$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa File: 11efc78f-00de-42b6-b52c-218adf4f6cc9.roa (raw, json) Hash identifier: trE7IJYycCB7d6FOlZ3E9jFyCg1xFeKCuTb4SFpy03s= Subject key identifier: 80:96:6F:E6:4E:2A:C3:84:B1:E6:64:8B:BE:E0:01:07:29:15:CC:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FF4CCD19CDFCE4550FCAD09CF23AEE150F662DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa Signing time: Mon 30 Jun 2025 15:40:58 +0000 ROA not before: Mon 30 Jun 2025 15:40:58 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f4:cc:d1:9c:df:ce:45:50:fc:ad:09:cf:23:ae:e1:50:f6:62:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:40:58 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=e3384db6ca810028e5e608546b7f54a483617d625bb886caa35cf166746d47e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7d:56:5f:ec:e4:89:2f:b4:41:89:94:ba:8b: 1d:6b:e3:c0:2a:ec:1b:6e:71:9e:fd:b7:b3:11:73: 79:0e:f7:d6:f8:ea:b2:89:47:80:8e:bd:f9:4f:72: c4:80:0c:c7:49:64:24:71:40:c8:29:46:57:f6:10: 19:cb:2f:43:b1:f6:a7:df:6a:39:fc:ab:34:61:a5: 14:8e:81:02:26:db:54:91:87:37:ff:01:34:79:dc: 19:da:66:d2:df:76:9c:40:14:cd:84:5a:28:74:18: 52:d6:db:df:a3:d0:14:15:66:9b:d8:87:c7:1f:33: 62:6e:e2:27:c6:26:46:33:e8:c9:0c:bc:aa:ef:61: f5:4b:cf:98:8c:03:38:2a:ba:6e:b3:e4:ee:25:c9: 7e:ef:94:de:f2:9b:ec:ad:35:f3:2f:31:45:ba:b0: 17:a2:b3:d3:eb:89:f3:85:9e:af:4f:88:f5:22:3f: 9a:65:a2:12:ea:90:16:3b:35:f5:b4:63:6d:a2:9c: e7:04:f7:21:74:5b:d7:a8:b4:24:8f:e8:a7:8d:6b: 55:5b:65:6a:bd:d9:52:48:b2:e9:83:a9:04:14:17: d4:8b:ea:53:a6:cc:28:0d:a1:ab:00:a5:23:fd:a6: ab:b3:ac:59:8d:c7:0f:f5:cd:28:fa:bf:5f:7b:c4: 68:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:96:6F:E6:4E:2A:C3:84:B1:E6:64:8B:BE:E0:01:07:29:15:CC:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.64.0/23 Signature Algorithm: sha256WithRSAEncryption 12:96:b0:b6:1a:17:8a:b6:d6:e8:be:32:c4:9e:8e:fa:1b:c4: 26:c0:99:20:19:c9:ce:58:53:6f:92:01:d4:a6:c0:73:cb:8c: 67:ca:87:67:79:22:05:9b:97:a1:ba:93:0d:cd:f5:9b:26:71: 0d:0d:62:6f:9c:ae:1c:d4:ab:2c:78:0e:6f:3f:7b:ea:a9:be: a2:17:df:a2:7e:32:8a:42:7e:a1:f8:21:6f:48:0e:13:ec:8c: 88:14:d4:8d:48:83:7e:40:7d:a6:38:3c:76:a2:40:0e:59:60: 02:71:82:47:3b:bd:3e:5d:99:7a:a8:71:fc:70:47:03:8b:42: a3:cc:1e:f4:6d:77:5a:7a:4d:f2:82:10:83:7d:42:07:4b:6b: 0d:3c:6a:b1:92:39:2c:30:95:6f:3f:cc:46:17:cc:0d:36:ac: 51:d7:50:4d:71:a5:05:96:c3:34:d4:fb:a2:44:65:48:51:d3: 6a:8a:90:30:07:c1:e7:ef:12:89:d8:1f:ee:cc:d3:f0:87:e4: 28:1e:dc:58:d9:88:df:4a:73:aa:4b:f4:03:15:89:a9:23:5d: dc:6b:5a:52:89:86:c7:6a:10:ea:ad:6a:24:4f:72:0d:64:d2: af:bb:20:ba:68:7b:40:65:97:96:38:a3:44:62:c9:f7:b2:ef: 6e:9d:bf:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD/TM0ZzfzkVQ/K0JzyOu4VD2Yt8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTU0MDU4WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzM4NGRiNmNhODEwMDI4ZTVlNjA4NTQ2YjdmNTRhNDgz NjE3ZDYyNWJiODg2Y2FhMzVjZjE2Njc0NmQ0N2U1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXfVZf7OSJL7RBiZS6ix1r48Aq7BtucZ79t7MRc3kO99b4 6rKJR4COvflPcsSADMdJZCRxQMgpRlf2EBnLL0Ox9qffajn8qzRhpRSOgQIm21SR hzf/ATR53BnaZtLfdpxAFM2EWih0GFLW29+j0BQVZpvYh8cfM2Ju4ifGJkYz6MkM vKrvYfVLz5iMAzgqum6z5O4lyX7vlN7ym+ytNfMvMUW6sBeis9PrifOFnq9PiPUi P5plohLqkBY7NfW0Y22inOcE9yF0W9eotCSP6KeNa1VbZWq92VJIsumDqQQUF9SL 6lOmzCgNoasApSP9pquzrFmNxw/1zSj6v197xGj3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgJZv5k4qw4Sx5mSLvuABBykVzB0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExZWZjNzhmLTAwZGUtNDJiNi1iNTJjLTIxOGFkZjRmNmNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl0AwDQYJKoZIhvcNAQELBQADggEBABKWsLYaF4q21ui+MsSejvobxCbA mSAZyc5YU2+SAdSmwHPLjGfKh2d5IgWbl6G6kw3N9ZsmcQ0NYm+crhzUqyx4Dm8/ e+qpvqIX36J+MopCfqH4IW9IDhPsjIgU1I1Ig35AfaY4PHaiQA5ZYAJxgkc7vT5d mXqocfxwRwOLQqPMHvRtd1p6TfKCEIN9QgdLaw08arGSOSwwlW8/zEYXzA02rFHX UE1xpQWWwzTU+6JEZUhR02qKkDAHwefvEonYH+7M0/CH5Cge3FjZiN9Kc6pL9AMV iakjXdxrWlKJhsdqEOqtaiRPcg1k0q+7ILpoe0Bll5Y4o0Riyfey726dv20= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:32 2025 by rpki-client