$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa File: b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa (raw, json) Hash identifier: PiGXn0yzokRk4S9SgD5Kw5TfUv1Buj9c3UsQxfM2KDs= Subject key identifier: B0:89:3C:A2:A8:11:7F:D7:16:58:F4:1A:FA:AD:E6:B2:52:76:16:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78096292A6A36243027B4A365BAAF2D54EBB5A48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa Signing time: Fri 08 Aug 2025 00:20:21 +0000 ROA not before: Fri 08 Aug 2025 00:20:21 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:09:62:92:a6:a3:62:43:02:7b:4a:36:5b:aa:f2:d5:4e:bb:5a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:20:21 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=b6b08c9573f47ff9fb477890af8d21bfeeff7ab6a940b0adaf75e3a79ca1d547, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e8:4b:a4:99:da:6c:a2:b6:40:f0:4e:95:65: ed:b9:e0:c6:ad:9a:ff:1e:76:46:36:70:e5:b6:5f: 06:df:dd:fd:35:ee:55:cf:1a:80:da:4f:31:3a:b6: e0:96:b3:8b:9a:d0:a5:7a:a3:83:21:bd:6f:7b:d6: 90:5d:95:1d:65:3b:94:76:fe:60:de:a0:51:3f:57: 04:e0:1b:1f:2b:4e:04:a3:31:9f:85:92:c3:ad:f2: e7:cf:69:b3:be:0b:5a:4e:03:5a:b5:72:04:ac:3e: da:52:db:af:ce:1c:40:08:88:d7:04:58:45:f9:56: 9b:0f:7c:9c:62:25:04:52:d2:45:33:07:c0:10:81: 09:ef:31:7e:a0:45:e4:cc:90:9f:cb:82:30:28:2d: 6c:16:10:40:8f:7d:4c:7f:b2:94:33:a7:f9:c7:9e: 44:c5:3e:91:13:39:76:7e:98:86:74:e1:7d:d7:e1: ba:25:9f:87:a7:68:29:ff:93:ed:71:a7:3c:d4:9c: cd:9a:e0:f0:07:af:b0:aa:f2:59:c6:13:95:d0:0e: 07:6e:83:21:4d:c2:eb:3e:dd:5b:f6:ab:07:cf:d7: eb:02:13:98:e9:70:dd:8f:39:b9:69:c7:c7:50:62: 76:45:28:37:7f:ee:53:2f:3d:96:d1:de:58:1a:b2: dd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:89:3C:A2:A8:11:7F:D7:16:58:F4:1A:FA:AD:E6:B2:52:76:16:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 42:40:30:b5:84:20:08:ef:75:fb:28:c0:cf:1f:c7:f8:e1:50: 11:68:0f:5a:87:be:f9:7e:85:42:82:11:7f:92:60:80:7e:db: ac:54:ad:e5:49:8c:2e:bc:37:ee:a3:c9:fd:41:9e:5a:70:35: d0:14:3a:9b:cd:30:1a:72:29:c4:e3:6d:0c:f0:78:6f:90:26: 60:9c:ab:ee:8c:0c:ce:26:c8:8c:28:b3:54:e5:5e:a6:01:e7: 05:22:2d:0c:76:9c:c4:32:ca:b5:90:16:1b:c0:44:63:31:e5: 20:eb:30:00:75:e4:c5:73:f3:14:15:25:22:08:7f:46:5f:99: f5:d7:95:a5:0b:f2:c5:24:6f:87:6d:4a:d8:8d:57:46:43:37: d9:00:74:c5:59:30:c3:3a:66:f2:aa:7a:2e:43:f5:e1:ed:fa: 46:31:44:b4:2e:b1:8f:28:22:58:9b:5c:d3:6e:d1:3c:fa:a2: d8:25:ab:42:a2:77:15:73:0a:76:40:b2:21:dc:f5:54:fe:26: 7f:b5:d9:5c:82:cc:a9:48:36:60:46:f7:34:76:b1:fc:e8:d8: 7f:d2:6f:9b:15:30:88:c5:3c:b6:8a:0f:8f:6f:7d:4f:3f:3d: 6f:27:83:f8:07:47:aa:dc:88:44:b8:ab:5e:8a:30:78:ab:da: 70:49:07:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeAlikqajYkMCe0o2W6ry1U67WkgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMDIxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmIwOGM5NTczZjQ3ZmY5ZmI0Nzc4OTBhZjhkMjFiZmVl ZmY3YWI2YTk0MGIwYWRhZjc1ZTNhNzljYTFkNTQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP6EukmdpsorZA8E6VZe254Matmv8edkY2cOW2Xwbf3f01 7lXPGoDaTzE6tuCWs4ua0KV6o4MhvW971pBdlR1lO5R2/mDeoFE/VwTgGx8rTgSj MZ+FksOt8ufPabO+C1pOA1q1cgSsPtpS26/OHEAIiNcEWEX5VpsPfJxiJQRS0kUz B8AQgQnvMX6gReTMkJ/LgjAoLWwWEECPfUx/spQzp/nHnkTFPpETOXZ+mIZ04X3X 4boln4enaCn/k+1xpzzUnM2a4PAHr7Cq8lnGE5XQDgdugyFNwus+3Vv2qwfP1+sC E5jpcN2POblpx8dQYnZFKDd/7lMvPZbR3lgast3nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsIk8oqgRf9cWWPQa+q3mslJ2FkwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzQzM2ExLTUyYmQtNGEzNC1hZjM1LWE2MWMzOGQyYWUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBAEJAMLWEIAjvdfsowM8fx/jhUBFo D1qHvvl+hUKCEX+SYIB+26xUreVJjC68N+6jyf1BnlpwNdAUOpvNMBpyKcTjbQzw eG+QJmCcq+6MDM4myIwos1TlXqYB5wUiLQx2nMQyyrWQFhvARGMx5SDrMAB15MVz 8xQVJSIIf0ZfmfXXlaUL8sUkb4dtStiNV0ZDN9kAdMVZMMM6ZvKqei5D9eHt+kYx RLQusY8oIlibXNNu0Tz6otglq0KidxVzCnZAsiHc9VT+Jn+12VyCzKlINmBG9zR2 sfzo2H/Sb5sVMIjFPLaKD49vfU8/PW8ng/gHR6rciES4q16KMHir2nBJBzI= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:24 2025 by rpki-client