$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa File: 58c78734-91d9-4994-9461-7b6172f0caa6.roa (raw, json) Hash identifier: wAZDd8njyeG+D9434+SS53uuoMuXddUy8eFGjRermEs= Subject key identifier: 8A:77:B1:78:22:37:B8:16:2E:25:A8:A0:FF:58:A4:12:CD:FB:4B:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AE203A56D91C7059209CFF00D113DA96DC2406B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa Signing time: Sat 30 Aug 2025 00:40:29 +0000 ROA not before: Sat 30 Aug 2025 00:40:29 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.202.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e2:03:a5:6d:91:c7:05:92:09:cf:f0:0d:11:3d:a9:6d:c2:40:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:40:29 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=ea2d698b5281fe8256340f3df915cfd629ed2bfc2c8d829f1ee668e70844e359, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:57:04:80:70:cd:ef:c7:d2:fe:2c:89:a9: e1:c5:06:7a:06:36:b2:1c:0c:f6:34:e7:8b:0f:c5: d8:d2:95:03:6f:8e:44:af:a9:0c:47:68:b4:52:60: 5c:7d:47:b4:12:a4:9b:26:25:6c:72:d4:36:b6:f8: f5:70:b2:40:cb:fc:cf:97:bd:70:62:ad:25:6a:f0: fe:6c:cb:37:c2:2b:58:38:79:99:a1:f9:b6:ef:94: 50:59:31:72:65:8c:c6:39:6d:ca:3a:21:71:7d:1e: 78:21:bc:8e:07:d9:48:d1:d6:09:aa:dc:7c:00:26: e9:64:45:4c:5c:bb:aa:e2:53:13:82:6d:be:30:4c: a8:34:1f:cb:13:41:fd:96:0c:bb:d6:c8:83:3c:73: 16:46:99:5a:52:e3:37:57:54:e8:58:d9:ab:b5:4b: bb:20:fa:13:73:c3:db:9a:7b:54:56:3c:26:95:0c: 94:09:93:9f:0b:cb:ed:c9:6c:01:07:74:54:88:1a: 3d:a7:87:ce:cf:5c:fd:b5:80:b6:30:dc:03:b5:25: 85:b8:92:e7:81:4b:4b:d2:16:8d:46:8d:14:23:63: 41:e2:d3:20:fc:f8:d8:82:8e:ab:c1:04:f3:0b:2e: 01:ba:60:8d:73:a6:d3:a0:48:50:b0:e1:95:15:e7: 39:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:77:B1:78:22:37:B8:16:2E:25:A8:A0:FF:58:A4:12:CD:FB:4B:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption 01:ba:32:57:eb:6f:44:cc:27:32:8a:44:1f:e9:7c:78:3b:74: d3:4a:ff:bc:4d:0a:09:87:2c:5a:e5:40:96:bc:ff:50:30:c6: 2d:0d:e6:b5:c4:ba:6b:06:07:6d:77:08:c2:35:42:e0:5c:33: 5d:e8:2e:03:38:9a:17:60:71:a0:c4:93:f5:fa:29:36:06:03: ab:ba:1b:57:24:c6:bf:c7:d0:ef:16:29:54:88:fd:c3:67:be: b9:26:b2:95:ba:e9:ad:9b:03:f2:e5:06:1f:f2:46:75:47:45: b0:e2:bb:e8:76:7d:b5:6c:c5:32:19:9d:c9:9f:c6:4e:40:d5: fe:e8:42:49:96:8f:02:e7:f5:a0:dd:de:33:5c:1e:81:2e:6c: 18:ef:83:89:27:ce:d6:81:6f:d7:7b:3f:d6:7e:bf:a8:a6:95: e1:32:26:7d:cd:1f:28:69:e6:d3:01:b5:89:5d:0e:3f:d3:06: 21:1d:dc:e5:4f:0b:c3:e5:54:8c:03:7d:e4:c5:74:48:93:54: 98:65:be:69:66:29:2f:78:37:16:9c:6d:04:da:90:e9:43:d4: 58:68:20:5f:30:cf:95:5c:49:4c:f9:95:54:97:0c:f3:f0:99: 98:99:c8:2f:91:23:16:22:c8:f3:95:90:ec:bb:86:7b:02:02: b7:98:83:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSuIDpW2RxwWSCc/wDRE9qW3CQGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDA0MDI5WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTJkNjk4YjUyODFmZTgyNTYzNDBmM2RmOTE1Y2ZkNjI5 ZWQyYmZjMmM4ZDgyOWYxZWU2NjhlNzA4NDRlMzU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDELlcEgHDN78fS/iyJqeHFBnoGNrIcDPY054sPxdjSlQNv jkSvqQxHaLRSYFx9R7QSpJsmJWxy1Da2+PVwskDL/M+XvXBirSVq8P5syzfCK1g4 eZmh+bbvlFBZMXJljMY5bco6IXF9HnghvI4H2UjR1gmq3HwAJulkRUxcu6riUxOC bb4wTKg0H8sTQf2WDLvWyIM8cxZGmVpS4zdXVOhY2au1S7sg+hNzw9uae1RWPCaV DJQJk58Ly+3JbAEHdFSIGj2nh87PXP21gLYw3AO1JYW4kueBS0vSFo1GjRQjY0Hi 0yD8+NiCjqvBBPMLLgG6YI1zptOgSFCw4ZUV5znBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUinexeCI3uBYuJaig/1ikEs37S9owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4Yzc4NzM0LTkxZDktNDk5NC05NDYxLTdiNjE3MmYwY2FhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAAG6Mlfrb0TMJzKKRB/pfHg7dNNK /7xNCgmHLFrlQJa8/1Awxi0N5rXEumsGB213CMI1QuBcM13oLgM4mhdgcaDEk/X6 KTYGA6u6G1ckxr/H0O8WKVSI/cNnvrkmspW66a2bA/LlBh/yRnVHRbDiu+h2fbVs xTIZncmfxk5A1f7oQkmWjwLn9aDd3jNcHoEubBjvg4knztaBb9d7P9Z+v6imleEy Jn3NHyhp5tMBtYldDj/TBiEd3OVPC8PlVIwDfeTFdEiTVJhlvmlmKS94NxacbQTa kOlD1FhoIF8wz5VcSUz5lVSXDPPwmZiZyC+RIxYiyPOVkOy7hnsCAreYg/E= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:33 2025 by rpki-client