$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa File: 79931b83-9888-42c4-8cab-49d3b3177907.roa (raw, json) Hash identifier: oSRQRT819fwMbvy1tZ0aMpF/AA2/SIfm/cYqFg85Img= Subject key identifier: 3C:5E:B7:B4:E6:DA:92:1E:C9:EE:43:B3:56:39:EF:14:65:5C:1E:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: A40A529BF3A0169971E401224EDD3F05AB2081 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa Signing time: Wed 13 Aug 2025 00:31:04 +0000 ROA not before: Wed 13 Aug 2025 00:31:04 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a4:0a:52:9b:f3:a0:16:99:71:e4:01:22:4e:dd:3f:05:ab:20:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:31:04 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=821016918c6166dbf1b56d4fef73976271c2b2f05a028d5556885844f89ef7e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0d:26:ae:34:26:05:ef:80:3d:bc:d7:7b:92: fc:25:98:8b:38:0c:a3:fe:0c:41:88:b8:bf:3f:30: 7f:7d:54:62:48:32:20:cd:4a:6f:82:8f:a3:18:34: e8:c7:51:90:25:a7:ac:15:f5:60:80:47:ee:61:90: 96:ee:50:bd:b5:d8:75:4d:c9:cb:64:03:44:7e:98: ea:99:fa:8b:85:87:34:2f:70:7b:eb:b6:0a:3b:fa: e9:8b:11:e2:08:cb:66:b0:6c:76:f3:bb:c0:56:4f: 26:36:ee:91:e1:ed:85:27:b5:a7:94:75:89:b9:b4: 57:e8:60:a2:14:0d:48:a6:71:36:cf:08:9c:7c:dd: 91:77:5c:6a:ba:6b:42:e9:ca:04:14:34:45:86:aa: 59:94:a7:5e:5c:3c:88:d7:ca:70:e6:5c:95:ce:04: ee:3f:06:5c:61:9e:2c:04:20:80:3d:09:2d:f1:f0: 03:32:e1:0a:ff:11:b9:f4:b0:69:12:97:9a:1e:ac: e0:6d:58:f0:b7:9f:4d:e7:80:dc:6e:3f:f6:88:93: 23:a7:ac:be:7c:a5:d0:c6:d4:da:19:24:78:ed:b3: ed:19:05:21:b4:53:0d:61:39:a7:43:91:ae:ed:42: f8:64:07:46:3b:4f:a5:cb:4e:42:16:12:2c:a2:e9: 63:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5E:B7:B4:E6:DA:92:1E:C9:EE:43:B3:56:39:EF:14:65:5C:1E:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.103.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:b5:a2:3e:aa:ea:e6:1b:b4:19:83:89:79:e4:1f:3c:51:41: 9b:4b:9f:53:13:c0:ef:99:5c:77:18:8c:14:91:45:32:8c:67: b1:51:c5:1b:5d:0f:42:0d:84:1c:54:7c:3f:dd:0b:70:2f:4f: ea:85:22:b0:4f:1a:ba:d1:77:22:e9:94:55:2e:53:f8:4b:8a: 04:29:e0:d9:60:01:c6:91:2c:c7:cc:14:e4:14:f1:5f:76:4c: 3e:53:93:b5:6f:47:63:d5:f9:f5:26:fa:b7:6b:d6:ab:54:76: 07:ba:af:32:e1:c3:9a:28:0c:99:27:20:44:4c:79:2a:bf:3e: d0:f4:96:2b:ae:7a:0e:bc:d3:52:19:e3:92:16:81:a3:86:ea: 65:e4:6d:66:90:c4:5c:28:73:4e:4a:e4:72:bd:a3:8f:e7:aa: 92:47:e4:3a:44:c8:e4:25:d1:20:c4:0e:8e:12:0e:b5:d5:23: f9:27:bc:e1:8c:e7:72:10:08:b3:2a:cc:59:05:08:a0:f9:cd: 72:af:51:7f:a2:ed:aa:07:6f:23:7e:4c:7a:ea:c7:6e:86:2f: 56:a1:04:7e:32:e1:5b:64:5f:f9:ce:c1:95:cf:49:3d:19:08: 3e:c1:4d:a3:43:2c:86:1d:66:eb:87:81:52:78:cb:e5:b1:39: a1:e6:ea:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAKQKUpvzoBaZceQBIk7dPwWrIIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMTA0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjEwMTY5MThjNjE2NmRiZjFiNTZkNGZlZjczOTc2Mjcx YzJiMmYwNWEwMjhkNTU1Njg4NTg0NGY4OWVmN2U0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDADSauNCYF74A9vNd7kvwlmIs4DKP+DEGIuL8/MH99VGJI MiDNSm+Cj6MYNOjHUZAlp6wV9WCAR+5hkJbuUL212HVNyctkA0R+mOqZ+ouFhzQv cHvrtgo7+umLEeIIy2awbHbzu8BWTyY27pHh7YUntaeUdYm5tFfoYKIUDUimcTbP CJx83ZF3XGq6a0LpygQUNEWGqlmUp15cPIjXynDmXJXOBO4/BlxhniwEIIA9CS3x 8AMy4Qr/Ebn0sGkSl5oerOBtWPC3n03ngNxuP/aIkyOnrL58pdDG1NoZJHjts+0Z BSG0Uw1hOadDka7tQvhkB0Y7T6XLTkIWEiyi6WNdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPF63tObakh7J7kOzVjnvFGVcHlEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5OTMxYjgzLTk4ODgtNDJjNC04Y2FiLTQ5ZDNiMzE3NzkwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GcwDQYJKoZIhvcNAQELBQADggEBAJq1oj6q6uYbtBmDiXnkHzxRQZtL n1MTwO+ZXHcYjBSRRTKMZ7FRxRtdD0INhBxUfD/dC3AvT+qFIrBPGrrRdyLplFUu U/hLigQp4NlgAcaRLMfMFOQU8V92TD5Tk7VvR2PV+fUm+rdr1qtUdge6rzLhw5oo DJknIERMeSq/PtD0liuueg6801IZ45IWgaOG6mXkbWaQxFwoc05K5HK9o4/nqpJH 5DpEyOQl0SDEDo4SDrXVI/knvOGM53IQCLMqzFkFCKD5zXKvUX+i7aoHbyN+THrq x26GL1ahBH4y4VtkX/nOwZXPST0ZCD7BTaNDLIYdZuuHgVJ4y+WxOaHm6g8= -----END CERTIFICATE-----Generated at Wed Aug 20 13:18:41 2025 by rpki-client