$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1f85432-f5d6-46bf-839b-ed4e9037cb30.roa File: e1f85432-f5d6-46bf-839b-ed4e9037cb30.roa (raw, json) Hash identifier: T96bILdTtGiRFR//fEgeZgQfRTthFeiqse/0ws4ae5M= Subject key identifier: BC:49:10:B9:C8:C2:67:17:5A:86:A3:18:CB:56:AB:57:08:3E:D2:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 261C9E73DF449090313C6E39B59292622A246DBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1f85432-f5d6-46bf-839b-ed4e9037cb30.roa Signing time: Fri 22 Aug 2025 00:40:32 +0000 ROA not before: Fri 22 Aug 2025 00:40:32 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.190.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1c:9e:73:df:44:90:90:31:3c:6e:39:b5:92:92:62:2a:24:6d:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:40:32 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=fb663271d63c2bffabc9f30d1d24254cda4ea597aa5a5140561683cdf0d5e864, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:48:f0:58:64:1c:b8:e9:31:15:25:aa:1b:5f: 8b:41:19:3b:71:2e:52:ae:f0:27:b5:d9:e5:ae:90: 08:8f:89:a0:8b:08:6c:bb:45:0c:1f:f4:5d:62:0e: e4:27:4d:a4:e5:33:b8:6f:01:0d:77:a7:f1:7c:95: e5:f4:e6:2c:dc:1a:4b:9c:57:d0:fa:8c:1b:5e:c8: 9b:bb:db:5a:a9:66:99:af:95:91:ea:d6:e9:10:7f: 6d:e6:96:db:16:de:ef:92:18:7b:a3:12:fe:88:e8: e2:39:90:68:d8:c3:4b:c4:74:ed:7d:b1:e0:05:43: f2:f1:89:48:47:ee:b1:6f:81:18:a7:da:a4:66:c3: 3b:5f:07:b8:e7:52:c4:a8:08:6e:e2:a1:4d:8b:9b: 38:8a:ca:10:25:bb:23:40:45:6f:05:e0:1e:fd:cd: ec:f7:60:4e:c3:cb:fc:f2:94:fb:a8:7a:09:da:c9: a6:38:ba:f8:af:46:11:c0:51:96:57:a7:0d:c6:d0: 19:da:31:58:81:39:b1:8b:fc:55:18:da:97:7e:09: aa:7b:44:40:5d:b7:f7:55:c9:67:1d:e1:ff:31:d6: 54:81:cf:01:92:dd:b5:86:1f:ce:56:a2:c5:b4:ae: d1:17:58:93:39:de:24:76:bf:c3:a5:75:5c:46:68: 56:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:49:10:B9:C8:C2:67:17:5A:86:A3:18:CB:56:AB:57:08:3E:D2:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1f85432-f5d6-46bf-839b-ed4e9037cb30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.190.148.0/24 Signature Algorithm: sha256WithRSAEncryption 91:8a:77:21:fe:78:de:c7:29:78:22:66:a0:ef:f1:b1:b4:f1: 61:4f:73:a6:32:9f:55:88:b5:3c:1b:8b:83:c5:65:0f:e9:98: 81:e2:7c:f5:4b:70:00:d9:33:50:77:a5:92:01:04:31:95:b9: 75:20:fb:29:57:c0:ed:09:c1:bf:ef:8a:f8:10:5c:81:80:a7: c3:30:da:f4:38:cc:67:d5:26:f6:6f:f8:0a:ea:0c:55:d3:f2: b5:ce:f3:2e:ea:6e:6d:c0:2e:29:42:79:5d:60:75:72:d1:24: 0c:be:93:e0:da:f6:e9:32:98:c0:c1:f7:c5:23:3c:18:d8:1c: 96:6b:a9:09:7e:fd:03:1f:20:4f:c5:ff:f1:04:da:c5:ea:d1: 55:6f:bf:dd:05:8e:b4:58:7e:49:1c:02:d9:e2:4b:9a:8f:cf: 62:1d:df:43:d2:a4:04:02:ec:16:3f:77:c2:03:71:bb:62:e9: 50:39:e8:12:26:1f:ff:bc:42:d8:65:8b:29:10:37:98:2e:dd: 3f:9f:9d:df:33:d2:54:7f:26:36:ce:bb:34:33:7d:7a:33:da: 4f:e7:e8:8e:0b:2f:dc:b1:7b:8c:ae:9f:e1:4d:30:47:3c:1a: b5:98:ff:10:91:c2:75:93:f9:4a:ab:90:f2:c8:9b:98:ce:a9: 60:f7:d3:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJhyec99EkJAxPG45tZKSYiokbb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDA0MDMyWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjY2MzI3MWQ2M2MyYmZmYWJjOWYzMGQxZDI0MjU0Y2Rh NGVhNTk3YWE1YTUxNDA1NjE2ODNjZGYwZDVlODY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmSPBYZBy46TEVJaobX4tBGTtxLlKu8Ce12eWukAiPiaCL CGy7RQwf9F1iDuQnTaTlM7hvAQ13p/F8leX05izcGkucV9D6jBteyJu721qpZpmv lZHq1ukQf23mltsW3u+SGHujEv6I6OI5kGjYw0vEdO19seAFQ/LxiUhH7rFvgRin 2qRmwztfB7jnUsSoCG7ioU2LmziKyhAluyNARW8F4B79zez3YE7Dy/zylPuoegna yaY4uvivRhHAUZZXpw3G0BnaMViBObGL/FUY2pd+Cap7REBdt/dVyWcd4f8x1lSB zwGS3bWGH85WosW0rtEXWJM53iR2v8OldVxGaFafAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvEkQucjCZxdahqMYy1arVwg+0kAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxZjg1NDMyLWY1ZDYtNDZiZi04MzliLWVkNGU5MDM3Y2IzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABAvpQwDQYJKoZIhvcNAQELBQADggEBAJGKdyH+eN7HKXgiZqDv8bG08WFP c6Yyn1WItTwbi4PFZQ/pmIHifPVLcADZM1B3pZIBBDGVuXUg+ylXwO0Jwb/vivgQ XIGAp8Mw2vQ4zGfVJvZv+ArqDFXT8rXO8y7qbm3ALilCeV1gdXLRJAy+k+Da9uky mMDB98UjPBjYHJZrqQl+/QMfIE/F//EE2sXq0VVvv90FjrRYfkkcAtniS5qPz2Id 30PSpAQC7BY/d8IDcbti6VA56BImH/+8QthliykQN5gu3T+fnd8z0lR/JjbOuzQz fXoz2k/n6I4LL9yxe4yun+FNMEc8GrWY/xCRwnWT+UqrkPLIm5jOqWD308M= -----END CERTIFICATE-----Generated at Sat Aug 23 06:53:58 2025 by rpki-client