$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e81e2c00-a513-4147-992e-a192a2dba6b1.roa File: e81e2c00-a513-4147-992e-a192a2dba6b1.roa (raw, json) Hash identifier: gNEtLvdoqo1INYaciBYeYkauqLPgxNlie/yjiECLeXQ= Subject key identifier: 02:8A:C0:D6:59:E1:C1:0D:FC:A8:15:C8:27:BE:75:07:BB:7C:90:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C391F512D18E99284F31D510AF65C8C43142FF5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e81e2c00-a513-4147-992e-a192a2dba6b1.roa Signing time: Sat 09 Aug 2025 00:10:15 +0000 ROA not before: Sat 09 Aug 2025 00:10:15 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:39:1f:51:2d:18:e9:92:84:f3:1d:51:0a:f6:5c:8c:43:14:2f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:10:15 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=1aeb1a26784696ae9983e0c918823e5a8bbf72b97a7a5cb1c643e9eadd0b9fbc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:44:68:49:cb:5f:0c:c0:30:77:0f:ad:8e:bc: 23:fb:f5:fd:0a:ef:61:cc:ff:44:e7:ae:67:33:43: 4a:32:b1:36:0a:f8:5a:bf:e4:1a:23:74:4b:83:c7: 5e:ff:a8:42:e0:dc:ce:ac:b9:5d:47:95:69:13:c3: 97:4a:21:bf:f0:4b:7b:3c:c0:65:0d:15:90:21:d8: c6:aa:ca:37:02:0d:77:7f:14:88:37:71:10:e3:83: d6:b0:f3:c0:03:8d:70:81:b8:55:9f:02:d3:da:30: 39:c1:20:72:c5:84:a9:36:2e:48:6e:c9:0f:4e:c6: 35:61:46:d0:b7:32:a0:6c:a1:24:57:86:01:bd:08: 88:44:c9:07:3f:c6:5f:a1:aa:e7:82:25:1f:49:f9: 40:56:6b:c3:54:3b:99:45:79:88:44:ac:44:2b:86: 53:58:0f:d9:d5:e9:f5:4f:b3:36:14:99:9e:82:86: f3:95:57:f7:8a:41:a9:23:15:22:8b:37:20:17:db: 32:3b:8a:51:a8:07:f8:a5:50:30:e7:23:e3:0c:80: 87:4d:3b:de:cc:42:d1:4f:d5:b3:e0:86:5a:a8:aa: 12:bf:da:c6:b8:91:7b:74:20:83:cd:d5:1e:31:79: 5a:ae:06:fb:54:1e:61:8c:ac:ad:1c:ec:12:32:a8: 8f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8A:C0:D6:59:E1:C1:0D:FC:A8:15:C8:27:BE:75:07:BB:7C:90:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e81e2c00-a513-4147-992e-a192a2dba6b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:51:f1:9b:64:8e:cd:7e:fa:b2:e5:7f:db:52:ab:ae:93:57: a8:e3:ff:a8:f0:d3:20:e4:8e:b5:aa:4d:fb:1f:93:ba:4d:50: 96:ce:a1:00:49:58:83:f3:3e:0b:55:6a:54:72:fb:04:63:f6: 5f:0c:fe:ea:be:a3:bd:90:5c:be:57:03:0b:d8:e7:e0:2b:35: 27:57:b7:fc:f4:c4:cb:65:e8:cb:ba:77:e8:f4:e8:65:7b:7b: e8:55:07:41:f2:c0:6a:f5:6c:6a:24:9d:5e:72:52:3c:26:aa: 4b:ee:cb:eb:75:fc:4b:32:d1:4c:2c:3c:3d:f2:03:0f:cb:d5: 2e:bb:06:7c:6c:0e:2c:41:3f:04:6f:83:29:7e:1a:16:72:34: 8d:e5:b4:a6:91:57:db:8e:07:b6:79:9a:d7:c8:fb:bb:47:2a: 34:61:4c:a1:f4:db:b9:57:33:9a:2d:13:40:6f:ea:c0:94:fd: 10:e1:d4:8f:a3:bf:0f:7d:06:8e:06:9b:0d:78:41:45:63:86: 5c:d4:9d:d5:ff:8b:58:04:93:c8:15:16:9b:38:d9:00:8c:14: a9:92:d2:9a:3e:0f:ab:ad:be:2a:40:bc:70:0b:56:ec:b6:9b: 69:a8:33:98:79:4b:e1:4b:5a:49:c1:49:a8:0e:2b:9f:1e:06: 6b:7a:00:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPDkfUS0Y6ZKE8x1RCvZcjEMUL/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAxMDE1WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWViMWEyNjc4NDY5NmFlOTk4M2UwYzkxODgyM2U1YThi YmY3MmI5N2E3YTVjYjFjNjQzZTllYWRkMGI5ZmJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJRGhJy18MwDB3D62OvCP79f0K72HM/0TnrmczQ0oysTYK +Fq/5BojdEuDx17/qELg3M6suV1HlWkTw5dKIb/wS3s8wGUNFZAh2MaqyjcCDXd/ FIg3cRDjg9aw88ADjXCBuFWfAtPaMDnBIHLFhKk2LkhuyQ9OxjVhRtC3MqBsoSRX hgG9CIhEyQc/xl+hqueCJR9J+UBWa8NUO5lFeYhErEQrhlNYD9nV6fVPszYUmZ6C hvOVV/eKQakjFSKLNyAX2zI7ilGoB/ilUDDnI+MMgIdNO97MQtFP1bPghlqoqhK/ 2sa4kXt0IIPN1R4xeVquBvtUHmGMrK0c7BIyqI9bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAorA1lnhwQ38qBXIJ751B7t8kF0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4MWUyYzAwLWE1MTMtNDE0Ny05OTJlLWExOTJhMmRiYTZiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXoDANBgkqhkiG9w0BAQsFAAOCAQEAtlHxm2SOzX76suV/21KrrpNXqOP/ qPDTIOSOtapN+x+Tuk1Qls6hAElYg/M+C1VqVHL7BGP2Xwz+6r6jvZBcvlcDC9jn 4Cs1J1e3/PTEy2Xoy7p36PToZXt76FUHQfLAavVsaiSdXnJSPCaqS+7L63X8SzLR TCw8PfIDD8vVLrsGfGwOLEE/BG+DKX4aFnI0jeW0ppFX244Htnma18j7u0cqNGFM ofTbuVczmi0TQG/qwJT9EOHUj6O/D30GjgabDXhBRWOGXNSd1f+LWASTyBUWmzjZ AIwUqZLSmj4Pq62+KkC8cAtW7LabaagzmHlL4UtaScFJqA4rnx4Ga3oAnQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:09:04 2025 by rpki-client