$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa File: 9544df28-c3ca-47ba-851e-1178b9c685ec.roa (raw, json) Hash identifier: J4ds3Eb6qutpvGcbfJPmM4rXAVFj4FP+sNVrlD9O71o= Subject key identifier: BB:FB:73:4E:F2:95:77:37:C7:E7:3D:73:76:59:FD:28:29:F3:02:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F55A5A7CBF80D4251FB83C31CCB9ABCFFD3144B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa Signing time: Tue 12 Aug 2025 00:50:58 +0000 ROA not before: Tue 12 Aug 2025 00:50:58 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:55:a5:a7:cb:f8:0d:42:51:fb:83:c3:1c:cb:9a:bc:ff:d3:14:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:50:58 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=1f09a99a46a95ecb2b1e590abdcea9a23d3d0ff0dc87b41be94bab3471e3ff52, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2c:ef:da:83:f5:4c:fe:3d:42:93:02:8b:67: 61:31:d5:27:53:35:77:61:7e:e6:f8:91:d3:71:41: 5f:28:a5:be:43:9d:94:21:7d:c5:a4:30:64:81:bb: ff:46:26:c9:db:58:bb:11:3f:10:cd:fa:6a:8d:85: 64:06:61:95:54:62:e6:cd:79:82:03:51:a0:6c:9f: 7b:75:8f:e3:85:5f:33:1b:d1:a4:ff:ac:31:c4:6e: 71:00:2c:ca:42:8c:f6:e3:1a:9a:96:5f:9f:02:a5: 94:54:87:85:17:76:73:24:11:31:51:ed:31:3f:62: df:f4:85:6d:97:54:bf:ca:a6:d4:c9:21:38:9e:2d: b0:32:fd:3d:15:d3:39:f7:ca:2a:a9:d9:ce:f9:33: ea:57:8a:df:a5:46:48:b5:62:91:1c:7d:49:66:c0: e0:70:10:2a:65:b8:9c:4f:c8:b1:5f:c6:38:07:9b: c1:c2:49:2f:d8:97:c5:41:74:3d:2d:c4:33:17:35: ef:1f:ed:d4:71:42:2d:ad:65:3d:1a:44:b3:17:2f: 58:95:e7:2b:4f:95:1e:18:4f:a8:73:37:30:51:84: b9:66:74:9b:85:3e:62:e1:e4:cc:aa:d0:5f:f3:cd: 23:04:af:6e:2c:b6:10:a1:ba:7d:7c:fb:5b:70:b7: 5b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FB:73:4E:F2:95:77:37:C7:E7:3D:73:76:59:FD:28:29:F3:02:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.48.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:d5:0c:41:ed:ca:66:29:40:17:a2:1a:26:3a:74:4b:1b:23: 90:62:a5:fc:a3:07:f3:13:fa:ba:9f:e5:2f:3f:c6:54:d3:92: 22:81:10:db:2d:c6:b1:90:6a:80:51:e3:10:ad:42:0e:d3:4c: d0:52:74:35:cd:9a:34:07:6a:a1:6b:3b:36:f8:62:eb:26:3b: a1:b7:c9:45:91:59:39:f8:97:f3:25:2e:90:3a:6e:c9:d0:32: 9d:74:91:0c:3c:fc:2e:a0:b8:d6:cc:b9:72:50:4f:e0:65:a3: 85:b6:4f:e4:d8:24:7f:a3:1b:6f:fe:bb:b1:92:7c:0a:e8:8e: d6:24:79:c8:5d:cb:c3:26:3a:ea:55:7d:e5:35:5f:06:a7:0c: 8f:2e:2d:ff:86:32:bd:80:d3:dc:ad:5e:64:30:7c:9b:0e:10: 42:af:f0:34:81:eb:f4:ff:4b:34:56:df:6f:0a:b8:c4:6c:b1: af:35:c7:5c:93:61:72:80:20:19:5a:23:b0:69:88:8d:21:91: 65:3a:ec:55:20:12:c3:57:4f:8d:89:31:6f:c9:48:2f:e5:7e: ba:3f:02:39:8e:f6:bc:81:c1:cd:6a:6b:4f:a7:e9:d2:42:ee: 62:30:b6:29:84:3b:57:a0:87:5e:de:8a:f7:02:87:ad:49:ed: 70:67:c8:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP1Wlp8v4DUJR+4PDHMuavP/TFEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MDU4WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjA5YTk5YTQ2YTk1ZWNiMmIxZTU5MGFiZGNlYTlhMjNk M2QwZmYwZGM4N2I0MWJlOTRiYWIzNDcxZTNmZjUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxLO/ag/VM/j1CkwKLZ2Ex1SdTNXdhfub4kdNxQV8opb5D nZQhfcWkMGSBu/9GJsnbWLsRPxDN+mqNhWQGYZVUYubNeYIDUaBsn3t1j+OFXzMb 0aT/rDHEbnEALMpCjPbjGpqWX58CpZRUh4UXdnMkETFR7TE/Yt/0hW2XVL/KptTJ ITieLbAy/T0V0zn3yiqp2c75M+pXit+lRki1YpEcfUlmwOBwECpluJxPyLFfxjgH m8HCSS/Yl8VBdD0txDMXNe8f7dRxQi2tZT0aRLMXL1iV5ytPlR4YT6hzNzBRhLlm dJuFPmLh5Myq0F/zzSMEr24sthChun18+1twt1tJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu/tzTvKVdzfH5z1zdln9KCnzAoAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1NDRkZjI4LWMzY2EtNDdiYS04NTFlLTExNzhiOWM2ODVlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgADAwDQYJKoZIhvcNAQELBQADggEBAB/VDEHtymYpQBeiGiY6dEsbI5Bi pfyjB/MT+rqf5S8/xlTTkiKBENstxrGQaoBR4xCtQg7TTNBSdDXNmjQHaqFrOzb4 YusmO6G3yUWRWTn4l/MlLpA6bsnQMp10kQw8/C6guNbMuXJQT+Blo4W2T+TYJH+j G2/+u7GSfArojtYkechdy8MmOupVfeU1XwanDI8uLf+GMr2A09ytXmQwfJsOEEKv 8DSB6/T/SzRW328KuMRssa81x1yTYXKAIBlaI7BpiI0hkWU67FUgEsNXT42JMW/J SC/lfro/AjmO9ryBwc1qa0+n6dJC7mIwtimEO1egh17eivcCh61J7XBnyHc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:34 2025 by rpki-client