$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9b5da30-4c94-4417-a10c-61870d4f6bbf.roa File: d9b5da30-4c94-4417-a10c-61870d4f6bbf.roa (raw, json) Hash identifier: Qdm7LFA+L0teXO7/MN/EcioFJ9PkdGvUxa47dos5nWo= Subject key identifier: 12:71:6A:83:D8:9B:E4:32:B9:F9:15:6B:90:E2:9E:4E:B3:2D:0C:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 195CF74C4D05D280ADCF9AA3A7155712CAF7AB93 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9b5da30-4c94-4417-a10c-61870d4f6bbf.roa Signing time: Mon 21 Jul 2025 16:00:24 +0000 ROA not before: Mon 21 Jul 2025 16:00:24 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.151.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5c:f7:4c:4d:05:d2:80:ad:cf:9a:a3:a7:15:57:12:ca:f7:ab:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 16:00:24 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=701024f880481b826a3be0d443bbdde4470c436d1a154d1b66195d85571e6311, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f2:99:1c:a2:68:63:48:b7:b1:39:59:a3:3f: 2a:3e:7a:cf:3f:72:8d:9c:d7:ef:d7:5d:2c:00:6a: b7:bc:f0:55:15:67:13:f3:81:4b:a2:95:2f:53:8a: 7a:16:5f:bd:f2:95:0e:79:a3:5c:76:80:55:87:f2: 5e:c1:17:25:9d:c1:45:57:e7:4e:11:ca:ab:8c:cc: 58:8d:6b:63:93:17:e8:d3:97:c5:17:f3:e8:53:3a: a7:9e:c4:6e:eb:4f:20:8e:eb:88:1f:61:00:dd:0d: 90:5d:a4:20:8b:1a:58:32:7c:1a:a0:3c:d0:92:be: 48:13:4e:95:31:0f:98:72:03:f7:a4:af:40:7f:e9: 83:33:17:8a:ca:fd:50:25:1f:fd:d2:4e:af:a6:dc: 29:c6:47:b1:5e:d2:38:a3:1f:2b:56:f1:88:62:be: 20:67:d5:7e:90:38:cd:e8:3e:7b:50:e6:a7:8b:b7: 31:68:99:63:09:a0:23:1c:e9:92:49:56:4e:8f:55: 9d:ac:a2:70:bd:d3:dc:a9:8c:12:ce:70:b7:d2:a1: 56:d0:58:a1:1d:be:2d:21:97:da:c9:82:5e:56:22: 7c:05:06:7e:2d:98:96:b4:3b:d1:f2:85:56:48:fc: cc:0c:22:d2:28:93:a0:e4:59:69:eb:92:00:c9:5b: a3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:71:6A:83:D8:9B:E4:32:B9:F9:15:6B:90:E2:9E:4E:B3:2D:0C:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9b5da30-4c94-4417-a10c-61870d4f6bbf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.184.0/24 Signature Algorithm: sha256WithRSAEncryption bf:6a:53:41:f5:0b:36:07:39:3e:b0:f9:db:0f:b9:3b:aa:e2: 1d:12:16:1e:78:ce:8d:59:8e:b8:fb:00:eb:47:30:df:97:38: 26:3f:f3:7d:53:83:bc:1b:db:55:30:8a:20:16:28:59:51:a6: ad:6f:da:38:be:04:bc:0a:18:28:d3:d2:73:89:be:67:20:f0: 10:96:7b:1d:fe:2e:81:c0:71:1d:5e:64:53:2f:79:22:fb:e8: 09:38:f6:93:68:d0:51:dc:eb:bd:14:1e:9e:6b:4a:4a:33:13: c5:c9:f3:40:1d:6a:65:e1:c4:a8:ed:61:34:6d:ff:b8:3d:20: 68:d9:00:20:39:7f:28:84:10:0d:02:bd:8e:6d:3e:ec:f9:22: 1a:1d:83:77:8a:04:0b:77:ca:5f:2a:70:32:87:74:68:34:09: 09:2f:13:ea:ea:23:96:f8:ea:af:de:84:64:76:6a:84:e7:1c: 8f:b9:a7:17:cf:f7:71:52:b2:f1:18:14:83:1d:60:ee:03:89: 69:43:46:dd:9f:84:53:52:48:bd:e3:13:f7:5e:b1:9e:87:8d: c5:bf:9d:8a:eb:48:fc:e3:7a:9b:fb:ed:3e:c4:34:47:ad:ef: 33:35:f3:20:48:6a:f9:10:c4:8c:72:29:35:0a:31:ec:89:53: 1e:dc:a4:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGVz3TE0F0oCtz5qjpxVXEsr3q5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTYwMDI0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDEwMjRmODgwNDgxYjgyNmEzYmUwZDQ0M2JiZGRlNDQ3 MGM0MzZkMWExNTRkMWI2NjE5NWQ4NTU3MWU2MzExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi8pkcomhjSLexOVmjPyo+es8/co2c1+/XXSwAare88FUV ZxPzgUuilS9TinoWX73ylQ55o1x2gFWH8l7BFyWdwUVX504RyquMzFiNa2OTF+jT l8UX8+hTOqeexG7rTyCO64gfYQDdDZBdpCCLGlgyfBqgPNCSvkgTTpUxD5hyA/ek r0B/6YMzF4rK/VAlH/3STq+m3CnGR7Fe0jijHytW8YhiviBn1X6QOM3oPntQ5qeL tzFomWMJoCMc6ZJJVk6PVZ2sonC909ypjBLOcLfSoVbQWKEdvi0hl9rJgl5WInwF Bn4tmJa0O9HyhVZI/MwMItIok6DkWWnrkgDJW6PfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEnFqg9ib5DK5+RVrkOKeTrMtDMwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5YjVkYTMwLTRjOTQtNDQxNy1hMTBjLTYxODcwZDRmNmJiZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7gwDQYJKoZIhvcNAQELBQADggEBAL9qU0H1CzYHOT6w+dsPuTuq4h0S Fh54zo1Zjrj7AOtHMN+XOCY/831Tg7wb21UwiiAWKFlRpq1v2ji+BLwKGCjT0nOJ vmcg8BCWex3+LoHAcR1eZFMveSL76Ak49pNo0FHc670UHp5rSkozE8XJ80AdamXh xKjtYTRt/7g9IGjZACA5fyiEEA0CvY5tPuz5Ihodg3eKBAt3yl8qcDKHdGg0CQkv E+rqI5b46q/ehGR2aoTnHI+5pxfP93FSsvEYFIMdYO4DiWlDRt2fhFNSSL3jE/de sZ6HjcW/nYrrSPzjepv77T7ENEet7zM18yBIavkQxIxyKTUKMeyJUx7cpN4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:33 2025 by rpki-client