$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82ef9627-3684-4965-aefc-7862ff527ad3.roa File: 82ef9627-3684-4965-aefc-7862ff527ad3.roa (raw, json) Hash identifier: 1T5FqpYQR+dmusDVuviEE0pjMmw1vlly7FEOvuxo1PQ= Subject key identifier: 2F:7B:19:87:C2:B8:DC:40:51:80:92:82:BA:F9:C7:BD:41:EF:3C:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 542501328BFEC8B24BB2F69DC2A37C9F62C6019E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82ef9627-3684-4965-aefc-7862ff527ad3.roa Signing time: Fri 11 Jul 2025 00:20:30 +0000 ROA not before: Fri 11 Jul 2025 00:20:30 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.165.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:25:01:32:8b:fe:c8:b2:4b:b2:f6:9d:c2:a3:7c:9f:62:c6:01:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:20:30 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=e5f0203e79a56a8cddb9e9d54810837bcbf8e2a22b70f99654387c277a444216, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cd:d0:ab:21:75:6c:e8:6d:4d:eb:f1:ca:e1: c2:bf:00:b1:2c:f7:00:89:38:fd:05:5c:3d:a4:e5: 2b:0b:6f:60:43:2e:ca:30:9b:77:e7:e1:56:f4:55: 01:3f:95:9e:56:bd:ba:4a:e0:4f:a3:53:92:07:44: c0:d9:b2:ef:9b:84:7f:d3:29:a7:e6:5f:76:04:6a: e2:0a:c6:d2:d3:52:92:c5:8d:a0:07:c2:44:b9:f8: b3:a0:53:19:be:dd:61:35:45:27:22:4b:94:b0:5b: 48:51:c9:45:f4:6f:3a:0c:76:2d:aa:99:c0:64:d3: 97:b8:83:2b:cb:98:27:00:9a:c0:c0:14:e6:f0:6e: ce:0f:7e:ba:a1:ce:71:52:d3:e5:27:f7:2d:bc:82: c6:a4:8f:4f:91:e3:b1:97:83:e2:25:ad:d0:25:e5: fc:11:42:a8:70:78:7d:de:6f:6a:cf:67:97:86:88: 0f:70:29:5e:4c:5e:52:7c:4c:16:2e:c3:a0:9c:18: 13:78:7b:18:1d:d5:13:66:e3:70:81:5c:19:86:01: 54:22:fd:c8:70:42:ab:2a:b4:de:e9:f8:78:d0:26: c8:d4:4a:7f:b3:3a:bf:3a:80:eb:e2:ee:24:80:83: 26:5a:07:07:b0:1b:1d:c4:10:1d:38:59:0a:35:11: 7a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7B:19:87:C2:B8:DC:40:51:80:92:82:BA:F9:C7:BD:41:EF:3C:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82ef9627-3684-4965-aefc-7862ff527ad3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.165.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:29:42:61:c8:fd:89:d0:00:e8:b8:85:d5:e6:5d:d0:f8:00: f6:6c:af:87:e6:b9:62:83:6d:c8:a4:1e:78:ea:0a:95:67:26: c3:87:23:00:e3:2d:34:8b:12:4e:e2:44:09:da:f8:40:b4:a1: 93:49:57:2a:4c:e6:77:a0:e2:e8:6d:06:7d:67:25:f6:96:aa: 46:dc:10:15:dd:52:11:aa:87:a8:da:52:83:2b:a6:bd:ec:77: ec:c9:a8:fc:ad:48:03:a7:a8:98:26:b9:3c:d9:32:3f:7a:f7: ce:a0:8f:16:92:61:57:58:7f:44:e0:da:c3:99:48:a4:44:f5: 31:de:07:f7:0b:8b:84:4d:82:f4:41:94:a1:fa:f2:16:c3:4d: d9:42:99:4f:da:4a:87:38:60:8b:04:c0:51:eb:5c:1c:5c:84: 0e:c5:3f:60:67:60:7b:ec:36:e9:36:89:67:37:7f:62:4e:66: 26:76:45:0a:64:c2:5b:11:d4:5b:30:2f:cd:83:b6:8f:d6:82: 2b:da:27:d2:84:e3:eb:a0:04:18:25:f9:67:3c:d3:67:2b:fa: fe:e7:2a:f2:27:c7:53:15:c5:f5:6d:e0:b8:c0:24:26:b3:84: 97:2e:d1:19:a5:5a:84:48:b6:c6:ec:b5:ce:a1:aa:59:f6:ed: 75:4c:1e:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVCUBMov+yLJLsvadwqN8n2LGAZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAyMDMwWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWYwMjAzZTc5YTU2YThjZGRiOWU5ZDU0ODEwODM3YmNi ZjhlMmEyMmI3MGY5OTY1NDM4N2MyNzdhNDQ0MjE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWzdCrIXVs6G1N6/HK4cK/ALEs9wCJOP0FXD2k5SsLb2BD Lsowm3fn4Vb0VQE/lZ5WvbpK4E+jU5IHRMDZsu+bhH/TKafmX3YEauIKxtLTUpLF jaAHwkS5+LOgUxm+3WE1RSciS5SwW0hRyUX0bzoMdi2qmcBk05e4gyvLmCcAmsDA FObwbs4PfrqhznFS0+Un9y28gsakj0+R47GXg+IlrdAl5fwRQqhweH3eb2rPZ5eG iA9wKV5MXlJ8TBYuw6CcGBN4exgd1RNm43CBXBmGAVQi/chwQqsqtN7p+HjQJsjU Sn+zOr86gOvi7iSAgyZaBwewGx3EEB04WQo1EXobAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUL3sZh8K43EBRgJKCuvnHvUHvPKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyZWY5NjI3LTM2ODQtNDk2NS1hZWZjLTc4NjJmZjUyN2FkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pTANBgkqhkiG9w0BAQsFAAOCAQEAOylCYcj9idAA6LiF1eZd0PgA9myv h+a5YoNtyKQeeOoKlWcmw4cjAOMtNIsSTuJECdr4QLShk0lXKkzmd6Di6G0GfWcl 9paqRtwQFd1SEaqHqNpSgyumvex37Mmo/K1IA6eomCa5PNkyP3r3zqCPFpJhV1h/ RODaw5lIpET1Md4H9wuLhE2C9EGUofryFsNN2UKZT9pKhzhgiwTAUetcHFyEDsU/ YGdge+w26TaJZzd/Yk5mJnZFCmTCWxHUWzAvzYO2j9aCK9on0oTj66AEGCX5ZzzT Zyv6/ucq8ifHUxXF9W3guMAkJrOEly7RGaVahEi2xuy1zqGqWfbtdUweiw== -----END CERTIFICATE-----Generated at Tue Jul 22 04:55:11 2025 by rpki-client