$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa File: f27b7999-d38a-4b9b-9aff-302f3d69984e.roa (raw, json) Hash identifier: MJW4ljv+NV9nhnm7lB+hp9Db4cYfCM0qUI0kytqWXY8= Subject key identifier: 68:4B:80:B5:F6:3E:F3:8A:91:39:AB:32:74:D4:DD:E3:37:FC:45:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D572FCBEE330C94CAE1BC2A3EAF76946A34B2EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa Signing time: Sat 02 Aug 2025 00:51:46 +0000 ROA not before: Sat 02 Aug 2025 00:51:46 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:57:2f:cb:ee:33:0c:94:ca:e1:bc:2a:3e:af:76:94:6a:34:b2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:51:46 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=4b8fb22b23cef92c7d11436b17dda12b4203947a27a84a2aaa20b81cb0291023, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:7a:3d:51:3e:1e:92:fc:41:e7:a0:8d:ff: 75:de:18:c2:7d:e1:cb:2c:e3:1e:16:97:04:70:16: 7e:e1:14:1d:16:29:5e:18:ce:3c:ac:7e:ab:48:26: f9:fc:db:f7:9e:de:f4:9b:1f:4c:c4:0d:de:0d:94: 8f:53:6b:ed:42:cc:6c:0d:f5:8b:8b:7e:19:bf:e9: 6f:f2:e9:84:66:be:7b:bd:75:86:54:17:da:15:fd: c5:b3:c6:e0:7d:c0:a5:a6:0e:f3:d7:53:ea:97:27: 9b:15:14:f0:7e:ab:de:83:dd:e7:4a:25:75:89:5b: 3a:5f:0b:54:71:0c:08:8c:29:1f:ba:9a:ba:a4:92: fd:21:21:2d:f2:71:a1:9e:1f:64:ec:09:54:2d:dd: 42:e0:6a:d2:06:1e:24:8e:b2:29:89:27:5f:6c:d8: f6:d5:fd:34:66:90:2c:fd:4f:81:e1:1e:d1:fd:90: 6b:e5:34:be:92:91:89:bf:b5:03:0f:2f:4f:05:74: cb:43:0d:76:13:56:96:44:99:de:bb:4e:3c:9e:b0: fe:03:ff:d5:66:f2:03:e9:25:0c:22:93:78:e2:73: cb:8e:c8:cb:88:86:02:02:8a:a6:12:17:27:22:ba: 1b:44:da:06:40:76:ee:4d:be:9e:75:c3:f0:70:b4: 7c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4B:80:B5:F6:3E:F3:8A:91:39:AB:32:74:D4:DD:E3:37:FC:45:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.132.0/22 Signature Algorithm: sha256WithRSAEncryption 20:97:d5:9e:4d:9f:f8:2d:70:a7:b1:fb:ab:d7:21:8c:6b:47: da:14:11:f9:42:1d:e7:e6:94:f7:fe:c9:34:4a:0f:e6:3d:0d: b9:74:59:f0:41:00:8f:53:d1:2e:58:dc:48:03:f4:5f:ae:2e: 1c:77:8a:78:67:c7:fe:8d:04:2e:fb:1f:5e:1e:6b:48:b2:47: b7:c1:d1:5a:e1:65:ca:ad:3b:de:05:23:4c:c3:c6:be:54:d5: 84:3b:a1:1b:d4:4e:12:07:78:42:b8:88:e7:34:9a:e5:30:57: 42:18:17:14:8e:57:af:e7:58:53:ec:95:2d:09:e3:f7:06:0e: cd:6c:11:77:4d:71:20:75:b9:a9:89:18:33:54:24:44:03:2a: b1:64:d6:0e:bc:e9:27:e3:36:d5:4d:4b:c5:c0:8f:90:b4:8e: 19:cf:a3:f8:55:5f:d4:02:65:20:29:32:1c:e9:5b:e7:b4:5a: 33:02:66:25:b3:86:61:70:93:cf:bd:e5:ee:eb:66:07:12:3a: eb:3e:27:70:ae:18:26:a5:16:9e:c5:66:8e:e0:36:e4:99:bf: 33:ad:71:37:1b:d0:5f:e5:9a:66:ba:fc:ef:2a:fb:1a:30:15: 42:36:06:bb:d9:19:bc:42:f0:ea:41:a0:ac:9f:c7:19:82:2e: 4f:d6:d6:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPVcvy+4zDJTK4bwqPq92lGo0suswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MTQ2WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjhmYjIyYjIzY2VmOTJjN2QxMTQzNmIxN2RkYTEyYjQy MDM5NDdhMjdhODRhMmFhYTIwYjgxY2IwMjkxMDIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzbHo9UT4ekvxB56CN/3XeGMJ94css4x4WlwRwFn7hFB0W KV4YzjysfqtIJvn82/ee3vSbH0zEDd4NlI9Ta+1CzGwN9YuLfhm/6W/y6YRmvnu9 dYZUF9oV/cWzxuB9wKWmDvPXU+qXJ5sVFPB+q96D3edKJXWJWzpfC1RxDAiMKR+6 mrqkkv0hIS3ycaGeH2TsCVQt3ULgatIGHiSOsimJJ19s2PbV/TRmkCz9T4HhHtH9 kGvlNL6SkYm/tQMPL08FdMtDDXYTVpZEmd67TjyesP4D/9Vm8gPpJQwik3jic8uO yMuIhgICiqYSFyciuhtE2gZAdu5Nvp51w/BwtHzlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaEuAtfY+84qROasydNTd4zf8RccwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyN2I3OTk5LWQzOGEtNGI5Yi05YWZmLTMwMmYzZDY5OTg0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM7IQwDQYJKoZIhvcNAQELBQADggEBACCX1Z5Nn/gtcKex+6vXIYxrR9oU EflCHefmlPf+yTRKD+Y9Dbl0WfBBAI9T0S5Y3EgD9F+uLhx3inhnx/6NBC77H14e a0iyR7fB0VrhZcqtO94FI0zDxr5U1YQ7oRvUThIHeEK4iOc0muUwV0IYFxSOV6/n WFPslS0J4/cGDs1sEXdNcSB1uamJGDNUJEQDKrFk1g686SfjNtVNS8XAj5C0jhnP o/hVX9QCZSApMhzpW+e0WjMCZiWzhmFwk8+95e7rZgcSOus+J3CuGCalFp7FZo7g NuSZvzOtcTcb0F/lmma6/O8q+xowFUI2BrvZGbxC8OpBoKyfxxmCLk/W1j0= -----END CERTIFICATE-----Generated at Sat Aug 23 08:32:53 2025 by rpki-client