$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa File: a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa (raw, json) Hash identifier: +rS/J36LJ7qV4pLeffN3aCJksPjXoppzsHRQJ4Qc7Dw= Subject key identifier: 3E:69:DC:F0:CF:CD:25:1A:BC:B9:94:42:62:49:E3:FF:AE:2D:12:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AEE849D697F2D807B433D2D3199BDC561D8C170 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa Signing time: Sat 16 Aug 2025 00:00:22 +0000 ROA not before: Sat 16 Aug 2025 00:00:22 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ee:84:9d:69:7f:2d:80:7b:43:3d:2d:31:99:bd:c5:61:d8:c1:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:00:22 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=7be1adf0512d734d4689a8f4f2b9a1394e6d0e6d7677388400bcb856940526ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:ce:1e:5d:ba:46:55:24:a6:7c:94:84:93: 6b:e4:51:40:4a:f1:f6:5a:6b:7c:10:0e:e5:8d:f7: 4f:7d:91:5e:45:55:bd:40:69:13:79:d4:62:a5:1b: 77:01:0d:b0:6f:71:7e:17:1a:ee:55:4f:61:6d:52: b0:d6:9f:8b:03:c2:ae:42:32:97:c4:c8:8b:f9:d9: ed:fa:98:03:d4:fb:62:ae:cf:0e:ca:6b:49:6b:d7: 11:55:f4:47:79:54:df:30:da:60:69:ad:19:ab:8c: 9c:9f:22:82:65:f7:b2:d2:48:e2:d3:5c:98:99:90: 5b:92:39:c9:39:11:c1:02:23:67:dc:94:de:c1:6d: 91:20:1b:c4:2a:bb:60:db:a5:45:58:90:af:d8:f9: c0:91:cc:f1:82:dc:03:86:b8:4a:36:c4:fc:84:57: aa:2f:f8:d1:ae:49:c2:f1:df:93:e5:23:bd:74:43: 00:74:36:8d:85:37:a3:d9:2f:6e:4f:aa:18:47:c5: 64:a7:85:60:58:7b:51:df:23:8a:a4:20:f0:1b:64: 37:ee:c5:a5:18:b6:be:e7:e3:c6:c8:d2:96:97:8c: e1:a4:b9:4d:19:8b:5d:62:4d:f9:5b:d5:d4:ba:8b: 37:a9:05:61:8e:01:a7:7b:ca:88:ea:54:4d:db:34: 4e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:69:DC:F0:CF:CD:25:1A:BC:B9:94:42:62:49:E3:FF:AE:2D:12:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a8abc7a0-bef0-495d-b505-788ff46b2c4f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.144.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:22:0c:09:2b:b2:00:11:b6:48:4b:17:ca:2a:ea:7c:6c:b7: 3e:d7:eb:df:fe:2d:68:4c:3b:63:0c:82:28:82:3d:83:6a:fd: 99:26:3f:f2:98:86:8e:9b:86:d5:7f:36:6c:30:f9:7e:e3:87: e2:93:70:4b:9b:d9:3f:53:d5:bc:15:6a:2e:87:a4:ea:b1:61: 3b:61:9d:bf:d9:bd:27:08:bc:e9:31:e8:06:b2:5e:b7:85:cb: d5:0c:f2:a2:5a:45:2d:18:cf:e7:96:e5:ef:bd:06:ad:70:c2: 11:8c:fc:2b:c4:c8:17:99:4b:b9:da:58:bb:a3:e3:2a:cc:0e: 51:4d:99:4a:da:a1:da:98:7f:50:5f:fa:69:5a:99:5a:0e:8b: 20:3d:d0:99:e2:c5:20:bb:ed:5c:06:4c:8a:6e:b9:e4:c9:e6: e9:07:cd:6f:f8:cf:90:e0:e5:63:62:93:f0:00:cc:41:36:1d: 6e:3f:09:27:36:55:70:41:df:ed:b8:0a:ec:23:cd:78:b7:7e: 9c:64:5a:3b:de:98:59:16:36:e5:7f:bc:f2:8b:e8:b0:93:38: f7:10:a0:9d:e2:2c:cc:9a:29:1b:b9:25:a3:55:69:95:88:53: 8e:21:c5:71:0e:f3:91:0c:ac:8d:72:60:a6:56:c8:ce:57:65: c6:e6:fd:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGu6EnWl/LYB7Qz0tMZm9xWHYwXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAwMDIyWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmUxYWRmMDUxMmQ3MzRkNDY4OWE4ZjRmMmI5YTEzOTRl NmQwZTZkNzY3NzM4ODQwMGJjYjg1Njk0MDUyNmVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM9M4eXbpGVSSmfJSEk2vkUUBK8fZaa3wQDuWN9099kV5F Vb1AaRN51GKlG3cBDbBvcX4XGu5VT2FtUrDWn4sDwq5CMpfEyIv52e36mAPU+2Ku zw7Ka0lr1xFV9Ed5VN8w2mBprRmrjJyfIoJl97LSSOLTXJiZkFuSOck5EcECI2fc lN7BbZEgG8Qqu2DbpUVYkK/Y+cCRzPGC3AOGuEo2xPyEV6ov+NGuScLx35PlI710 QwB0No2FN6PZL25PqhhHxWSnhWBYe1HfI4qkIPAbZDfuxaUYtr7n48bI0paXjOGk uU0Zi11iTflb1dS6izepBWGOAad7yojqVE3bNE4hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPmnc8M/NJRq8uZRCYknj/64tEuUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4YWJjN2EwLWJlZjAtNDk1ZC1iNTA1LTc4OGZmNDZiMmM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgJAwDQYJKoZIhvcNAQELBQADggEBABoiDAkrsgARtkhLF8oq6nxstz7X 69/+LWhMO2MMgiiCPYNq/ZkmP/KYho6bhtV/Nmww+X7jh+KTcEub2T9T1bwVai6H pOqxYTthnb/ZvScIvOkx6AayXreFy9UM8qJaRS0Yz+eW5e+9Bq1wwhGM/CvEyBeZ S7naWLuj4yrMDlFNmUraodqYf1Bf+mlamVoOiyA90JnixSC77VwGTIpuueTJ5ukH zW/4z5Dg5WNik/AAzEE2HW4/CSc2VXBB3+24CuwjzXi3fpxkWjvemFkWNuV/vPKL 6LCTOPcQoJ3iLMyaKRu5JaNVaZWIU44hxXEO85EMrI1yYKZWyM5XZcbm/dU= -----END CERTIFICATE-----Generated at Sat Aug 23 12:24:03 2025 by rpki-client