcBXTiKvv8Ri1EQ6+UHttC qQuR7kdMQEAeA5wXEOnDaNH8X4TDuDYvnfzjmkjvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVWq/VDIrZvGXEq8AGxQESYGQa3owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlYThiY2MzLWRiZGQtNDYyNS04ZmNiLWI4OGY0MmQxY2QwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbY9AAwDQYJKoZIhvcNAQELBQADggEBAEsfurFL8X/ozvwosaf/16q/0yuw mybRt1vK4cnxEKGwT6vHdAfEngKCjJuQPRJtFRLMyX12IaE29jq7Ea+7fQ4Ux49Q OgBe3BdpGC3/Sg4Rcbwfpf9URrQGZ3nH77hjM1LO+mLJkz52KOYJuVG69Ll3HkM4 EWC6EIc/bIaFyO7xZ0Wf5mtDWQKIKgmRC1Oeq9UXEpsdiTP69nI6tbORXjdc4APM k1DM+if7CMFv5XajVK4jDwXEg4W4F0oGcAnIvMdLP4aXLcFXBN3vPz8z3C1VVrXY dgF87QrVAAkkydCwgZBGQUMY3Pn30ACZJzcqo2ddGE8vzjX+79tZk/FMgg8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:12:29 2025 by rpki-client