$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa File: 6e648563-7077-488e-a1d5-b03f10f986ce.roa (raw, json) Hash identifier: //MktXCKuubGZTxg3+4IXdidEs+zWVp4nD/bFIcO6eA= Subject key identifier: 74:61:9F:F4:37:2E:81:AE:C6:B7:5E:BC:FD:46:18:74:70:D4:22:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44FFEDE21618549BBBB05411715F4F34AD5B4CA3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa Signing time: Fri 29 Aug 2025 16:32:07 +0000 ROA not before: Fri 29 Aug 2025 16:32:07 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ff:ed:e2:16:18:54:9b:bb:b0:54:11:71:5f:4f:34:ad:5b:4c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:32:07 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=5cbf0c318031331f71dbe78d21e3b1e78ca5f1ea25dbd53c23d8da5e7a06df48, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b9:57:2b:64:ce:0e:f9:0d:35:f6:12:56:58: 2f:5a:31:16:10:59:58:61:1a:ae:a7:b1:ee:a0:1b: d2:e6:28:ff:45:cc:21:4d:53:cb:1f:0a:9b:3c:77: f1:f6:75:87:27:d1:6e:df:0c:6c:5d:ea:29:a8:47: 21:30:ad:70:17:08:a4:46:20:70:3c:50:02:bf:6e: 5c:e9:e3:16:74:23:51:93:bd:dd:62:bf:89:5e:63: a5:ea:1b:28:a9:10:8b:49:15:16:ee:56:cd:ab:44: b3:e4:b7:ae:61:3c:64:ca:3b:d7:b3:db:4d:9a:be: 38:b7:55:c1:66:ed:4c:d0:23:c1:40:08:71:85:41: 06:b8:fe:72:e4:d4:9d:1f:29:2c:e3:5d:c9:51:cf: d6:ae:e6:6a:22:12:0a:1b:59:5b:ea:b0:20:ed:b0: 53:44:ad:bb:42:6f:14:6a:4d:aa:8b:91:2d:88:a1: 32:f6:cb:3d:2b:18:43:ec:dd:3d:2e:f0:76:64:99: 80:4d:ec:48:d8:79:b0:fc:1c:d8:dd:a1:5e:0e:16: f0:c9:73:2e:bd:d4:70:3e:52:54:ef:13:40:3f:04: eb:67:38:05:d3:b6:b2:f3:93:46:5f:b1:f5:0c:1c: 0f:c7:60:c7:7b:13:99:9a:49:35:b0:c2:76:53:2b: 8b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:61:9F:F4:37:2E:81:AE:C6:B7:5E:BC:FD:46:18:74:70:D4:22:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:df:e4:80:8a:32:8d:4a:f2:78:21:c8:13:ea:ce:a1:8e:f4: 74:f5:33:c5:20:1c:cb:12:3d:7c:2d:90:5a:16:c4:f7:f7:f7: 1b:9d:b6:68:84:ae:b6:51:b8:ce:dd:7d:3d:88:25:7f:dc:e9: 9b:d7:b0:ac:d8:ce:90:0b:a7:9e:9a:76:b6:c5:34:5a:0a:cd: 10:87:6e:b4:ec:d3:4a:a5:93:2c:2f:56:10:23:d8:3b:24:18: 39:3f:8b:08:fc:64:ce:9f:e8:e6:5e:3f:ed:8b:ac:8a:8d:07: 29:2a:1c:88:ad:28:b0:98:e0:c3:4e:95:c6:23:8e:2d:fd:8c: dd:9c:67:d5:dd:bf:ff:73:8a:e9:b6:34:54:5e:71:34:40:1d: 3c:a3:7d:90:c5:a3:4c:d5:0a:01:65:d2:40:9e:49:8f:62:18: 85:6c:84:ff:8f:33:33:13:b8:f8:40:c9:4b:8a:c2:98:ab:85: ea:6e:11:30:9e:72:85:81:88:cc:b7:2d:d0:1b:48:0e:18:50: b7:5f:cd:8c:3c:23:96:c7:1f:9e:df:d7:fa:2a:31:2b:a5:96: 7e:4a:c6:d3:40:6c:96:96:c3:8f:18:89:7c:28:f5:93:18:f5: 8a:bc:02:62:3d:c3:8a:92:95:2a:32:87:01:37:94:67:3c:48: ce:34:5e:03 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURP/t4hYYVJu7sFQRcV9PNK1bTKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYzMjA3WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2JmMGMzMTgwMzEzMzFmNzFkYmU3OGQyMWUzYjFlNzhj YTVmMWVhMjVkYmQ1M2MyM2Q4ZGE1ZTdhMDZkZjQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUuVcrZM4O+Q019hJWWC9aMRYQWVhhGq6nse6gG9LmKP9F zCFNU8sfCps8d/H2dYcn0W7fDGxd6imoRyEwrXAXCKRGIHA8UAK/blzp4xZ0I1GT vd1iv4leY6XqGyipEItJFRbuVs2rRLPkt65hPGTKO9ez202avji3VcFm7UzQI8FA CHGFQQa4/nLk1J0fKSzjXclRz9au5moiEgobWVvqsCDtsFNErbtCbxRqTaqLkS2I oTL2yz0rGEPs3T0u8HZkmYBN7EjYebD8HNjdoV4OFvDJcy691HA+UlTvE0A/BOtn OAXTtrLzk0ZfsfUMHA/HYMd7E5maSTWwwnZTK4vDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdGGf9Dcuga7Gt168/UYYdHDUIqswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlNjQ4NTYzLTcwNzctNDg4ZS1hMWQ1LWIwM2YxMGY5ODZjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowTANBgkqhkiG9w0BAQsFAAOCAQEAWN/kgIoyjUryeCHIE+rOoY70dPUz xSAcyxI9fC2QWhbE9/f3G522aISutlG4zt19PYglf9zpm9ewrNjOkAunnpp2tsU0 WgrNEIdutOzTSqWTLC9WECPYOyQYOT+LCPxkzp/o5l4/7Yusio0HKSociK0osJjg w06VxiOOLf2M3Zxn1d2//3OK6bY0VF5xNEAdPKN9kMWjTNUKAWXSQJ5Jj2IYhWyE /48zMxO4+EDJS4rCmKuF6m4RMJ5yhYGIzLct0BtIDhhQt1/NjDwjlscfnt/X+iox K6WWfkrG00BslpbDjxiJfCj1kxj1irwCYj3DipKVKjKHATeUZzxIzjReAw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:06 2025 by rpki-client