$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa File: f2c885d6-4061-421b-99ff-f05202cdada5.roa (raw, json) Hash identifier: Nn70N7arvobcGgCEZjianVWiaFb91SZrz5znTSaKwZg= Subject key identifier: 42:A6:2B:16:7F:2F:49:00:9B:EE:D5:32:AD:A5:B9:4A:8A:01:E2:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B84EE9F873FADB1110B0964E05148609CCE8124 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa Signing time: Sat 16 Aug 2025 00:31:39 +0000 ROA not before: Sat 16 Aug 2025 00:31:39 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.223.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:84:ee:9f:87:3f:ad:b1:11:0b:09:64:e0:51:48:60:9c:ce:81:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:31:39 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=260411b88e51cf8462d301bfa1e31a26e9f5cd338ad2b1cc18b2acec068516be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:79:be:04:6d:c4:03:e8:ac:cd:25:7e:16:37: 2f:da:26:43:d1:14:bc:ad:0b:b7:33:8b:a3:e5:69: f4:fa:73:3d:71:0c:e4:85:2c:c6:09:80:5d:ae:6d: 62:3c:38:88:2e:18:13:3e:d1:13:01:5d:cf:40:b1: b6:d2:1a:35:85:69:5e:6a:b7:50:1a:06:37:4a:00: e3:98:1f:9d:26:44:9a:55:35:c7:bb:85:03:61:7c: 61:bf:6e:c4:b6:fa:de:a5:a6:c2:1c:04:e3:17:41: 8e:00:a8:4f:1c:cd:e2:95:b9:df:ff:de:b3:f7:21: 20:1a:ab:a6:69:d8:fe:0e:1d:53:27:24:11:78:7a: cd:b3:9f:cc:5a:22:e9:17:21:37:12:70:86:da:2b: 2f:5c:e2:c8:57:c9:18:0d:be:bb:d1:26:51:1e:a2: 58:d2:b0:a0:99:fb:3a:19:d5:dd:f4:fa:9e:58:28: 61:d9:d1:7a:56:b5:73:57:f7:16:da:08:45:22:ed: b3:94:81:24:1c:af:88:10:44:1c:ff:85:68:71:15: 8a:68:34:53:15:f3:0b:01:7f:af:40:7c:a8:f6:aa: e2:ab:4d:25:3a:cc:87:2a:4b:57:51:59:ba:9a:cb: e3:ef:f3:d1:48:ae:ef:07:05:8d:b7:67:76:85:90: 7e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A6:2B:16:7F:2F:49:00:9B:EE:D5:32:AD:A5:B9:4A:8A:01:E2:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.223.121.0/24 Signature Algorithm: sha256WithRSAEncryption 15:82:e3:56:97:ce:01:b4:fb:b3:30:62:65:5d:2f:b1:ef:07: 14:de:68:b8:9b:e1:21:e3:29:de:b6:01:88:72:ef:db:2f:16: a5:d8:a9:e3:91:7b:60:c7:6a:cd:1f:07:50:9a:89:a6:9c:7c: de:a6:61:f9:d1:d8:3d:b5:7b:9e:91:f2:e8:e4:b4:56:39:c6: 89:c7:20:f9:46:0a:37:5c:91:3d:9f:ed:a9:5f:d2:d5:28:0f: d6:26:b1:37:81:c1:8b:be:37:8e:dd:33:dc:b6:bd:60:23:35: 2c:4f:e1:25:0f:12:d0:43:3c:56:e4:0e:3f:f2:52:78:05:55: a3:42:66:7a:3c:f4:75:20:60:df:1c:b6:df:16:86:bd:f1:5b: 48:b2:6f:35:39:32:0d:32:dd:83:15:1b:75:5a:af:83:a1:23: 6e:89:aa:48:22:64:9a:63:fe:b2:ec:bf:99:5d:bf:41:c3:e1: f0:32:9c:ea:78:89:f6:b7:e7:29:97:12:7c:bc:f4:ca:2d:de: f4:1e:f4:92:50:a0:50:8a:c0:71:12:17:56:72:72:54:4b:ab: a8:63:c3:81:a1:59:d5:2b:f6:c0:ab:b8:74:f7:70:3b:5d:ed: 6d:20:e0:0a:d3:2a:24:83:73:bb:77:0f:e6:5d:40:b4:de:4d: f5:24:e4:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW4Tun4c/rbERCwlk4FFIYJzOgSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAzMTM5WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjA0MTFiODhlNTFjZjg0NjJkMzAxYmZhMWUzMWEyNmU5 ZjVjZDMzOGFkMmIxY2MxOGIyYWNlYzA2ODUxNmJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0eb4EbcQD6KzNJX4WNy/aJkPRFLytC7czi6PlafT6cz1x DOSFLMYJgF2ubWI8OIguGBM+0RMBXc9AsbbSGjWFaV5qt1AaBjdKAOOYH50mRJpV Nce7hQNhfGG/bsS2+t6lpsIcBOMXQY4AqE8czeKVud//3rP3ISAaq6Zp2P4OHVMn JBF4es2zn8xaIukXITcScIbaKy9c4shXyRgNvrvRJlEeoljSsKCZ+zoZ1d30+p5Y KGHZ0XpWtXNX9xbaCEUi7bOUgSQcr4gQRBz/hWhxFYpoNFMV8wsBf69AfKj2quKr TSU6zIcqS1dRWbqay+Pv89FIru8HBY23Z3aFkH7RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQqYrFn8vSQCb7tUyraW5SooB4oIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYzg4NWQ2LTQwNjEtNDIxYi05OWZmLWYwNTIwMmNkYWRhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs33kwDQYJKoZIhvcNAQELBQADggEBABWC41aXzgG0+7MwYmVdL7HvBxTe aLib4SHjKd62AYhy79svFqXYqeORe2DHas0fB1CaiaacfN6mYfnR2D21e56R8ujk tFY5xonHIPlGCjdckT2f7alf0tUoD9YmsTeBwYu+N47dM9y2vWAjNSxP4SUPEtBD PFbkDj/yUngFVaNCZno89HUgYN8ctt8Whr3xW0iybzU5Mg0y3YMVG3Var4OhI26J qkgiZJpj/rLsv5ldv0HD4fAynOp4ifa35ymXEny89Mot3vQe9JJQoFCKwHESF1Zy clRLq6hjw4GhWdUr9sCruHT3cDtd7W0g4ArTKiSDc7t3D+ZdQLTeTfUk5Po= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:01 2025 by rpki-client