$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa File: f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa (raw, json) Hash identifier: NBCLB2IdNaFc9t+iHPHGsK6QLanwKwW3+ksQX04l5cQ= Subject key identifier: D7:47:C0:A6:A1:D8:2E:A1:61:2F:AE:39:EF:E9:62:72:72:BD:CF:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7243DB3123ECD6A9B35BF96869099B5B7A668772 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa Signing time: Fri 11 Jul 2025 00:50:29 +0000 ROA not before: Fri 11 Jul 2025 00:50:29 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 88.106.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:43:db:31:23:ec:d6:a9:b3:5b:f9:68:69:09:9b:5b:7a:66:87:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:50:29 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=ff224dc7fe22aeea17cc95402fd63ff09ab337f75053cc5089dea13f7cfd88ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:0b:d3:fa:67:61:c2:f6:33:f9:67:e6:10: 0d:d8:4c:2d:43:cb:cd:77:b5:7d:57:5d:19:d9:cf: c7:f5:75:13:9c:9e:44:7e:68:47:62:87:88:79:4e: 31:df:c3:0d:94:3d:5d:fc:be:a7:c1:19:de:ad:c3: 6d:3e:08:28:2b:e2:69:d4:c5:40:02:09:0e:0b:81: b7:f6:d0:d9:ac:e4:b5:66:15:65:d7:d9:36:40:c1: 56:f0:a6:a6:0d:c6:aa:4f:fa:ce:2b:6f:86:d8:a6: 8e:d4:a9:c3:f8:48:e0:fd:43:2d:b9:a2:bf:c6:31: 44:2e:2e:8d:d0:48:b6:65:6b:6c:99:ce:9a:d6:bb: 21:24:92:ac:5f:95:d9:be:09:70:cd:8e:91:a4:b5: 5f:d1:86:a3:fb:93:cb:e2:6b:84:d7:ad:c2:b9:0b: 05:9a:d7:2d:a0:25:c5:10:df:bc:bc:82:bb:58:17: 9c:8b:4c:47:8e:12:42:88:28:8d:03:77:d8:d5:91: 28:ff:b3:69:c0:a9:c6:5d:59:c3:42:a3:eb:b6:4c: 91:54:58:f4:87:b2:80:7f:00:ca:f8:a3:99:f4:0e: 55:ff:ab:c5:70:b3:53:77:1c:88:61:ea:08:17:b7: f0:8f:98:57:96:63:bc:03:f6:8f:b4:e6:33:fc:80: 10:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:47:C0:A6:A1:D8:2E:A1:61:2F:AE:39:EF:E9:62:72:72:BD:CF:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.106.0.0/15 Signature Algorithm: sha256WithRSAEncryption b2:67:13:b1:f2:92:b6:e8:96:b4:73:ed:92:d5:0a:aa:d6:b9: f8:60:cb:75:c6:c6:21:c5:cf:27:a7:a5:7c:d3:68:1c:d7:3f: 76:d9:c9:14:4d:a8:bb:82:61:3f:7d:6a:84:13:87:ec:b7:23: 43:02:0e:d3:c7:74:d6:98:47:ba:16:3e:c2:67:a0:37:ed:0a: e5:95:8f:99:20:60:b7:61:4e:62:6d:a2:34:06:3a:ce:6f:76: ba:bb:57:e0:f4:ce:bb:1b:69:03:2e:e6:9a:b2:9a:30:f7:32: 66:2d:0d:cf:08:6b:f3:2b:ac:4b:1b:8f:60:b8:d3:9d:1c:c8: 7e:63:99:00:83:a7:2c:2f:59:de:c8:b3:d8:02:2b:3a:ed:73: c8:88:76:c8:42:20:9b:a0:66:04:6f:19:96:8c:10:51:47:70: 46:2a:32:47:ff:9b:a3:7a:e1:2c:33:0b:de:fc:f3:bb:b9:c2: 63:78:1a:7c:08:e4:79:76:ba:19:26:83:ab:f6:74:ef:4c:7a: 9c:58:b8:1d:b6:2b:54:95:9f:0f:70:08:e8:f3:8b:f1:74:d7: 04:21:47:37:b0:a9:5e:d8:1f:8e:d9:49:d8:4c:b8:d0:1c:61: 4a:c2:ac:6e:8b:9a:0c:89:0a:a7:11:e4:64:61:b5:83:a5:a8: 25:5c:a8:18 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUckPbMSPs1qmzW/loaQmbW3pmh3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA1MDI5WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjIyNGRjN2ZlMjJhZWVhMTdjYzk1NDAyZmQ2M2ZmMDlh YjMzN2Y3NTA1M2NjNTA4OWRlYTEzZjdjZmQ4OGZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ywvT+mdhwvYz+WfmEA3YTC1Dy813tX1XXRnZz8f1dROc nkR+aEdih4h5TjHfww2UPV38vqfBGd6tw20+CCgr4mnUxUACCQ4Lgbf20Nms5LVm FWXX2TZAwVbwpqYNxqpP+s4rb4bYpo7UqcP4SOD9Qy25or/GMUQuLo3QSLZla2yZ zprWuyEkkqxfldm+CXDNjpGktV/RhqP7k8via4TXrcK5CwWa1y2gJcUQ37y8grtY F5yLTEeOEkKIKI0Dd9jVkSj/s2nAqcZdWcNCo+u2TJFUWPSHsoB/AMr4o5n0DlX/ q8Vws1N3HIhh6ggXt/CPmFeWY7wD9o+05jP8gBDNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU10fApqHYLqFhL6457+licnK9z2EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwMTAzOTQwLWM4ZGMtNGE0Yy1hYTZiLWQ4M2U2ODBmOGFiZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFYajANBgkqhkiG9w0BAQsFAAOCAQEAsmcTsfKStuiWtHPtktUKqta5+GDL dcbGIcXPJ6elfNNoHNc/dtnJFE2ou4JhP31qhBOH7LcjQwIO08d01phHuhY+wmeg N+0K5ZWPmSBgt2FOYm2iNAY6zm92urtX4PTOuxtpAy7mmrKaMPcyZi0Nzwhr8yus SxuPYLjTnRzIfmOZAIOnLC9Z3siz2AIrOu1zyIh2yEIgm6BmBG8ZlowQUUdwRioy R/+bo3rhLDML3vzzu7nCY3gafAjkeXa6GSaDq/Z070x6nFi4HbYrVJWfD3AI6POL 8XTXBCFHN7CpXtgfjtlJ2Ey40BxhSsKsbouaDIkKpxHkZGG1g6WoJVyoGA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:33 2025 by rpki-client