$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8874e635-d9df-43c1-b44b-b12c7fe93bde.roa File: 8874e635-d9df-43c1-b44b-b12c7fe93bde.roa (raw, json) Hash identifier: H1jBfHJXaKOOmNYTgW8fePHPuWKbsv2Koo1YxCh8A6Y= Subject key identifier: 6D:45:F3:3F:FA:85:27:3C:CE:EE:71:0F:A1:F9:62:57:6A:47:8F:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3063016CCA2592E93B21D608E8CF5AE00EFCA6AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8874e635-d9df-43c1-b44b-b12c7fe93bde.roa Signing time: Tue 08 Jul 2025 00:50:21 +0000 ROA not before: Tue 08 Jul 2025 00:50:21 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:63:01:6c:ca:25:92:e9:3b:21:d6:08:e8:cf:5a:e0:0e:fc:a6:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:50:21 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=2d79a8b55f93a7775fd569886fb2c46e2b46767a7eb6b2ca26f3c26209187eed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:67:ec:34:15:cb:db:45:7a:57:bd:9f:d7: 14:db:bd:b9:5f:fc:96:42:f8:ce:a6:06:e9:e7:e6: 6c:bf:cf:81:ca:1c:40:1d:8c:64:ac:fb:0f:e4:64: c3:df:4f:28:1e:5b:37:fb:af:a1:f0:5a:10:80:29: 86:0e:f5:ba:65:09:d4:76:bb:c6:6f:2d:df:1d:0d: f0:78:fd:e3:eb:f3:42:7d:ea:ca:ea:74:d8:58:ef: bd:c8:3b:7c:ec:24:a4:9d:c9:1b:29:6b:a0:0d:00: 41:e2:32:8e:53:7c:c1:70:79:54:99:91:7b:fc:b4: 94:2d:92:00:ff:f5:9c:eb:76:f4:0c:b1:82:54:b9: 10:38:52:25:3f:35:b8:d8:d7:4f:3c:b3:61:75:ff: 76:9c:42:e9:5b:52:04:c1:ac:fe:2c:c0:c5:be:2e: b9:0f:df:56:c7:d0:df:1d:42:1c:93:d1:1e:16:e6: f3:1a:a3:52:9e:24:0c:25:57:45:42:af:36:00:59: 58:58:e2:d3:7b:aa:c9:ed:1c:bd:d1:d7:13:ee:1d: df:5e:f0:ee:af:16:c2:ff:84:18:43:2b:cb:8f:63: 0f:a4:d9:be:90:59:8e:e2:b0:8d:83:e4:9d:58:fb: 69:2d:6d:f6:4b:d8:39:b7:fb:97:e8:9a:55:fc:8f: 0f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:45:F3:3F:FA:85:27:3C:CE:EE:71:0F:A1:F9:62:57:6A:47:8F:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8874e635-d9df-43c1-b44b-b12c7fe93bde.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:be:e6:bf:13:18:7f:ad:e0:17:a9:b7:2d:ad:19:f4:3e:4c: 81:23:3b:72:65:93:b3:86:97:4c:23:86:ea:16:a5:f2:e3:ef: cb:7f:21:6b:04:95:d2:05:84:02:78:f6:b9:8a:f0:34:35:47: 59:a3:29:38:98:8c:34:f9:0e:6a:52:17:ec:86:5b:bb:dd:aa: 1d:56:7a:19:51:13:cf:cf:fb:75:d4:d5:85:9b:86:a2:3f:a0: e6:bc:c1:16:cf:28:7d:26:6c:48:be:7c:22:d1:a5:bc:80:47: b6:1e:ca:b3:cd:60:d1:f6:fc:ba:e2:4d:86:85:57:90:f3:0f: 85:2e:e9:22:08:04:f2:48:c7:db:8c:6b:9c:94:67:6d:c4:9d: 68:1e:0c:8f:64:ee:d2:da:36:a0:ad:e0:b3:81:66:9e:4e:57: 1c:6c:19:6c:9c:b9:22:1f:55:30:8e:4c:a7:0b:e9:cf:d0:e0: 90:49:ed:17:cc:51:ae:a2:9d:52:f6:12:86:bb:95:a4:2f:d0: 8f:9f:d2:80:69:17:92:0f:c0:e1:98:bd:d6:8f:e2:62:3f:54: 22:39:e2:78:99:8e:b0:dd:dc:53:f0:73:0b:67:1e:2d:10:fb: fe:16:bc:82:fe:22:be:63:fc:7e:02:89:fc:75:46:db:6f:2b: 3b:64:c7:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMGMBbMolkuk7IdYI6M9a4A78pq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDA1MDIxWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDc5YThiNTVmOTNhNzc3NWZkNTY5ODg2ZmIyYzQ2ZTJi NDY3NjdhN2ViNmIyY2EyNmYzYzI2MjA5MTg3ZWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDeWfsNBXL20V6V72f1xTbvblf/JZC+M6mBunn5my/z4HK HEAdjGSs+w/kZMPfTygeWzf7r6HwWhCAKYYO9bplCdR2u8ZvLd8dDfB4/ePr80J9 6srqdNhY773IO3zsJKSdyRspa6ANAEHiMo5TfMFweVSZkXv8tJQtkgD/9ZzrdvQM sYJUuRA4UiU/NbjY1088s2F1/3acQulbUgTBrP4swMW+LrkP31bH0N8dQhyT0R4W 5vMao1KeJAwlV0VCrzYAWVhY4tN7qsntHL3R1xPuHd9e8O6vFsL/hBhDK8uPYw+k 2b6QWY7isI2D5J1Y+2ktbfZL2Dm3+5fomlX8jw9VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbUXzP/qFJzzO7nEPofliV2pHj58wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4NzRlNjM1LWQ5ZGYtNDNjMS1iNDRiLWIxMmM3ZmU5M2JkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugUAwDQYJKoZIhvcNAQELBQADggEBAC6+5r8TGH+t4Bepty2tGfQ+TIEj O3Jlk7OGl0wjhuoWpfLj78t/IWsEldIFhAJ49rmK8DQ1R1mjKTiYjDT5DmpSF+yG W7vdqh1WehlRE8/P+3XU1YWbhqI/oOa8wRbPKH0mbEi+fCLRpbyAR7YeyrPNYNH2 /LriTYaFV5DzD4Uu6SIIBPJIx9uMa5yUZ23EnWgeDI9k7tLaNqCt4LOBZp5OVxxs GWycuSIfVTCOTKcL6c/Q4JBJ7RfMUa6inVL2Eoa7laQv0I+f0oBpF5IPwOGYvdaP 4mI/VCI54niZjrDd3FPwcwtnHi0Q+/4WvIL+Ir5j/H4Cifx1RttvKztkx4M= -----END CERTIFICATE-----Generated at Mon Jul 21 13:01:43 2025 by rpki-client