$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa File: 2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa (raw, json) Hash identifier: ghkW8K+r/xqRJlqYdzlrb/zaMEIs0JM3eIvh54g1adE= Subject key identifier: 78:83:23:5C:EA:A6:DD:94:CF:6C:DB:B6:34:7B:FB:48:B6:94:C0:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60AB16018D8FAEA5894B1AD77832A4050DD445DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa Signing time: Wed 09 Jul 2025 00:21:50 +0000 ROA not before: Wed 09 Jul 2025 00:21:50 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.13.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ab:16:01:8d:8f:ae:a5:89:4b:1a:d7:78:32:a4:05:0d:d4:45:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:21:50 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=c2a416421d140ad6701de7c8c087b5fd82bd2e834383794c6d2260d6a7891a4f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8a:61:72:52:25:77:ff:ff:72:d4:12:9b:99: 57:88:c7:6e:6d:8c:ee:ff:23:4a:ad:ef:cc:9d:d9: cb:3f:b0:58:a5:00:f3:d3:b7:7e:08:70:14:f5:3d: 8b:5a:0b:dc:bb:9f:94:9d:e5:66:59:5f:6a:1a:01: bd:aa:31:a7:e1:30:02:c2:e5:39:8f:bc:7f:9c:07: 03:c6:7c:64:e9:4f:e0:0a:59:05:24:d0:41:a2:09: 30:05:f1:85:f9:b4:eb:f4:0d:b6:bf:a4:44:92:db: a3:47:1b:58:54:51:f4:e6:af:10:31:0d:af:a5:42: bc:f9:83:4e:b5:96:cd:f0:4d:6c:c7:76:1a:15:c2: 8f:9c:db:9d:05:1b:fd:76:89:c6:09:c2:bd:93:9b: 56:66:43:f3:6e:7c:a1:ab:ee:0c:dd:b5:f1:61:ea: d9:a6:9f:b7:27:1b:6c:79:05:74:05:e9:ce:1b:ed: a3:14:e1:57:26:e6:6d:ed:4e:20:86:10:96:c3:fb: e8:b0:c0:ed:3d:b4:6d:56:de:e6:f0:f5:fa:36:ee: 92:7c:d4:05:4d:c5:f0:65:2d:a5:c1:62:76:7b:c7: 8f:e4:8b:7a:00:c3:62:76:3f:00:38:3c:f0:40:c8: 8e:95:e1:91:15:8f:98:63:2a:9d:d7:88:ac:91:bb: e7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:23:5C:EA:A6:DD:94:CF:6C:DB:B6:34:7B:FB:48:B6:94:C0:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fcfdeea-70f8-42a9-a49e-446a3af72d8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.13.0.0/20 Signature Algorithm: sha256WithRSAEncryption 53:1f:05:30:df:40:7a:ad:34:33:70:05:76:94:3a:e7:4e:31: f5:8f:6a:4d:e8:16:8e:b1:ed:36:85:27:4d:50:bd:65:a1:0a: a8:e9:17:fe:9e:84:a7:21:d1:f5:4f:55:f3:12:4d:92:f2:42: 49:fa:ed:68:2b:4a:43:49:23:95:88:86:8b:93:29:01:a9:87: 8c:47:ff:6a:31:85:d8:1c:59:32:2a:fb:38:05:29:58:bb:05: 20:1b:c3:4d:d2:f7:71:ca:1d:0d:7a:d0:91:3a:54:06:b4:d9: 40:65:c6:b3:1c:30:06:d4:27:5f:98:35:c6:9e:2d:dd:f9:5c: 96:6f:3e:3d:55:48:e5:4b:ff:5c:35:49:27:65:d7:4a:81:c2: d4:f6:4b:d8:2f:92:1c:31:64:f9:f1:40:74:f9:3f:85:95:32: 25:77:38:69:88:f7:f4:c8:a0:ec:90:5e:6a:36:96:10:f5:48: a0:8e:9e:ad:89:a0:a3:f9:6b:33:21:d9:3d:4e:9f:26:5c:af: 9a:9d:46:46:54:e5:db:c7:a7:4f:fc:f9:c3:c9:f0:19:5f:6f: 84:b9:c0:83:c0:c0:f0:da:5d:0d:2a:5d:4b:e9:7b:41:8a:c8: 2f:d0:62:fb:ce:1a:d4:9b:09:90:00:d0:17:20:69:29:a8:f7: 6b:8e:3b:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYKsWAY2PrqWJSxrXeDKkBQ3URd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAyMTUwWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmE0MTY0MjFkMTQwYWQ2NzAxZGU3YzhjMDg3YjVmZDgy YmQyZTgzNDM4Mzc5NGM2ZDIyNjBkNmE3ODkxYTRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjimFyUiV3//9y1BKbmVeIx25tjO7/I0qt78yd2cs/sFil APPTt34IcBT1PYtaC9y7n5Sd5WZZX2oaAb2qMafhMALC5TmPvH+cBwPGfGTpT+AK WQUk0EGiCTAF8YX5tOv0Dba/pESS26NHG1hUUfTmrxAxDa+lQrz5g061ls3wTWzH dhoVwo+c250FG/12icYJwr2Tm1ZmQ/NufKGr7gzdtfFh6tmmn7cnG2x5BXQF6c4b 7aMU4Vcm5m3tTiCGEJbD++iwwO09tG1W3ubw9fo27pJ81AVNxfBlLaXBYnZ7x4/k i3oAw2J2PwA4PPBAyI6V4ZEVj5hjKp3XiKyRu+dnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeIMjXOqm3ZTPbNu2NHv7SLaUwEYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmY2ZkZWVhLTcwZjgtNDJhOS1hNDllLTQ0NmEzYWY3MmQ4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATGDQAwDQYJKoZIhvcNAQELBQADggEBAFMfBTDfQHqtNDNwBXaUOudOMfWP ak3oFo6x7TaFJ01QvWWhCqjpF/6ehKch0fVPVfMSTZLyQkn67WgrSkNJI5WIhouT KQGph4xH/2oxhdgcWTIq+zgFKVi7BSAbw03S93HKHQ160JE6VAa02UBlxrMcMAbU J1+YNcaeLd35XJZvPj1VSOVL/1w1SSdl10qBwtT2S9gvkhwxZPnxQHT5P4WVMiV3 OGmI9/TIoOyQXmo2lhD1SKCOnq2JoKP5azMh2T1OnyZcr5qdRkZU5dvHp0/8+cPJ 8Blfb4S5wIPAwPDaXQ0qXUvpe0GKyC/QYvvOGtSbCZAA0BcgaSmo92uOOwA= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:30 2025 by rpki-client