$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa File: 17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa (raw, json) Hash identifier: Rm+m9XWqT6/A0tNvCidsDNN151Bi9h747SqXnT70Ees= Subject key identifier: 2F:AD:7C:5C:7C:8A:95:A8:E4:71:77:16:1B:CB:79:DF:C3:34:22:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3480ACC7F66050B295981077A0F7AC6B737391 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa Signing time: Mon 14 Jul 2025 15:01:17 +0000 ROA not before: Mon 14 Jul 2025 15:01:17 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.113.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:80:ac:c7:f6:60:50:b2:95:98:10:77:a0:f7:ac:6b:73:73:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:01:17 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=d2bb075b8e925106ccd07ba583fafe02f9b34bd0ed91f490245bbd1e126d9b93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f0:24:bf:a0:a9:4c:50:0d:2a:84:17:af:81: 4e:75:fb:53:c6:ed:3f:e9:80:61:11:8c:4a:a3:88: 00:60:5e:84:79:14:1d:7f:27:e2:e2:aa:02:a9:3e: 54:df:9f:b6:74:ef:14:34:11:63:6b:b1:25:8c:ae: 12:80:75:da:96:ef:c0:39:e1:06:32:b6:9b:50:07: f6:61:41:60:81:2a:3e:67:c0:16:50:cf:5f:a1:88: f5:11:dd:15:c2:57:9b:e0:d1:b2:10:ad:74:c4:09: 53:90:d8:57:d0:51:14:35:42:40:da:de:e0:5b:26: 28:3d:88:7d:af:55:ef:cd:1a:44:e1:fe:6e:57:f1: 0a:72:48:0f:02:46:66:67:2e:3f:91:c0:74:5c:99: d6:9d:b3:0e:e4:c2:c5:55:41:8a:e3:4f:5c:47:cc: aa:5e:f2:e6:92:6b:8d:04:ae:ce:a2:bd:97:62:38: d4:e9:22:61:cd:54:a5:81:03:c3:77:95:53:75:a1: 1e:da:0e:47:6a:68:56:dd:e8:1b:fb:c9:75:3c:07: 12:7e:10:08:51:06:03:19:95:53:c4:5c:ff:60:4e: 50:e6:ec:81:fd:cd:b3:b0:8e:ae:02:66:fb:e5:f3: 60:57:13:b9:69:be:62:9b:27:93:73:23:e5:c1:0f: d2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AD:7C:5C:7C:8A:95:A8:E4:71:77:16:1B:CB:79:DF:C3:34:22:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17a05282-c7fc-4bec-b3db-2b1e5d02f539.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.113.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:10:b3:53:45:c1:5b:be:29:4f:2f:94:12:a1:9f:21:61:76: be:fe:0b:fd:97:a7:52:78:91:36:f3:9e:82:e8:8a:5f:84:68: 9c:65:af:45:27:1a:e2:7d:4b:c7:5f:fa:ce:a2:bb:25:9d:05: b3:ff:3f:57:67:fe:6b:22:55:d4:ea:e2:04:0a:11:05:ed:cf: eb:9a:5c:1d:c4:35:9a:11:c2:74:8d:6d:f9:ab:b6:b2:89:54: 21:08:28:e6:86:23:7d:7a:ee:79:5c:97:26:8d:fd:2e:8f:45: 69:cc:06:25:35:28:3a:af:a9:98:c3:3f:82:72:87:59:2a:a8: e7:9c:df:7e:ed:97:f0:f6:c2:89:9c:dd:07:0e:2d:fa:3c:23: c8:d1:21:85:a5:ec:91:b5:49:84:8a:40:80:61:c3:53:fa:54: 52:e5:24:52:be:e6:ac:57:16:12:b1:9d:4a:22:ef:94:98:0b: 1d:79:7a:4e:18:08:e0:c6:24:15:a2:9f:1d:bb:8e:4c:d3:c8: 92:88:0d:f5:17:49:a9:e4:d0:77:08:1c:be:b0:65:5b:13:6e: c6:0e:e5:e0:a2:a7:5a:c4:d0:f6:a0:44:f7:9c:36:1d:c4:00: b6:3c:3b:ae:f9:ee:dc:74:e7:c3:8c:0d:fa:d2:a6:45:86:3d: 3e:f9:5b:87 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITNICsx/ZgULKVmBB3oPesa3NzkTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA3MTQxNTAxMTdaFw0yNTA4MTgyMzU5NTla MHoxSTBHBgNVBAUTQGQyYmIwNzViOGU5MjUxMDZjY2QwN2JhNTgzZmFmZTAyZjli MzRiZDBlZDkxZjQ5MDI0NWJiZDFlMTI2ZDliOTMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK3wJL+gqUxQDSqEF6+BTnX7U8btP+mAYRGMSqOIAGBehHkU HX8n4uKqAqk+VN+ftnTvFDQRY2uxJYyuEoB12pbvwDnhBjK2m1AH9mFBYIEqPmfA FlDPX6GI9RHdFcJXm+DRshCtdMQJU5DYV9BRFDVCQNre4FsmKD2Ifa9V780aROH+ blfxCnJIDwJGZmcuP5HAdFyZ1p2zDuTCxVVBiuNPXEfMql7y5pJrjQSuzqK9l2I4 1OkiYc1UpYEDw3eVU3WhHtoOR2poVt3oG/vJdTwHEn4QCFEGAxmVU8Rc/2BOUObs gf3Ns7COrgJm++XzYFcTuWm+Ypsnk3Mj5cEP0tUCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBQvrXxcfIqVqORxdxYby3nfwzQijjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMTdhMDUyODItYzdmYy00YmVjLWIzZGItMmIxZTVkMDJmNTM5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAKVxMA0GCSqGSIb3DQEBCwUAA4IBAQDHELNTRcFbvilPL5QSoZ8hYXa+/gv9 l6dSeJE2856C6IpfhGicZa9FJxrifUvHX/rOorslnQWz/z9XZ/5rIlXU6uIEChEF 7c/rmlwdxDWaEcJ0jW35q7ayiVQhCCjmhiN9eu55XJcmjf0uj0VpzAYlNSg6r6mY wz+CcodZKqjnnN9+7Zfw9sKJnN0HDi36PCPI0SGFpeyRtUmEikCAYcNT+lRS5SRS vuasVxYSsZ1KIu+UmAsdeXpOGAjgxiQVop8du45M08iSiA31F0mp5NB3CBy+sGVb E27GDuXgoqdaxND2oET3nDYdxAC2PDuu+e7cdOfDjA360qZFhj0++VuH -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:17 2025 by rpki-client