$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9521470e-60a8-4627-854b-23346de593e3.roa File: 9521470e-60a8-4627-854b-23346de593e3.roa (raw, json) Hash identifier: pXyWctb+HsmEwFEHAit8KWC3OOo4FHBHTwyhUNfapaU= Subject key identifier: E1:F6:4E:DB:26:5B:CE:AB:92:12:BC:EE:19:A6:BF:75:DE:78:88:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67D9DD7E7FA6D15BC054CE9FDE2027EB7F8D723A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9521470e-60a8-4627-854b-23346de593e3.roa Signing time: Tue 12 Aug 2025 00:01:17 +0000 ROA not before: Tue 12 Aug 2025 00:01:17 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d9:dd:7e:7f:a6:d1:5b:c0:54:ce:9f:de:20:27:eb:7f:8d:72:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:17 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=146eba94d28c8811e708cb2f3b660a9b24489cbbb34423a77b05b9f19d1fb1ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:74:c5:22:05:38:53:a6:9f:72:4a:90:00: d5:8e:77:ce:4f:d1:55:17:f7:8b:ce:db:e2:24:db: bf:8c:6c:58:8a:aa:1a:56:3f:d9:ff:88:0b:bb:53: bd:11:44:c7:75:0d:6b:42:88:e2:1a:4d:d5:31:30: 98:69:21:71:1e:9d:9e:6f:6a:a6:9e:ed:d7:79:b9: 3c:fd:d2:8a:dc:a9:31:d7:0e:10:f1:72:fa:91:97: 22:27:b9:e6:a1:3c:e3:eb:08:62:27:9c:ad:a1:21: 4f:9d:d4:30:a6:fc:39:30:59:16:2e:00:1a:65:11: 1a:6f:9c:07:69:22:51:c1:93:3d:47:a8:c6:7c:0a: 3d:a6:83:7e:83:35:7d:dd:db:68:dd:ef:55:bd:b8: d9:a8:ef:33:82:69:96:59:56:19:24:9e:ec:cf:ff: 7a:36:ab:a1:71:88:fd:74:e9:11:36:fc:cd:81:45: 88:f0:88:12:25:a0:45:83:31:3e:f1:d3:3b:21:a8: 5e:4d:df:8e:b3:99:16:e6:23:30:7f:81:09:8b:a8: f9:76:67:cb:a4:02:29:aa:b9:ff:db:5f:8d:4e:4d: 13:5b:6a:0a:76:ce:5c:41:5a:69:ad:2f:85:7f:e5: e4:55:66:52:06:94:99:f7:09:20:28:44:b1:6a:6d: 6f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F6:4E:DB:26:5B:CE:AB:92:12:BC:EE:19:A6:BF:75:DE:78:88:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9521470e-60a8-4627-854b-23346de593e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:5d:55:f2:83:ad:80:2d:17:74:6f:6c:24:b1:88:43:fc:ce: cb:97:cd:3a:f4:98:7a:3d:3c:70:9d:dd:d6:6c:c8:f6:45:9b: b1:99:72:86:83:61:78:77:28:1d:c0:66:e8:74:3e:2c:b7:99: a7:c6:64:bf:95:67:c5:70:f8:fa:f9:fe:e1:be:f7:68:ec:71: e1:06:9e:c5:eb:c0:54:fb:93:44:bc:6f:bb:be:d2:de:2c:67: d1:30:a6:e0:4d:7a:d1:74:a7:aa:f5:41:66:31:e0:b5:3a:00: 23:13:04:77:fd:c1:71:1b:c9:15:8f:b7:03:40:c8:bd:7d:8c: 9d:39:6d:92:98:a8:98:59:5f:2a:70:64:89:39:cf:f9:fc:d1: 03:c0:09:78:a2:03:9f:77:ee:05:a6:3e:82:24:bd:e9:a9:83: a8:fd:ac:29:96:f9:f7:71:b6:47:4c:09:92:2e:58:c9:39:e2: bf:ce:16:25:74:cb:7a:cd:fe:ee:cc:1d:7d:15:2c:95:36:18: b3:47:9a:00:d6:c0:37:55:04:cf:35:73:99:e4:2b:29:40:1d: 56:1b:38:09:05:b8:4f:9d:8c:6c:6d:51:4f:23:bc:ff:f6:19: 0d:5a:14:4f:71:28:20:89:6b:95:c2:ce:0a:90:db:4c:9d:f3: c9:e8:a8:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ9ndfn+m0VvAVM6f3iAn63+NcjowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTE3WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDZlYmE5NGQyOGM4ODExZTcwOGNiMmYzYjY2MGE5YjI0 NDg5Y2JiYjM0NDIzYTc3YjA1YjlmMTlkMWZiMWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzVHTFIgU4U6afckqQANWOd85P0VUX94vO2+Ik27+MbFiK qhpWP9n/iAu7U70RRMd1DWtCiOIaTdUxMJhpIXEenZ5vaqae7dd5uTz90orcqTHX DhDxcvqRlyInueahPOPrCGInnK2hIU+d1DCm/DkwWRYuABplERpvnAdpIlHBkz1H qMZ8Cj2mg36DNX3d22jd71W9uNmo7zOCaZZZVhkknuzP/3o2q6FxiP106RE2/M2B RYjwiBIloEWDMT7x0zshqF5N346zmRbmIzB/gQmLqPl2Z8ukAimquf/bX41OTRNb agp2zlxBWmmtL4V/5eRVZlIGlJn3CSAoRLFqbW/rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4fZO2yZbzquSErzuGaa/dd54iKIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1MjE0NzBlLTYwYTgtNDYyNy04NTRiLTIzMzQ2ZGU1OTNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP2zANBgkqhkiG9w0BAQsFAAOCAQEAHl1V8oOtgC0XdG9sJLGIQ/zOy5fN OvSYej08cJ3d1mzI9kWbsZlyhoNheHcoHcBm6HQ+LLeZp8Zkv5VnxXD4+vn+4b73 aOxx4QaexevAVPuTRLxvu77S3ixn0TCm4E160XSnqvVBZjHgtToAIxMEd/3BcRvJ FY+3A0DIvX2MnTltkpiomFlfKnBkiTnP+fzRA8AJeKIDn3fuBaY+giS96amDqP2s KZb593G2R0wJki5YyTniv84WJXTLes3+7swdfRUslTYYs0eaANbAN1UEzzVzmeQr KUAdVhs4CQW4T52MbG1RTyO8//YZDVoUT3EoIIlrlcLOCpDbTJ3zyeioag== -----END CERTIFICATE-----Generated at Sat Aug 23 09:11:15 2025 by rpki-client