$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa File: d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa (raw, json) Hash identifier: dLRphlurHST8KCzZtd2laMNmecSrTRlJbScLwGxKktw= Subject key identifier: 3A:EC:D6:B8:F4:C4:F5:FB:25:32:F8:48:FD:05:29:BC:66:E0:5D:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 040A9FC96726BECF7682709934809E6A1D97DDC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa Signing time: Fri 08 Aug 2025 00:20:19 +0000 ROA not before: Fri 08 Aug 2025 00:20:19 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0a:9f:c9:67:26:be:cf:76:82:70:99:34:80:9e:6a:1d:97:dd:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:20:19 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=1c110ac1b452d5d274e8234d376da678f8eb5c02a9e78a706fd9dd4a4cf9299c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:c0:98:29:0f:d8:6b:bf:40:a4:c7:66:5a: 5c:7f:85:41:15:53:13:74:be:c5:d4:15:10:f6:36: c6:4f:4d:07:b1:32:9a:d8:f8:53:2c:a4:32:2a:fa: ec:45:ad:ec:a6:05:4d:1d:7c:ff:2d:04:9f:e8:6d: f8:68:6f:3f:b0:66:f7:0a:12:db:c7:a5:b5:85:6b: 2b:f8:7a:99:7e:8e:3e:ed:95:14:f0:0b:15:41:28: 71:13:11:12:c8:d4:d7:8e:55:86:50:c4:d2:1d:60: 20:bb:5c:28:c7:ee:c4:9b:78:c2:59:6c:e5:f7:cc: 07:86:bd:57:62:54:9a:8b:e3:c7:e9:73:81:3b:31: a9:15:8e:56:a3:30:f2:6f:8b:47:db:ea:33:67:bd: 4e:57:e3:02:89:0f:88:07:af:b0:ac:09:e7:7e:e0: 6a:e7:73:4b:a7:db:59:8a:60:81:6f:65:84:52:01: 4e:5d:49:01:d3:58:ae:f3:11:f5:91:f0:bf:1e:81: ea:2a:0a:4a:d7:0a:09:2a:9d:71:1f:88:a2:bb:1e: 2d:37:70:96:82:9d:38:fe:cf:c0:01:d4:98:3f:5d: 1f:b0:1a:37:72:e5:c8:66:ec:8e:8f:5c:02:f8:8b: 88:e4:11:2e:ee:a6:82:12:4a:c5:0b:14:b1:bf:1f: d3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:EC:D6:B8:F4:C4:F5:FB:25:32:F8:48:FD:05:29:BC:66:E0:5D:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.163.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:b3:ec:92:e4:1d:d0:5d:2c:a2:34:8a:31:cd:dc:12:e4:ae: d8:49:27:e6:b7:b5:2c:0f:20:76:74:10:aa:a7:bb:2c:f2:e3: 9b:98:a6:76:13:4b:cf:c6:5e:e7:c0:4e:a8:e6:2e:31:ad:c5: b4:45:6c:03:aa:5f:26:74:e4:ab:5d:48:93:de:1e:24:2c:a8: a8:e4:8d:47:67:b2:8d:18:c1:85:c6:aa:72:dd:24:f4:1a:40: 7c:b5:b8:8c:95:94:95:ab:df:09:dc:52:0d:72:3e:6e:33:bd: a2:e7:f9:34:67:5c:b1:6f:50:63:85:b5:b2:21:f0:cb:57:01: 92:60:db:36:53:1a:b5:08:cd:15:20:cd:60:65:63:c7:0a:0b: 64:e6:77:3d:04:87:6f:9d:9c:24:5e:ef:4c:e0:64:43:46:58: 68:6d:0d:76:37:a2:77:94:6f:2e:81:3a:3e:e9:2f:24:e2:0b: 79:3a:95:6a:c3:38:61:26:79:6d:79:8f:66:6f:a4:fe:83:6c: f6:43:c7:c0:32:ed:44:9f:3a:6b:c2:2c:c2:66:e6:d4:53:6d: 03:98:94:49:84:6b:ac:9c:ab:19:e8:51:a9:e2:09:db:aa:bc: f5:d6:f5:39:fa:a7:d9:44:17:db:cf:ff:99:2c:1c:9f:14:b4: 39:04:9a:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBAqfyWcmvs92gnCZNICeah2X3cQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMDE5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzExMGFjMWI0NTJkNWQyNzRlODIzNGQzNzZkYTY3OGY4 ZWI1YzAyYTllNzhhNzA2ZmQ5ZGQ0YTRjZjkyOTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvssCYKQ/Ya79ApMdmWlx/hUEVUxN0vsXUFRD2NsZPTQex MprY+FMspDIq+uxFreymBU0dfP8tBJ/obfhobz+wZvcKEtvHpbWFayv4epl+jj7t lRTwCxVBKHETERLI1NeOVYZQxNIdYCC7XCjH7sSbeMJZbOX3zAeGvVdiVJqL48fp c4E7MakVjlajMPJvi0fb6jNnvU5X4wKJD4gHr7CsCed+4Grnc0un21mKYIFvZYRS AU5dSQHTWK7zEfWR8L8egeoqCkrXCgkqnXEfiKK7Hi03cJaCnTj+z8AB1Jg/XR+w Gjdy5chm7I6PXAL4i4jkES7upoISSsULFLG/H9MJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOuzWuPTE9fslMvhI/QUpvGbgXbIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZGNhMmVjLTg3ZTItNDAxNC1hNWFkLTBhZmZjMDZjMmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36MwDQYJKoZIhvcNAQELBQADggEBAGuz7JLkHdBdLKI0ijHN3BLkrthJ J+a3tSwPIHZ0EKqnuyzy45uYpnYTS8/GXufATqjmLjGtxbRFbAOqXyZ05KtdSJPe HiQsqKjkjUdnso0YwYXGqnLdJPQaQHy1uIyVlJWr3wncUg1yPm4zvaLn+TRnXLFv UGOFtbIh8MtXAZJg2zZTGrUIzRUgzWBlY8cKC2Tmdz0Eh2+dnCRe70zgZENGWGht DXY3oneUby6BOj7pLyTiC3k6lWrDOGEmeW15j2ZvpP6DbPZDx8Ay7USfOmvCLMJm 5tRTbQOYlEmEa6ycqxnoUaniCduqvPXW9Tn6p9lEF9vP/5ksHJ8UtDkEmqs= -----END CERTIFICATE-----Generated at Sat Aug 23 18:37:15 2025 by rpki-client