$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa File: 8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa (raw, json) Hash identifier: ZvkENxJImVfRoTC9A8sO48Yx7QcMN4rZsao65nGmRYs= Subject key identifier: 85:77:1E:97:2E:D5:E4:55:5E:CE:2F:6F:4A:97:86:A4:67:A6:4A:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F7AB50ECD3A7754B04929EF25D5AF70C347D898 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa Signing time: Mon 01 Sep 2025 15:10:25 +0000 ROA not before: Mon 01 Sep 2025 15:10:25 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 167.243.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7a:b5:0e:cd:3a:77:54:b0:49:29:ef:25:d5:af:70:c3:47:d8:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:10:25 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=25be6f7c489a54c2963d51bbafe6f0c5eaaa3e95f829b07e71cfd8be9d2b7adf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:3f:6c:0c:c7:05:c7:cc:a1:40:e3:9f:3a: 3a:4f:16:7d:b8:b8:2c:dc:99:88:a8:e0:e0:a8:9d: 4d:fe:ed:bd:49:6c:43:ec:98:23:8c:6f:cb:93:08: 40:cb:f6:af:f2:fb:97:79:42:35:ad:cd:fd:89:c1: 02:72:6e:e5:30:0b:86:5c:22:b6:3c:6b:95:10:23: f3:e0:b0:83:53:b6:3c:a8:dc:5c:c8:33:69:f1:c0: fc:bc:c9:14:57:9f:2f:74:71:f5:34:7d:3d:e3:81: b1:d5:4a:38:b9:33:87:ae:2f:2e:be:e2:7a:6b:13: 88:4a:c7:60:58:22:68:40:87:a3:f2:6a:fe:66:a9: ee:ff:a3:c1:05:59:25:a5:a9:3c:b1:72:a3:1d:bc: 10:1e:d2:e2:31:df:d5:1d:4a:7f:d4:97:19:4f:67: 3a:c9:13:3b:11:cb:ea:0f:a3:eb:c6:3a:6d:45:5e: 85:12:3b:76:5a:46:2c:3a:ee:a0:bb:bc:84:d5:30: 01:29:48:63:46:9b:a8:65:59:ae:01:76:ea:89:16: 96:aa:0b:03:f7:4c:05:97:c5:02:3e:cc:93:33:e0: e6:b6:71:86:ff:5e:a7:ee:a6:95:0e:db:b9:d1:4a: 6d:25:dc:43:b6:7c:75:5e:de:20:67:67:08:68:ea: d0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:77:1E:97:2E:D5:E4:55:5E:CE:2F:6F:4A:97:86:A4:67:A6:4A:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:31:d9:57:ba:08:50:bc:d7:b2:32:a7:ac:c9:08:de:b4:ab: 67:73:cb:9c:83:b0:7c:46:3d:35:4b:da:5e:c5:c6:cb:e9:57: 5f:87:da:fb:97:63:5d:94:9f:29:c7:4d:ce:04:93:61:1c:39: 7c:d6:a7:3d:92:f5:b0:53:6d:83:35:0d:33:9f:86:23:40:42: 81:19:d9:44:f0:13:81:ce:e2:7f:1a:b4:2a:99:e8:e8:c4:4d: a9:2a:84:50:ae:4d:52:32:57:63:48:1a:81:7f:a0:0b:9b:90: 2b:30:f7:6b:3c:6f:3b:29:a5:bf:ac:21:16:56:12:62:f8:de: a9:6a:64:16:a1:81:fb:ad:1c:35:41:38:da:87:f9:54:f8:62: bf:4a:9e:f8:b2:4a:27:ab:28:07:d3:c3:f8:f7:5d:a0:1b:03: 3b:c1:9d:bd:8e:6a:cc:ec:94:da:50:99:7a:b7:a4:01:b3:e1: c9:c1:46:e0:c7:95:39:92:c5:be:8c:95:ae:70:a0:01:52:4a: 7e:38:ed:a9:d9:6b:d7:ab:e0:30:ae:4e:e5:36:5a:fc:fc:a1: ec:16:72:05:9b:3f:e9:b6:fe:4d:94:d3:60:16:63:15:3f:32: b9:2c:86:2a:ac:af:ad:9e:6c:2d:aa:bc:4b:09:36:69:98:f0: 66:f8:63:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb3q1Ds06d1SwSSnvJdWvcMNH2JgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMDI1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWJlNmY3YzQ4OWE1NGMyOTYzZDUxYmJhZmU2ZjBjNWVh YWEzZTk1ZjgyOWIwN2U3MWNmZDhiZTlkMmI3YWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOND9sDMcFx8yhQOOfOjpPFn24uCzcmYio4OConU3+7b1J bEPsmCOMb8uTCEDL9q/y+5d5QjWtzf2JwQJybuUwC4ZcIrY8a5UQI/PgsINTtjyo 3FzIM2nxwPy8yRRXny90cfU0fT3jgbHVSji5M4euLy6+4nprE4hKx2BYImhAh6Py av5mqe7/o8EFWSWlqTyxcqMdvBAe0uIx39UdSn/UlxlPZzrJEzsRy+oPo+vGOm1F XoUSO3ZaRiw67qC7vITVMAEpSGNGm6hlWa4BduqJFpaqCwP3TAWXxQI+zJMz4Oa2 cYb/XqfuppUO27nRSm0l3EO2fHVe3iBnZwho6tDrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhXcely7V5FVezi9vSpeGpGemSsUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMThkYTVhLWY4NzAtNDRjZS1iNWQwLTg2NjVhZmUyYzVjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCn8zANBgkqhkiG9w0BAQsFAAOCAQEAJjHZV7oIULzXsjKnrMkI3rSrZ3PL nIOwfEY9NUvaXsXGy+lXX4fa+5djXZSfKcdNzgSTYRw5fNanPZL1sFNtgzUNM5+G I0BCgRnZRPATgc7ifxq0Kpno6MRNqSqEUK5NUjJXY0gagX+gC5uQKzD3azxvOyml v6whFlYSYvjeqWpkFqGB+60cNUE42of5VPhiv0qe+LJKJ6soB9PD+PddoBsDO8Gd vY5qzOyU2lCZerekAbPhycFG4MeVOZLFvoyVrnCgAVJKfjjtqdlr16vgMK5O5TZa /Pyh7BZyBZs/6bb+TZTTYBZjFT8yuSyGKqyvrZ5sLaq8Swk2aZjwZvhj2A== -----END CERTIFICATE-----Generated at Thu Sep 18 10:48:34 2025 by rpki-client