$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa File: e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa (raw, json) Hash identifier: RovDxy9mKMxRvRLwNf1rhDsyabe2CEFV4uFzdmt9TSI= Subject key identifier: B3:81:0D:12:8E:97:98:E0:17:A5:E0:8D:D5:63:1D:39:00:11:A8:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69D251120D0C5D6E2E31F3717AA7B8F565D3BEF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa Signing time: Tue 08 Jul 2025 15:00:13 +0000 ROA not before: Tue 08 Jul 2025 15:00:13 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d2:51:12:0d:0c:5d:6e:2e:31:f3:71:7a:a7:b8:f5:65:d3:be:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:00:13 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=77d037d5ebcf24a236eab0ab058c09bc9fbb5c2ba1c7544e9ab7d84e8c4a2b79, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:16:f6:38:50:d4:da:dc:de:ab:5f:4f:62:3e: 2f:c7:d3:c2:1e:4c:21:46:31:7f:28:60:a6:b0:31: bd:82:5f:aa:9b:8c:9c:b5:43:49:7b:86:73:c2:bb: 7e:b4:31:3e:e9:85:e3:09:9f:27:63:45:e1:d8:b0: 9c:d2:27:55:5e:d8:e1:1e:c0:7b:63:71:d7:7b:1b: 21:cf:73:93:16:94:8f:db:60:84:d4:77:cb:35:c9: 97:8d:4f:0e:ef:48:4e:35:c7:14:be:9a:2f:ea:6f: cb:02:7e:1f:ef:3b:e6:fa:00:c8:72:e4:da:6f:21: cc:90:21:0a:90:aa:fd:93:58:55:42:c3:4b:35:14: 32:bb:d3:82:09:00:65:f3:cd:27:ad:47:2c:0a:54: 42:53:e6:64:d6:71:86:e6:43:c5:04:3d:25:e4:5b: 36:73:25:2a:a0:8c:e0:ee:04:c2:49:ce:07:83:f5: d5:fb:da:ab:62:70:63:fb:bc:63:1a:a3:7c:56:3f: ce:ab:a0:02:f5:35:be:83:68:3e:12:73:3a:19:b2: fe:62:5f:e4:1f:e1:f6:05:bf:ce:10:0c:fe:00:99: 17:13:3d:dd:e3:11:7f:c7:ff:d8:34:35:e2:cc:09: 28:1c:16:fc:98:a4:70:70:bf:09:89:45:16:8d:18: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:81:0D:12:8E:97:98:E0:17:A5:E0:8D:D5:63:1D:39:00:11:A8:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.168.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:90:6b:0c:47:ce:35:bf:6e:c9:6f:1e:18:25:32:06:7f:5f: 42:98:81:9b:6d:59:73:28:10:90:79:00:c5:ce:21:1d:77:85: 32:82:2d:eb:fd:2e:7e:c1:1b:fc:b5:37:27:8b:de:7f:36:ba: de:b0:4a:76:a4:62:f8:a8:59:15:c8:30:65:68:85:4e:d9:66: 59:cf:fb:41:cb:ae:e1:08:13:23:b1:88:34:61:b3:11:43:66: 65:38:34:95:46:00:1c:16:04:c7:54:5c:bf:f0:cd:46:df:e2: e0:c4:62:a1:46:71:ee:aa:1e:42:27:54:70:8d:f6:6e:7f:0f: 7a:30:b9:02:c6:2c:04:9f:d8:5e:ce:d1:0b:33:c4:b5:aa:bd: 8b:9a:a7:d5:b9:25:c9:8b:75:db:bf:e7:db:b7:73:f4:d6:fa: 9c:25:de:8a:73:c5:ea:cd:9e:46:46:af:36:fc:fe:e4:e8:05: 8e:50:06:7f:12:39:6b:17:4c:54:39:0e:c6:7d:51:53:0f:5b: 96:ae:eb:36:6f:ab:87:fa:c7:b4:3b:6e:16:2d:48:fa:f4:5f: ca:fa:90:fd:3e:6b:9d:24:f2:bc:f1:6d:e0:a0:3a:50:99:a9: fa:ed:67:eb:58:8a:95:13:0f:d4:f3:1b:b6:b1:df:88:12:0a: a2:d6:42:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUadJREg0MXW4uMfNxeqe49WXTvvYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUwMDEzWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2QwMzdkNWViY2YyNGEyMzZlYWIwYWIwNThjMDliYzlm YmI1YzJiYTFjNzU0NGU5YWI3ZDg0ZThjNGEyYjc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPFvY4UNTa3N6rX09iPi/H08IeTCFGMX8oYKawMb2CX6qb jJy1Q0l7hnPCu360MT7pheMJnydjReHYsJzSJ1Ve2OEewHtjcdd7GyHPc5MWlI/b YITUd8s1yZeNTw7vSE41xxS+mi/qb8sCfh/vO+b6AMhy5NpvIcyQIQqQqv2TWFVC w0s1FDK704IJAGXzzSetRywKVEJT5mTWcYbmQ8UEPSXkWzZzJSqgjODuBMJJzgeD 9dX72qticGP7vGMao3xWP86roAL1Nb6DaD4SczoZsv5iX+Qf4fYFv84QDP4AmRcT Pd3jEX/H/9g0NeLMCSgcFvyYpHBwvwmJRRaNGOQRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs4ENEo6XmOAXpeCN1WMdOQARqM4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4ZjE3YjA0LTE2NDUtNDhjMS1iZGRlLWY2Yzg0NzRjYWQ2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsqgwDQYJKoZIhvcNAQELBQADggEBAF2QawxHzjW/bslvHhglMgZ/X0KY gZttWXMoEJB5AMXOIR13hTKCLev9Ln7BG/y1NyeL3n82ut6wSnakYvioWRXIMGVo hU7ZZlnP+0HLruEIEyOxiDRhsxFDZmU4NJVGABwWBMdUXL/wzUbf4uDEYqFGce6q HkInVHCN9m5/D3owuQLGLASf2F7O0QszxLWqvYuap9W5JcmLddu/59u3c/TW+pwl 3opzxerNnkZGrzb8/uToBY5QBn8SOWsXTFQ5DsZ9UVMPW5au6zZvq4f6x7Q7bhYt SPr0X8r6kP0+a50k8rzxbeCgOlCZqfrtZ+tYipUTD9TzG7ax34gSCqLWQso= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:39 2025 by rpki-client