$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa File: e85f7629-042d-460b-8057-96331b4ff972.roa (raw, json) Hash identifier: tFcZpYMG3Ms4RRmBRGk9xIcISkWP3KbIVPzxcsGLCMw= Subject key identifier: C8:E2:DD:D4:A6:CE:10:AB:FE:CC:12:B1:09:86:82:C1:2D:2D:7C:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 398D7A739B7ECB5E35C84086F6894A004E65AC19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa Signing time: Mon 18 Aug 2025 15:32:21 +0000 ROA not before: Mon 18 Aug 2025 15:32:21 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.19.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8d:7a:73:9b:7e:cb:5e:35:c8:40:86:f6:89:4a:00:4e:65:ac:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:32:21 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=f30d2fc9525a0a50b2c6bca9c9068ba4e19b5f9f1bd323b5fc7478cb7761a67d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4e:6f:d8:ef:78:f3:f4:51:2f:ed:f6:74:48: 4b:62:dd:68:a7:99:3b:e4:3c:ad:53:4a:d3:bc:99: 26:e8:1f:61:57:b3:49:03:dc:db:02:ed:8c:9e:19: f1:9c:e0:5f:7d:38:0e:1f:5c:f1:a3:10:bc:6d:1f: 34:97:7c:f3:5a:d3:dc:cb:c6:88:8c:84:cd:e1:a7: bf:c7:0c:78:85:ee:ad:b6:4b:8f:e0:6f:78:88:d9: d2:c1:19:48:8a:bc:84:31:0d:82:c7:93:fd:f1:23: 43:20:6a:07:61:7f:85:60:53:7d:de:ce:fd:7a:39: cf:3c:0d:99:1b:39:44:93:f6:9b:a1:89:7c:47:3e: d2:be:ef:56:f0:d8:a2:98:5d:1c:5b:6e:0a:1e:42: 37:77:74:f2:8c:6c:4b:b2:3c:6b:88:e8:e4:9f:ce: e8:37:45:63:85:1c:f9:46:87:63:5c:b2:8a:24:8f: bd:b6:05:6d:a2:a6:30:bc:a9:b6:4b:75:0d:2a:ac: 48:d8:0e:c7:87:d5:85:52:5e:b8:46:4b:cf:a0:58: 4f:37:db:56:c0:cb:b9:a6:f5:9a:95:d6:5d:3e:1d: 46:12:cf:0b:0d:e4:f8:1f:66:e5:c4:8d:9b:0a:b6: 2c:73:74:a2:be:f7:e0:93:a5:fe:40:69:16:84:bd: a9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E2:DD:D4:A6:CE:10:AB:FE:CC:12:B1:09:86:82:C1:2D:2D:7C:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.19.0.0/17 Signature Algorithm: sha256WithRSAEncryption 89:9d:8d:4e:3e:05:1a:e1:a7:36:5e:0d:bb:ab:62:cb:93:61: 19:de:5e:34:d6:a3:cf:21:54:2b:5a:f1:52:f5:b3:1b:e9:3a: d4:fa:c1:07:53:99:b9:6c:43:c6:c6:d5:7d:55:59:d0:82:86: 0b:4d:73:ec:ee:ff:92:32:29:a8:00:51:92:ce:e5:c3:74:a3: 59:cb:ac:d2:fb:1e:ed:6d:de:e5:b0:b7:5e:6e:97:dc:a9:c1: cc:fa:ac:ce:68:3b:3c:2d:36:3f:90:8a:57:ea:6b:ba:79:1f: 99:15:14:48:5b:e2:65:da:1f:a7:85:e1:c6:0c:27:dd:cd:9d: 61:26:b5:d8:1e:7f:70:77:e3:75:a5:70:13:b2:32:bc:e9:14: bd:80:0d:a3:db:38:a2:28:b3:12:fb:4f:9f:0b:0e:39:c7:9a: e9:9d:ee:c4:24:cd:70:9a:7e:1e:06:54:4f:e8:8c:85:a7:66: 8f:08:55:34:ac:db:81:50:ef:b1:26:a6:92:33:4f:b2:22:15: fe:e1:19:f3:1a:b4:5e:70:eb:57:d9:ef:f7:7a:75:a1:96:8c: 39:6c:85:b3:c1:55:0f:d6:36:7f:45:7e:94:45:7b:18:3c:af: c0:2c:c0:21:b8:d8:11:c1:98:66:e8:45:06:a1:7e:f4:9f:40: a6:03:32:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOY16c5t+y141yECG9olKAE5lrBkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMjIxWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzBkMmZjOTUyNWEwYTUwYjJjNmJjYTljOTA2OGJhNGUx OWI1ZjlmMWJkMzIzYjVmYzc0NzhjYjc3NjFhNjdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOTm/Y73jz9FEv7fZ0SEti3WinmTvkPK1TStO8mSboH2FX s0kD3NsC7YyeGfGc4F99OA4fXPGjELxtHzSXfPNa09zLxoiMhM3hp7/HDHiF7q22 S4/gb3iI2dLBGUiKvIQxDYLHk/3xI0Mgagdhf4VgU33ezv16Oc88DZkbOUST9puh iXxHPtK+71bw2KKYXRxbbgoeQjd3dPKMbEuyPGuI6OSfzug3RWOFHPlGh2Ncsook j722BW2ipjC8qbZLdQ0qrEjYDseH1YVSXrhGS8+gWE8321bAy7mm9ZqV1l0+HUYS zwsN5PgfZuXEjZsKtixzdKK+9+CTpf5AaRaEvamDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyOLd1KbOEKv+zBKxCYaCwS0tfJ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWY3NjI5LTA0MmQtNDYwYi04MDU3LTk2MzMxYjRmZjk3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfREwAwDQYJKoZIhvcNAQELBQADggEBAImdjU4+BRrhpzZeDburYsuTYRne XjTWo88hVCta8VL1sxvpOtT6wQdTmblsQ8bG1X1VWdCChgtNc+zu/5IyKagAUZLO 5cN0o1nLrNL7Hu1t3uWwt15ul9ypwcz6rM5oOzwtNj+Qilfqa7p5H5kVFEhb4mXa H6eF4cYMJ93NnWEmtdgef3B343WlcBOyMrzpFL2ADaPbOKIosxL7T58LDjnHmumd 7sQkzXCafh4GVE/ojIWnZo8IVTSs24FQ77EmppIzT7IiFf7hGfMatF5w61fZ7/d6 daGWjDlshbPBVQ/WNn9FfpRFexg8r8AswCG42BHBmGboRQahfvSfQKYDMlU= -----END CERTIFICATE-----Generated at Sat Aug 23 08:28:24 2025 by rpki-client