$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a575592a-4f8e-4da1-aed9-48fad479afb1.roa File: a575592a-4f8e-4da1-aed9-48fad479afb1.roa (raw, json) Hash identifier: Of1xMJMRh+2yWoZQBNpL9gQZuOcGwYFEctNRft6HwJo= Subject key identifier: 6F:D6:15:09:22:72:27:63:D4:92:DD:3F:85:C5:23:61:11:01:1B:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 431051EBB7224D90B96F319A049557728C6ECBED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a575592a-4f8e-4da1-aed9-48fad479afb1.roa Signing time: Tue 12 Aug 2025 15:00:20 +0000 ROA not before: Tue 12 Aug 2025 15:00:20 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:10:51:eb:b7:22:4d:90:b9:6f:31:9a:04:95:57:72:8c:6e:cb:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 15:00:20 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=e96eac957ea315b1b4daf75c4033fcf364ffbd03f5ba765237096bed2f2f64a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1f:32:0b:19:47:67:ad:79:0a:a1:24:b4:e2: c5:cb:36:a1:d5:61:ab:bb:ac:88:be:57:90:86:f9: 81:03:2a:67:ba:1a:16:1c:c7:a6:28:a4:02:d3:27: 9c:69:6a:3b:6e:ef:ba:c6:b1:b6:d0:40:50:f4:9e: 4a:c8:eb:d5:65:6f:89:5b:3f:18:16:54:54:c4:16: 35:a7:64:f1:17:3e:a1:2d:f4:5f:61:d2:12:ed:82: 46:e2:63:44:9f:87:60:1d:97:76:f4:9d:12:81:12: ea:d1:e2:9c:36:ee:d9:e6:80:a6:c7:31:16:c1:38: 37:ac:df:ce:d0:7a:25:55:2a:4a:a0:c1:f6:50:df: de:f3:59:19:ed:33:25:4e:79:53:dc:bf:24:34:b2: 8b:e7:ae:32:4b:98:8c:81:64:a8:f2:f9:d5:39:dd: c8:28:3f:ec:92:15:03:dd:38:23:27:48:f0:44:13: e4:95:6c:0d:b1:9b:41:f6:a1:46:ad:be:c5:27:55: c9:6c:73:27:bd:57:b2:ef:29:2d:4c:f7:a6:7e:f8: 37:b7:55:cf:5c:c5:0c:3d:90:fb:56:5d:1a:43:68: d7:32:31:83:6c:0a:cd:9c:22:eb:34:91:9f:96:24: c0:29:bc:3c:2b:3e:50:31:b5:24:b1:85:f2:57:47: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D6:15:09:22:72:27:63:D4:92:DD:3F:85:C5:23:61:11:01:1B:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a575592a-4f8e-4da1-aed9-48fad479afb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.162.0/24 Signature Algorithm: sha256WithRSAEncryption d6:30:0b:3f:7e:94:72:9f:bc:79:2f:1c:ee:53:21:94:e7:fe: ce:c5:a5:d8:1c:18:61:cf:7e:23:c8:10:4b:f3:ad:c0:43:20: 01:6d:ae:3c:1e:36:69:ed:27:45:05:04:6b:d8:5b:f7:91:12: db:5f:a7:6d:b9:a2:cd:19:50:60:29:ed:58:63:38:68:9a:f4: 20:a5:96:69:15:40:99:1d:6f:eb:fa:a1:20:fa:eb:b3:04:55: 04:f9:b0:f9:23:a3:1a:0d:0b:f3:ae:92:15:c0:10:32:a5:2a: c3:e4:f3:a4:9f:cd:1c:8c:78:6b:f5:cb:b2:fb:e2:3a:69:c5: 1c:a4:ca:8b:9c:6f:91:85:b3:f4:ff:27:8d:be:41:a5:f5:47: 5b:99:26:9d:50:14:42:2b:b5:9d:98:a5:a3:44:86:7f:42:7b: 69:3c:0b:37:51:1b:1d:ab:3f:dc:24:53:b7:7b:56:b1:cd:59: 63:78:7a:db:54:f3:36:29:ee:0b:70:f9:03:36:28:cc:04:2f: 0e:a5:0c:d3:96:cf:e8:39:2a:4d:dd:9d:af:5e:83:d2:04:99: 09:9c:82:7d:b5:64:e3:c9:90:35:95:86:1f:7b:4f:c5:5d:39: 3b:87:49:05:e3:f4:93:bd:54:1a:b7:2a:09:62:8e:5a:c6:4a: 16:9c:c0:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQxBR67ciTZC5bzGaBJVXcoxuy+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMTUwMDIwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTZlYWM5NTdlYTMxNWIxYjRkYWY3NWM0MDMzZmNmMzY0 ZmZiZDAzZjViYTc2NTIzNzA5NmJlZDJmMmY2NGE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsHzILGUdnrXkKoSS04sXLNqHVYau7rIi+V5CG+YEDKme6 GhYcx6YopALTJ5xpajtu77rGsbbQQFD0nkrI69Vlb4lbPxgWVFTEFjWnZPEXPqEt 9F9h0hLtgkbiY0Sfh2Adl3b0nRKBEurR4pw27tnmgKbHMRbBODes387QeiVVKkqg wfZQ397zWRntMyVOeVPcvyQ0sovnrjJLmIyBZKjy+dU53cgoP+ySFQPdOCMnSPBE E+SVbA2xm0H2oUatvsUnVclscye9V7LvKS1M96Z++De3Vc9cxQw9kPtWXRpDaNcy MYNsCs2cIus0kZ+WJMApvDwrPlAxtSSxhfJXR8T1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb9YVCSJyJ2PUkt0/hcUjYREBG50wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1NzU1OTJhLTRmOGUtNGRhMS1hZWQ5LTQ4ZmFkNDc5YWZiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTaIwDQYJKoZIhvcNAQELBQADggEBANYwCz9+lHKfvHkvHO5TIZTn/s7F pdgcGGHPfiPIEEvzrcBDIAFtrjweNmntJ0UFBGvYW/eREttfp225os0ZUGAp7Vhj OGia9CCllmkVQJkdb+v6oSD667MEVQT5sPkjoxoNC/OukhXAEDKlKsPk86SfzRyM eGv1y7L74jppxRykyoucb5GFs/T/J42+QaX1R1uZJp1QFEIrtZ2YpaNEhn9Ce2k8 CzdRGx2rP9wkU7d7VrHNWWN4ettU8zYp7gtw+QM2KMwELw6lDNOWz+g5Kk3dna9e g9IEmQmcgn21ZOPJkDWVhh97T8VdOTuHSQXj9JO9VBq3KglijlrGShacwFs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:40 2025 by rpki-client