$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f4e946-8096-4a85-b5c0-07ef274af962.roa File: 75f4e946-8096-4a85-b5c0-07ef274af962.roa (raw, json) Hash identifier: qMVpTID/qOzTNrF/8FBWqJZBqyA+2k8fkAP4XSI3rmk= Subject key identifier: 28:4D:43:4C:A1:A8:A0:65:6C:68:8B:81:91:94:70:95:18:22:08:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63060CC48D25FB8176DAD72C638303F5D382AE9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f4e946-8096-4a85-b5c0-07ef274af962.roa Signing time: Tue 12 Aug 2025 00:30:16 +0000 ROA not before: Tue 12 Aug 2025 00:30:16 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.136.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:06:0c:c4:8d:25:fb:81:76:da:d7:2c:63:83:03:f5:d3:82:ae:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:30:16 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=c4114d2dd4bf2271582e3a098da84b7588b0857b16c56f45649b97a5b3413641, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6c:1b:1d:35:de:75:a4:a0:24:b7:54:04:c3: 29:06:1f:56:4f:b9:df:39:a5:30:76:82:79:e7:3a: 14:7a:f7:35:62:b6:eb:02:fe:0d:5e:d0:62:8a:82: f8:0b:b3:ef:81:30:c4:d6:2c:3f:d8:ed:96:b0:c2: 6c:d1:59:44:f6:9e:45:47:21:6d:49:33:8a:bd:fc: 98:64:cf:36:f6:0a:70:d2:e0:67:c4:6d:fa:2a:be: 13:21:9c:da:b6:6c:50:6c:5e:c3:15:35:d7:27:50: af:56:26:e3:a3:8d:e7:5e:1c:00:fe:b1:cd:ca:9a: a1:bf:3f:0f:46:28:89:3d:34:4e:16:f3:e1:4e:24: d5:1a:3f:2c:7c:93:a0:a5:73:e5:79:96:79:4a:d9: 5f:8a:a7:c3:7b:3c:dd:62:d5:ad:e3:83:c8:bc:e0: 91:ef:a2:dc:45:87:a8:71:81:3b:15:23:12:16:66: 97:f8:03:90:47:fa:4b:87:e0:1c:c3:85:70:12:ee: ad:ab:eb:33:62:67:de:04:32:75:ed:13:e0:0f:bb: 72:e2:51:b7:1d:8d:5b:67:c3:df:46:c1:aa:d0:9c: cf:86:00:62:91:80:09:0d:64:88:3c:3e:0d:ab:42: 08:dc:8a:3c:7b:19:4f:3a:25:62:a3:db:74:ad:e3: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4D:43:4C:A1:A8:A0:65:6C:68:8B:81:91:94:70:95:18:22:08:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f4e946-8096-4a85-b5c0-07ef274af962.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 94:a3:5c:48:87:ee:03:49:73:ca:25:ec:dd:7e:ab:73:6a:34: 6c:41:67:70:2a:70:71:8c:77:83:eb:ef:c4:39:08:e7:22:4e: ba:88:29:d0:84:00:34:98:82:f7:00:ea:03:18:2e:d4:87:84: 63:c7:8d:90:ef:2e:76:00:13:cb:eb:7e:61:35:f0:a6:8a:d9: 0c:f8:de:8d:14:a6:f5:cc:14:39:cf:22:37:28:1e:93:e4:8b: de:ee:4f:3c:d5:0b:8a:9d:2e:6b:1f:ae:b7:eb:60:fb:06:c6: 97:1a:d1:42:ee:88:11:cd:eb:db:bf:fc:03:02:a2:2d:10:68: 0a:9f:a2:28:bd:d7:ea:71:0f:b2:a2:57:42:3b:f5:10:04:60: af:96:da:8a:6c:77:a8:e5:d6:cf:a9:d4:7c:79:78:ff:35:42: bc:e0:46:42:0f:6c:74:cb:b4:73:c2:21:d6:4b:ea:8c:f3:28: bf:19:52:96:40:42:70:79:0f:f8:ed:25:16:4b:a4:28:ae:d7: 16:94:f8:c7:1d:75:57:60:8c:df:8b:12:27:c3:8e:46:b9:96: db:31:2e:42:2b:49:f8:03:b9:47:df:b9:ae:54:5f:03:15:75: d9:6e:65:0d:65:49:b9:6c:31:ca:34:34:54:c6:ae:e2:76:26: 22:18:d7:a1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYwYMxI0l+4F22tcsY4MD9dOCrpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMDE2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDExNGQyZGQ0YmYyMjcxNTgyZTNhMDk4ZGE4NGI3NTg4 YjA4NTdiMTZjNTZmNDU2NDliOTdhNWIzNDEzNjQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPbBsdNd51pKAkt1QEwykGH1ZPud85pTB2gnnnOhR69zVi tusC/g1e0GKKgvgLs++BMMTWLD/Y7ZawwmzRWUT2nkVHIW1JM4q9/Jhkzzb2CnDS 4GfEbfoqvhMhnNq2bFBsXsMVNdcnUK9WJuOjjedeHAD+sc3KmqG/Pw9GKIk9NE4W 8+FOJNUaPyx8k6Clc+V5lnlK2V+Kp8N7PN1i1a3jg8i84JHvotxFh6hxgTsVIxIW Zpf4A5BH+kuH4BzDhXAS7q2r6zNiZ94EMnXtE+APu3LiUbcdjVtnw99GwarQnM+G AGKRgAkNZIg8Pg2rQgjcijx7GU86JWKj23St41yhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKE1DTKGooGVsaIuBkZRwlRgiCLEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZjRlOTQ2LTgwOTYtNGE4NS1iNWMwLTA3ZWYyNzRhZjk2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2iDANBgkqhkiG9w0BAQsFAAOCAQEAlKNcSIfuA0lzyiXs3X6rc2o0bEFn cCpwcYx3g+vvxDkI5yJOuogp0IQANJiC9wDqAxgu1IeEY8eNkO8udgATy+t+YTXw porZDPjejRSm9cwUOc8iNygek+SL3u5PPNULip0uax+ut+tg+wbGlxrRQu6IEc3r 27/8AwKiLRBoCp+iKL3X6nEPsqJXQjv1EARgr5baimx3qOXWz6nUfHl4/zVCvOBG Qg9sdMu0c8Ih1kvqjPMovxlSlkBCcHkP+O0lFkukKK7XFpT4xx11V2CM34sSJ8OO RrmW2zEuQitJ+AO5R9+5rlRfAxV12W5lDWVJuWwxyjQ0VMau4nYmIhjXoQ== -----END CERTIFICATE-----Generated at Thu Aug 21 19:01:30 2025 by rpki-client