$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88612825-39ba-446a-a645-27d9ef61fe28.roa File: 88612825-39ba-446a-a645-27d9ef61fe28.roa (raw, json) Hash identifier: sFDaEE6AvHqAot+x1cRq5dwuBqYO3Gkd2PwjnzaDYVA= Subject key identifier: B8:C4:E5:D0:66:38:D4:8C:3A:26:98:18:FA:4B:FE:90:E5:5A:07:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75508E58558757F74DF2F5B234C1A0014ABB8EAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88612825-39ba-446a-a645-27d9ef61fe28.roa Signing time: Mon 01 Sep 2025 15:20:14 +0000 ROA not before: Mon 01 Sep 2025 15:20:14 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.52.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:50:8e:58:55:87:57:f7:4d:f2:f5:b2:34:c1:a0:01:4a:bb:8e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:20:14 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=03b9f6b30a246b72488805748f95fb9c61446af929959b958e3fe45eec1df93f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:82:6a:e1:2a:c7:6a:72:09:15:92:7f:44: 2e:d8:e0:bd:0a:ed:77:58:da:a9:d7:c3:73:55:05: 08:d0:fb:d6:c9:69:c2:9c:14:ad:f0:af:c1:cf:0a: 2f:5c:de:9d:ae:a5:74:11:0d:2f:5e:0d:f3:de:0a: ef:01:26:52:3e:80:18:21:58:f4:ae:38:7b:f3:2a: e4:56:e0:80:9b:a0:3c:64:11:e6:a1:01:9f:cd:81: 31:f2:b9:53:93:35:0d:0e:91:59:9a:49:09:51:50: ed:76:18:ab:ac:cd:09:43:a6:0f:d7:34:68:3a:2a: 9b:d2:63:32:8f:ac:cc:d2:cf:18:4a:7b:5f:50:42: 8c:d6:74:4b:0d:f2:2a:ad:77:e2:66:99:ae:cb:b4: 96:ea:5f:76:38:71:f4:70:66:30:fd:ad:58:fc:24: 6a:9c:27:76:90:72:d1:7c:c6:5d:1f:17:47:d9:33: 76:97:66:9b:87:cc:a3:18:28:fd:26:e4:94:72:51: d9:09:25:ca:d2:dd:2d:c1:27:8f:af:03:cc:98:5c: ad:9f:ef:61:80:3f:c4:d7:a9:1a:26:ed:05:7b:7d: c7:6b:5a:50:f1:63:93:2f:3e:b0:a7:0f:6e:20:c1: ed:96:cc:11:e3:ac:22:27:90:bb:eb:ec:c8:c5:49: 01:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C4:E5:D0:66:38:D4:8C:3A:26:98:18:FA:4B:FE:90:E5:5A:07:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88612825-39ba-446a-a645-27d9ef61fe28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.52.96.0/19 Signature Algorithm: sha256WithRSAEncryption cb:1a:f2:4a:d7:e0:be:7d:1c:a0:4c:8d:26:5a:93:71:77:11: 57:67:2f:23:6c:46:86:75:de:71:48:2f:c0:06:16:66:74:71: 31:b6:6b:42:40:47:83:dd:bd:3d:31:28:4b:cc:af:2f:e9:99: 7b:78:f8:1c:18:b8:6b:dd:96:7e:a9:f1:52:c6:e9:a5:69:60: 6c:84:d0:f7:8c:52:08:fb:d1:c3:be:94:7c:ff:a8:b0:f1:24: 95:17:d0:2b:fc:89:94:fd:d8:45:da:22:d4:87:c8:93:63:b2: 2c:bf:e7:01:58:2e:68:ff:2b:21:74:b3:1e:a7:f1:1c:38:2e: dc:61:cd:02:d0:98:90:5c:a7:05:f1:2c:48:b8:1d:3c:69:f8: e7:88:15:2f:da:38:8a:f5:65:14:a0:59:9a:7a:87:b8:d9:25: 75:6c:0f:d0:75:30:99:ab:e2:66:c1:e7:f2:fc:06:38:32:c8: 5d:5a:d2:e4:fc:d7:20:6c:09:4c:49:9a:02:e6:10:72:bf:02: 05:f4:dd:33:39:a4:81:ac:d8:69:46:de:77:b2:1c:80:59:ff: 24:ef:32:89:58:ad:ae:af:d8:bf:4d:fd:8f:04:1a:09:a9:2d: 88:42:78:64:f1:b7:af:7d:bd:fd:60:cf:1e:b5:0d:c4:05:ab: 21:06:25:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdVCOWFWHV/dN8vWyNMGgAUq7jq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUyMDE0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2I5ZjZiMzBhMjQ2YjcyNDg4ODA1NzQ4Zjk1ZmI5YzYx NDQ2YWY5Mjk5NTliOTU4ZTNmZTQ1ZWVjMWRmOTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIKoJq4SrHanIJFZJ/RC7Y4L0K7XdY2qnXw3NVBQjQ+9bJ acKcFK3wr8HPCi9c3p2upXQRDS9eDfPeCu8BJlI+gBghWPSuOHvzKuRW4ICboDxk EeahAZ/NgTHyuVOTNQ0OkVmaSQlRUO12GKuszQlDpg/XNGg6KpvSYzKPrMzSzxhK e19QQozWdEsN8iqtd+Jmma7LtJbqX3Y4cfRwZjD9rVj8JGqcJ3aQctF8xl0fF0fZ M3aXZpuHzKMYKP0m5JRyUdkJJcrS3S3BJ4+vA8yYXK2f72GAP8TXqRom7QV7fcdr WlDxY5MvPrCnD24gwe2WzBHjrCInkLvr7MjFSQGZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuMTl0GY41Iw6JpgY+kv+kOVaB+owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4NjEyODI1LTM5YmEtNDQ2YS1hNjQ1LTI3ZDllZjYxZmUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGNGAwDQYJKoZIhvcNAQELBQADggEBAMsa8krX4L59HKBMjSZak3F3EVdn LyNsRoZ13nFIL8AGFmZ0cTG2a0JAR4PdvT0xKEvMry/pmXt4+BwYuGvdln6p8VLG 6aVpYGyE0PeMUgj70cO+lHz/qLDxJJUX0Cv8iZT92EXaItSHyJNjsiy/5wFYLmj/ KyF0sx6n8Rw4LtxhzQLQmJBcpwXxLEi4HTxp+OeIFS/aOIr1ZRSgWZp6h7jZJXVs D9B1MJmr4mbB5/L8BjgyyF1a0uT81yBsCUxJmgLmEHK/AgX03TM5pIGs2GlG3ney HIBZ/yTvMolYra6v2L9N/Y8EGgmpLYhCeGTxt699vf1gzx61DcQFqyEGJV0= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:29 2025 by rpki-client