$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa File: b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json) Hash identifier: T3auFctSmg1g7qt63rmNKBZY/h4Vc2bDXsrDVsRARNs= Subject key identifier: D4:24:5B:F7:1D:5F:DD:6E:09:C2:2E:2F:89:F6:B8:2D:F0:0A:F9:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10EB3971B59303DA38E345F42D52A1F61B10C7C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa Signing time: Mon 23 Jun 2025 15:31:23 +0000 ROA not before: Mon 23 Jun 2025 15:31:23 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:eb:39:71:b5:93:03:da:38:e3:45:f4:2d:52:a1:f6:1b:10:c7:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:31:23 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=7731a45922977ab69b74ad7527036b35e058fae7abf22303eae66884804e298e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e0:d7:5e:df:a8:1e:d9:06:83:8e:33:68:70: 8f:d6:94:74:25:3d:df:69:48:14:8a:c7:b7:41:9c: d6:35:0d:88:b3:26:cd:5d:2e:3f:74:aa:71:96:ff: b9:a2:4f:54:76:e0:d5:5b:e6:d7:11:9b:16:31:4c: cf:c6:4a:eb:5d:11:a7:93:89:e4:6d:13:f6:f9:9b: 2c:5a:cf:66:e1:05:00:ed:7a:46:c6:25:08:61:5b: 01:f5:3d:a4:91:7b:8b:77:40:f9:29:6c:e1:3f:4d: f7:ed:1f:e0:c3:b4:f9:c4:a7:03:0d:e4:92:ad:1b: 5c:36:47:55:7a:bd:95:62:b6:04:d7:2d:9e:60:15: 50:36:29:50:fd:fc:32:5c:b0:ee:91:8d:ed:f8:f3: f8:91:e8:aa:54:32:55:40:f9:0b:c9:9a:91:c1:72: 9a:42:c6:c0:b8:84:30:0c:55:e3:27:3e:e8:d7:37: 5f:f8:fc:66:52:2b:eb:ce:3a:4c:75:9d:eb:2a:85: fd:8e:5c:db:7e:bf:5b:7f:16:b1:43:ea:1f:7e:31: 53:1d:c6:f7:00:15:4d:d1:ae:bc:67:e1:b9:20:43: 70:f3:04:e5:7a:e4:9c:06:6a:52:9d:38:aa:22:64: f1:bf:1d:b6:81:88:79:06:eb:2d:f8:9f:1a:13:86: f6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:24:5B:F7:1D:5F:DD:6E:09:C2:2E:2F:89:F6:B8:2D:F0:0A:F9:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:6b:78:b9:7c:72:ea:cd:43:e9:df:50:f4:a9:36:12:e5:59: 11:e0:d4:35:bb:a0:7e:6e:7d:7b:4d:35:2b:ba:dc:e6:02:e9: 6e:18:98:6e:45:0e:4b:d1:d6:18:66:72:36:65:f3:32:af:a1: f2:60:b1:3c:ae:fc:c0:30:67:d8:8e:7b:6f:32:e3:b0:05:7d: 68:84:9e:b0:4f:12:51:3c:44:37:01:df:e4:84:3c:5c:4d:1a: 09:6c:15:8b:4f:33:cc:35:ad:25:04:76:01:9f:1c:62:d2:c0: dd:23:75:1e:93:58:37:31:b9:37:d3:f5:2c:3b:f9:15:8a:e0: 1f:d3:71:58:7c:7a:58:c4:3d:87:17:a8:fb:3d:70:47:ac:29: 7f:96:cb:bc:6c:13:6a:da:6a:e9:e6:cd:de:fe:f0:e9:f2:59: 20:2e:bc:4e:94:e8:f3:af:ff:a5:1d:e2:8c:25:97:c7:b1:85: 54:0d:7b:0e:af:0c:0f:70:2a:6c:ab:7c:7e:c9:c1:1c:89:00: 57:6d:4e:c8:f7:2b:6d:9e:66:8a:37:7a:03:80:e9:76:cd:32: b3:39:fd:5e:1d:91:0a:df:ea:b5:82:73:89:6c:d6:99:06:79: 54:89:50:95:4d:e7:50:a4:d1:48:87:0a:ea:1d:a8:e3:a0:16: 38:2e:0c:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEOs5cbWTA9o440X0LVKh9hsQx8kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUzMTIzWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzMxYTQ1OTIyOTc3YWI2OWI3NGFkNzUyNzAzNmIzNWUw NThmYWU3YWJmMjIzMDNlYWU2Njg4NDgwNGUyOThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO4Nde36ge2QaDjjNocI/WlHQlPd9pSBSKx7dBnNY1DYiz Js1dLj90qnGW/7miT1R24NVb5tcRmxYxTM/GSutdEaeTieRtE/b5myxaz2bhBQDt ekbGJQhhWwH1PaSRe4t3QPkpbOE/TfftH+DDtPnEpwMN5JKtG1w2R1V6vZVitgTX LZ5gFVA2KVD9/DJcsO6Rje348/iR6KpUMlVA+QvJmpHBcppCxsC4hDAMVeMnPujX N1/4/GZSK+vOOkx1nesqhf2OXNt+v1t/FrFD6h9+MVMdxvcAFU3Rrrxn4bkgQ3Dz BOV65JwGalKdOKoiZPG/HbaBiHkG6y34nxoThvaNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1CRb9x1f3W4Jwi4vifa4LfAK+SwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAVWt4uXxy6s1D6d9Q9Kk2EuVZEeDU Nbugfm59e001K7rc5gLpbhiYbkUOS9HWGGZyNmXzMq+h8mCxPK78wDBn2I57bzLj sAV9aISesE8SUTxENwHf5IQ8XE0aCWwVi08zzDWtJQR2AZ8cYtLA3SN1HpNYNzG5 N9P1LDv5FYrgH9NxWHx6WMQ9hxeo+z1wR6wpf5bLvGwTatpq6ebN3v7w6fJZIC68 TpTo86//pR3ijCWXx7GFVA17Dq8MD3AqbKt8fsnBHIkAV21OyPcrbZ5mijd6A4Dp ds0yszn9Xh2RCt/qtYJziWzWmQZ5VIlQlU3nUKTRSIcK6h2o46AWOC4MgA== -----END CERTIFICATE-----Generated at Sun Jun 29 21:10:36 2025 by rpki-client