$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7004d015-2c17-4923-a823-e12cd7f4aa5a.roa File: 7004d015-2c17-4923-a823-e12cd7f4aa5a.roa (raw, json) Hash identifier: LEm3Jc67WqZuoPGL8ugybosXg1dJpA2k2GT46dibmJ4= Subject key identifier: 3E:3B:B2:47:AB:0E:1D:50:66:50:A6:AD:33:0B:48:81:40:C3:DE:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DE6F944FE5256A65DA6588B12609C78A4ACBA83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7004d015-2c17-4923-a823-e12cd7f4aa5a.roa Signing time: Mon 01 Sep 2025 15:10:29 +0000 ROA not before: Mon 01 Sep 2025 15:10:29 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.102.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e6:f9:44:fe:52:56:a6:5d:a6:58:8b:12:60:9c:78:a4:ac:ba:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:10:29 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=cc12bb0962b50931b818696e3bbbccd866159a554ede03f1e6cfcb72c86a4803, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2b:39:e2:f1:d3:02:61:d2:c2:5b:b4:e2:6c: a2:15:1d:a3:a4:a3:d9:f6:ba:59:41:89:0a:c2:66: 0f:cf:50:4e:76:e6:92:ed:84:88:8e:33:0e:ef:c1: 63:da:a9:54:14:89:a1:70:50:9d:36:1a:16:13:52: a9:5e:8f:86:88:c0:44:88:31:07:19:39:43:97:70: 55:1e:e6:1c:b0:b3:1b:14:dc:bd:93:a0:c8:39:70: e2:5d:f3:13:1a:c4:a1:c5:22:69:45:35:e8:de:a2: cc:63:cc:3a:af:d9:cb:38:b3:be:fc:fc:4c:01:be: a3:ed:25:10:01:a9:43:5f:d4:3c:9b:c0:42:19:f8: 27:24:ed:17:98:1a:c6:d8:98:fd:c7:a0:75:ed:6f: 2b:06:4e:b5:42:bd:6f:57:e0:ac:f7:30:95:18:86: d2:c8:cf:cd:f0:2b:13:96:47:b0:16:06:75:0c:ca: 98:59:66:99:b3:9e:ce:9f:9a:15:e6:49:7a:34:0f: f3:6a:c1:80:0e:53:fa:35:8a:10:2c:16:83:5f:a8: fb:0c:41:87:22:72:66:82:bf:d4:09:c9:3a:14:9a: 11:9d:70:16:78:03:ff:9c:04:6f:69:1e:3a:f1:d6: 0b:14:eb:ce:9d:68:b7:33:8f:a6:fe:5e:8b:91:d8: ce:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3B:B2:47:AB:0E:1D:50:66:50:A6:AD:33:0B:48:81:40:C3:DE:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7004d015-2c17-4923-a823-e12cd7f4aa5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.102.160.0/19 Signature Algorithm: sha256WithRSAEncryption ba:c0:ee:f3:03:15:4f:87:f9:f9:7a:12:fe:29:5d:d6:ea:04: 62:27:ed:2d:aa:4f:c0:77:da:de:1c:58:ef:7a:53:04:77:78: e0:f7:e9:66:f3:9c:25:5c:df:70:05:74:f9:35:98:db:4c:95: 61:81:53:71:55:93:61:48:64:5c:85:00:8d:52:e6:21:ee:3e: 19:45:ca:19:f8:9b:30:cd:22:49:fa:aa:bd:f8:ef:39:1a:3c: 24:c1:ef:9e:60:69:71:3a:2d:d8:84:fb:4c:ec:1a:e6:16:a0: 52:17:a2:eb:ae:99:1b:04:a2:9c:8e:5d:47:f4:a8:9f:cc:d5: f9:97:50:99:f6:8a:5a:54:f9:b3:88:80:b3:84:15:66:1f:51: ce:ce:df:c1:e0:56:5d:62:a0:fc:cc:aa:02:cd:cf:c8:1d:9d: c2:f8:82:92:78:7a:55:55:ce:79:b4:3c:d7:ff:04:d9:cb:35: 0a:59:f0:b3:da:f0:09:9a:1d:b1:02:4f:19:fe:96:ed:16:7f: cb:3b:d1:4b:54:5e:38:6a:53:a0:04:37:90:02:aa:d5:fd:3e: a1:03:da:98:6b:e6:67:b8:d7:2c:32:9e:70:c9:72:db:1e:77: 56:13:e8:a8:6b:f6:85:6f:29:40:4c:a5:35:71:3a:0f:c4:a4: 09:52:22:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXeb5RP5SVqZdpliLEmCceKSsuoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMDI5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzEyYmIwOTYyYjUwOTMxYjgxODY5NmUzYmJiY2NkODY2 MTU5YTU1NGVkZTAzZjFlNmNmY2I3MmM4NmE0ODAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnKzni8dMCYdLCW7TibKIVHaOko9n2ullBiQrCZg/PUE52 5pLthIiOMw7vwWPaqVQUiaFwUJ02GhYTUqlej4aIwESIMQcZOUOXcFUe5hywsxsU 3L2ToMg5cOJd8xMaxKHFImlFNejeosxjzDqv2cs4s778/EwBvqPtJRABqUNf1Dyb wEIZ+Cck7ReYGsbYmP3HoHXtbysGTrVCvW9X4Kz3MJUYhtLIz83wKxOWR7AWBnUM yphZZpmzns6fmhXmSXo0D/NqwYAOU/o1ihAsFoNfqPsMQYcicmaCv9QJyToUmhGd cBZ4A/+cBG9pHjrx1gsU686daLczj6b+XouR2M6rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPjuyR6sOHVBmUKatMwtIgUDD3pgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwMDRkMDE1LTJjMTctNDkyMy1hODIzLWUxMmNkN2Y0YWE1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWoZqAwDQYJKoZIhvcNAQELBQADggEBALrA7vMDFU+H+fl6Ev4pXdbqBGIn 7S2qT8B32t4cWO96UwR3eOD36WbznCVc33AFdPk1mNtMlWGBU3FVk2FIZFyFAI1S 5iHuPhlFyhn4mzDNIkn6qr347zkaPCTB755gaXE6LdiE+0zsGuYWoFIXouuumRsE opyOXUf0qJ/M1fmXUJn2ilpU+bOIgLOEFWYfUc7O38HgVl1ioPzMqgLNz8gdncL4 gpJ4elVVznm0PNf/BNnLNQpZ8LPa8AmaHbECTxn+lu0Wf8s70UtUXjhqU6AEN5AC qtX9PqED2phr5me41ywynnDJctsed1YT6Khr9oVvKUBMpTVxOg/EpAlSIvQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:00 2025 by rpki-client