$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa File: 61b7b9ae-b712-4a51-b302-aafa1010e46e.roa (raw, json) Hash identifier: Bw+pgxRU+t7Ex/9dMDvsVyGfH4kQ04zvZb0+K83ROT4= Subject key identifier: 54:A3:80:F8:5D:E5:CB:8C:8B:5C:B2:B8:D1:CB:7E:FC:EE:D0:A3:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24008EE5FDEF73FB5A79CFEF19A9C228DCDB5AA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa Signing time: Fri 05 Sep 2025 00:00:14 +0000 ROA not before: Fri 05 Sep 2025 00:00:14 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:00:8e:e5:fd:ef:73:fb:5a:79:cf:ef:19:a9:c2:28:dc:db:5a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:00:14 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=2fbd829d1a39354131e461ec23ef0d591af43898ed32db20b73e20e02d311ff0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:6d:f3:da:56:71:10:99:62:bd:4a:71:80: bf:ab:04:21:10:d0:51:45:8d:f9:c1:f1:51:de:28: e0:68:95:6d:22:b9:6b:c5:98:61:0a:5d:11:2a:be: 86:2b:15:2c:83:aa:cf:14:b7:82:60:42:29:54:a7: 71:8c:7b:90:1c:e4:1a:a1:bf:83:75:1d:a7:57:ba: 06:38:d6:c2:b3:e7:8a:76:88:ae:8c:fc:ea:f6:f8: c4:86:a4:58:55:23:14:15:2d:e5:dc:54:64:79:4f: ca:e5:56:58:ff:78:13:6a:fb:c6:a7:62:7c:87:0c: 0e:96:4f:72:5a:15:e0:14:87:ce:8a:8c:bc:c1:72: cf:26:96:02:c4:96:95:7a:cf:1d:0a:af:b7:65:4f: a5:70:88:f2:d9:18:9f:67:20:36:03:df:6d:94:2a: 38:01:8f:1c:93:ed:90:ea:1c:2f:d1:fc:f6:05:27: 53:3c:f6:46:7f:d3:86:08:3c:ff:03:83:22:08:ac: 3c:0e:77:b4:d2:8c:f1:b2:10:79:10:3a:ac:40:1a: 9d:14:86:d6:9b:1e:11:e3:c0:a8:fc:c5:8f:76:3a: 8f:99:73:8d:78:11:05:1c:29:08:96:91:67:eb:04: 54:e2:d8:85:6e:0c:a2:bc:17:a8:a4:3b:a2:b5:f0: 9e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A3:80:F8:5D:E5:CB:8C:8B:5C:B2:B8:D1:CB:7E:FC:EE:D0:A3:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption ce:e5:cd:aa:87:79:23:23:b3:2b:bd:b6:ac:d4:8e:92:d5:ab: 03:e2:d8:6a:c8:41:b9:d7:f1:cc:0a:87:bd:de:83:51:81:0f: 38:cb:31:d8:05:6d:45:df:8f:1a:ab:c8:81:02:2f:22:88:fb: e2:ae:f8:85:38:a4:87:c0:ac:59:67:bb:65:7d:ea:dc:58:c9: 0d:83:09:21:94:73:83:a3:79:1f:5c:03:7a:e0:b3:74:3b:ac: ab:05:4d:1b:dc:d7:32:b5:09:e0:d5:ac:3c:0c:0a:e6:f0:45: a4:ae:94:b6:3f:a9:9b:55:10:85:0f:84:31:c7:9a:79:40:26: 83:38:a8:38:df:d8:91:08:7f:82:0c:30:54:be:90:af:58:8f: f8:1f:13:88:71:f0:7f:40:2f:fc:84:c9:3c:1a:b5:88:57:e1: 63:a9:63:8a:01:c0:85:27:1e:b6:5e:f3:20:1a:79:04:41:c6: fd:34:55:b7:6d:c7:8b:5b:7a:d0:fd:21:57:32:10:3a:16:8e: 0a:13:87:6b:8c:d8:fa:26:63:c3:44:1e:b3:28:0c:f9:56:72: 9b:81:87:1a:2f:35:e7:9c:5c:2e:5d:0e:1e:d4:46:c8:cb:84: 8c:86:f8:9e:e0:b3:ad:0c:87:af:bf:34:c7:fa:bb:1c:87:f6: 89:55:95:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJACO5f3vc/taec/vGanCKNzbWqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMDE0WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmJkODI5ZDFhMzkzNTQxMzFlNDYxZWMyM2VmMGQ1OTFh ZjQzODk4ZWQzMmRiMjBiNzNlMjBlMDJkMzExZmYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4B23z2lZxEJlivUpxgL+rBCEQ0FFFjfnB8VHeKOBolW0i uWvFmGEKXREqvoYrFSyDqs8Ut4JgQilUp3GMe5Ac5Bqhv4N1HadXugY41sKz54p2 iK6M/Or2+MSGpFhVIxQVLeXcVGR5T8rlVlj/eBNq+8anYnyHDA6WT3JaFeAUh86K jLzBcs8mlgLElpV6zx0Kr7dlT6VwiPLZGJ9nIDYD322UKjgBjxyT7ZDqHC/R/PYF J1M89kZ/04YIPP8DgyIIrDwOd7TSjPGyEHkQOqxAGp0UhtabHhHjwKj8xY92Oo+Z c414EQUcKQiWkWfrBFTi2IVuDKK8F6ikO6K18J6ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVKOA+F3ly4yLXLK40ct+/O7Qo7QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxYjdiOWFlLWI3MTItNGE1MS1iMzAyLWFhZmExMDEwZTQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFrsDANBgkqhkiG9w0BAQsFAAOCAQEAzuXNqod5IyOzK722rNSOktWrA+LY ashBudfxzAqHvd6DUYEPOMsx2AVtRd+PGqvIgQIvIoj74q74hTikh8CsWWe7ZX3q 3FjJDYMJIZRzg6N5H1wDeuCzdDusqwVNG9zXMrUJ4NWsPAwK5vBFpK6Utj+pm1UQ hQ+EMceaeUAmgzioON/YkQh/ggwwVL6Qr1iP+B8TiHHwf0Av/ITJPBq1iFfhY6lj igHAhScetl7zIBp5BEHG/TRVt23Hi1t60P0hVzIQOhaOChOHa4zY+iZjw0QesygM +VZym4GHGi8155xcLl0OHtRGyMuEjIb4nuCzrQyHr780x/q7HIf2iVWVKg== -----END CERTIFICATE-----Generated at Fri Sep 19 13:43:51 2025 by rpki-client