$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc59645b-efad-4950-a874-ac47ec42f4b2.roa File: fc59645b-efad-4950-a874-ac47ec42f4b2.roa (raw, json) Hash identifier: p1g+Vx9+RYFJNubw37j77QXGKXUOORZdfxXI0JP73bs= Subject key identifier: 52:E6:E1:E2:84:E3:2D:A9:94:A1:E3:14:A3:42:87:FF:5E:64:C6:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27512789A784E2B650AFB92D11286E2D98831CBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc59645b-efad-4950-a874-ac47ec42f4b2.roa Signing time: Sat 16 Aug 2025 00:11:35 +0000 ROA not before: Sat 16 Aug 2025 00:11:35 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 701 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:51:27:89:a7:84:e2:b6:50:af:b9:2d:11:28:6e:2d:98:83:1c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:11:35 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=e70b2b158f04cea7ede4ab40762612fbf5e03a74add0b1377d63cb71a0ee2619, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b4:30:43:08:0b:09:48:f8:69:fe:05:f6:7c: 39:0e:b1:72:34:7b:05:d5:cf:5c:a9:e0:e3:5e:9f: 05:a5:c8:01:c6:74:28:ea:e8:33:85:5d:87:49:0f: 72:3d:8e:19:7e:f4:77:7c:b1:42:85:dc:38:f6:46: bc:37:e3:a7:77:d1:44:d5:b5:48:90:9a:48:7b:23: 0d:de:ef:c1:68:a1:27:01:30:4a:e5:65:68:1b:bf: d2:54:cd:24:df:e9:0c:27:57:e8:dc:c6:4a:1a:67: 11:c9:c9:05:7d:2b:a5:f0:14:85:c7:0a:9a:29:01: d2:0e:39:47:31:e2:1e:34:f8:af:90:fd:fa:d3:44: 6e:17:16:0c:93:b1:26:83:2f:20:93:dc:16:0d:23: 56:1d:bc:7e:34:18:66:b5:8e:73:46:22:64:ad:fe: fc:1a:a9:c6:84:3f:c6:8c:e3:81:67:07:14:f2:68: 4b:38:ae:ab:ff:56:9a:25:1f:42:6f:79:ea:25:53: a7:08:9d:3f:13:49:a8:cf:bf:ab:40:25:e0:11:34: 41:d1:cb:3d:3b:e9:e2:14:ec:69:2a:15:de:ad:41: 03:db:9d:19:fa:35:54:b3:e5:45:a9:50:88:69:c1: 14:04:83:8b:64:2a:d3:4f:3e:6c:64:57:c6:63:28: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E6:E1:E2:84:E3:2D:A9:94:A1:E3:14:A3:42:87:FF:5E:64:C6:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc59645b-efad-4950-a874-ac47ec42f4b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:70:21:8e:2c:08:7d:12:63:ce:1d:37:c8:9e:5e:8b:5e:c3: fe:d3:02:3f:68:34:25:d1:6c:b1:a5:8e:93:8c:23:67:59:3a: b6:ac:d0:cb:d1:dc:e3:79:3a:5f:84:90:10:3b:87:79:2d:77: 04:04:55:51:92:08:2f:26:d9:f6:1b:7b:b2:9a:fa:7f:2c:5f: 8f:00:a5:3c:ba:d5:c3:1d:e4:c3:fe:34:9f:94:da:0d:c5:03: 01:1c:70:a7:be:7f:16:c4:eb:d9:d1:aa:8a:27:d0:e6:b6:e4: de:34:cb:d6:2e:b6:57:01:3f:5f:35:be:6e:d8:f2:fa:a5:8d: 66:d4:ef:55:dd:27:5d:ca:36:93:3e:c3:1f:71:b9:e7:7d:51: 59:b4:49:0b:df:91:09:64:44:ef:00:53:44:37:7e:f4:9e:33: 30:59:3d:f3:29:68:f3:63:ac:7c:27:e8:66:32:77:c7:25:e4: a3:35:a7:47:d1:db:bc:48:df:dd:86:7a:ce:c9:4f:10:1f:d7: ee:f8:38:4a:e2:96:54:24:2b:e0:86:c7:3d:9b:9d:e4:da:2f: 35:7b:c3:42:fb:96:cc:4d:83:00:1b:4d:09:3c:aa:83:fb:67: c9:ab:1c:aa:68:a8:7d:18:03:85:6e:ad:59:2f:38:ca:c1:2f: f6:f0:96:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ1EniaeE4rZQr7ktEShuLZiDHLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAxMTM1WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzBiMmIxNThmMDRjZWE3ZWRlNGFiNDA3NjI2MTJmYmY1 ZTAzYTc0YWRkMGIxMzc3ZDYzY2I3MWEwZWUyNjE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDatDBDCAsJSPhp/gX2fDkOsXI0ewXVz1yp4ONenwWlyAHG dCjq6DOFXYdJD3I9jhl+9Hd8sUKF3Dj2Rrw346d30UTVtUiQmkh7Iw3e78FooScB MErlZWgbv9JUzSTf6QwnV+jcxkoaZxHJyQV9K6XwFIXHCpopAdIOOUcx4h40+K+Q /frTRG4XFgyTsSaDLyCT3BYNI1YdvH40GGa1jnNGImSt/vwaqcaEP8aM44FnBxTy aEs4rqv/VpolH0JveeolU6cInT8TSajPv6tAJeARNEHRyz076eIU7GkqFd6tQQPb nRn6NVSz5UWpUIhpwRQEg4tkKtNPPmxkV8ZjKLdXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUubh4oTjLamUoeMUo0KH/15kxqIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjNTk2NDViLWVmYWQtNDk1MC1hODc0LWFjNDdlYzQyZjRiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEAHHAhjiwIfRJjzh03yJ5ei17D/tMC P2g0JdFssaWOk4wjZ1k6tqzQy9Hc43k6X4SQEDuHeS13BARVUZIILybZ9ht7spr6 fyxfjwClPLrVwx3kw/40n5TaDcUDARxwp75/FsTr2dGqiifQ5rbk3jTL1i62VwE/ XzW+btjy+qWNZtTvVd0nXco2kz7DH3G5531RWbRJC9+RCWRE7wBTRDd+9J4zMFk9 8ylo82OsfCfoZjJ3xyXkozWnR9HbvEjf3YZ6zslPEB/X7vg4SuKWVCQr4IbHPZud 5NovNXvDQvuWzE2DABtNCTyqg/tnyascqmiofRgDhW6tWS84ysEv9vCWWw== -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:15 2025 by rpki-client