$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4714e74-7b34-4615-a9e8-94d381af06c5.roa File: c4714e74-7b34-4615-a9e8-94d381af06c5.roa (raw, json) Hash identifier: wAfWRa0PiWdxa0Nd7e+kC3ocbR/dImbRLfOrCZz4GLU= Subject key identifier: BA:38:14:6E:FD:31:7B:AE:1C:74:5A:9C:96:0E:8C:DE:1A:2F:4F:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B1AFBAC356EE3C2A53EB05B06967527D4B1B841 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4714e74-7b34-4615-a9e8-94d381af06c5.roa Signing time: Wed 23 Jul 2025 00:10:57 +0000 ROA not before: Wed 23 Jul 2025 00:10:57 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.112.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:1a:fb:ac:35:6e:e3:c2:a5:3e:b0:5b:06:96:75:27:d4:b1:b8:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:10:57 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=c68b521ca29e6f3bf0b5b059b68f82d62b5e2b5c4f1afd82f169a9d3ea5d3b84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:83:40:13:99:5e:7e:00:2b:70:79:44:06:e3: c9:00:53:f8:7d:65:a7:04:0e:6c:ff:33:f6:1e:03: 11:16:79:b9:7f:3b:be:10:d0:67:9e:63:6e:ad:12: fe:58:91:e5:c4:40:b6:7a:4d:9d:ea:44:67:a3:95: 87:ad:c8:e0:de:47:de:8a:1c:3d:71:f7:db:54:19: 03:fd:65:7d:45:40:c7:3e:47:8f:c7:77:be:3f:42: 71:f8:e0:6c:9c:26:b2:3f:db:8f:1e:0f:2e:9b:c8: fd:6d:bb:ec:86:c0:a7:56:f3:b1:d5:1b:d2:f6:cb: 57:3f:08:2a:26:0f:fa:8f:bd:57:83:c8:65:89:04: a2:d3:04:77:a9:5b:0d:81:89:9d:bb:c1:b6:7e:ef: 30:75:ef:91:b1:92:9d:dc:c0:7f:28:54:40:ee:79: 67:e4:95:95:f1:74:37:a7:54:e1:34:80:05:24:75: 14:37:1b:99:86:16:a1:8d:02:d1:bd:87:cb:0d:d7: 34:ae:f3:e1:94:f3:3f:db:ea:56:57:20:71:74:cd: a8:b2:85:d4:ef:5a:94:f6:45:81:1c:01:ad:07:26: a6:63:3c:2f:0d:b9:e7:41:fb:39:b6:11:70:b9:24: 39:d3:1c:15:7e:fb:5b:38:ce:c6:2e:d9:c9:8b:de: b7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:38:14:6E:FD:31:7B:AE:1C:74:5A:9C:96:0E:8C:DE:1A:2F:4F:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4714e74-7b34-4615-a9e8-94d381af06c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.112.0.0/16 Signature Algorithm: sha256WithRSAEncryption b5:0d:8c:49:1f:ba:79:80:c1:1b:ce:16:0f:66:9a:34:e6:10: f3:fe:e3:b7:c6:06:81:f2:ac:07:b2:84:da:87:fa:44:d8:0f: e0:c8:6b:15:38:35:00:0a:7e:7e:df:44:12:b3:36:25:1e:b5: bd:0b:c5:65:4e:48:0c:31:64:c0:38:11:d3:13:71:b9:c5:db: 38:90:2b:b1:43:66:a2:c9:1c:d0:83:fc:dd:ac:14:cd:84:42: d1:9f:43:f6:05:40:1c:33:4e:25:95:d0:74:52:2b:72:75:25: 60:c0:45:6c:36:1d:95:c1:30:c9:79:15:5e:bd:dd:01:b6:be: 9b:90:3c:f9:30:6a:97:ea:c6:9e:c0:70:c7:a1:35:a9:53:41: cc:91:b5:82:bb:da:27:14:08:2d:23:18:63:57:96:dd:1d:73: 6f:65:2e:eb:9b:2a:30:24:0f:fb:d0:03:ba:08:85:1f:8c:b4: 7b:45:fc:47:f1:89:e9:9a:64:6e:32:c9:98:05:8c:36:b8:69: 51:6f:65:91:e9:65:46:2c:6d:46:c7:aa:87:f5:5f:9a:5d:98: f1:a0:21:ea:a5:96:2f:6d:49:60:95:59:bd:09:fe:ef:8f:95: c5:3d:6c:be:e7:e2:7d:4e:cc:fd:32:ae:d5:0a:f7:4b:3b:2c: 6d:36:40:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCxr7rDVu48KlPrBbBpZ1J9SxuEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAxMDU3WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjhiNTIxY2EyOWU2ZjNiZjBiNWIwNTliNjhmODJkNjJi NWUyYjVjNGYxYWZkODJmMTY5YTlkM2VhNWQzYjg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDg0ATmV5+ACtweUQG48kAU/h9ZacEDmz/M/YeAxEWebl/ O74Q0GeeY26tEv5YkeXEQLZ6TZ3qRGejlYetyODeR96KHD1x99tUGQP9ZX1FQMc+ R4/Hd74/QnH44GycJrI/248eDy6byP1tu+yGwKdW87HVG9L2y1c/CComD/qPvVeD yGWJBKLTBHepWw2BiZ27wbZ+7zB175Gxkp3cwH8oVEDueWfklZXxdDenVOE0gAUk dRQ3G5mGFqGNAtG9h8sN1zSu8+GU8z/b6lZXIHF0zaiyhdTvWpT2RYEcAa0HJqZj PC8NuedB+zm2EXC5JDnTHBV++1s4zsYu2cmL3reJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUujgUbv0xe64cdFqclg6M3hovT3AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0NzE0ZTc0LTdiMzQtNDYxNS1hOWU4LTk0ZDM4MWFmMDZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQcDANBgkqhkiG9w0BAQsFAAOCAQEAtQ2MSR+6eYDBG84WD2aaNOYQ8/7j t8YGgfKsB7KE2of6RNgP4MhrFTg1AAp+ft9EErM2JR61vQvFZU5IDDFkwDgR0xNx ucXbOJArsUNmoskc0IP83awUzYRC0Z9D9gVAHDNOJZXQdFIrcnUlYMBFbDYdlcEw yXkVXr3dAba+m5A8+TBql+rGnsBwx6E1qVNBzJG1grvaJxQILSMYY1eW3R1zb2Uu 65sqMCQP+9ADugiFH4y0e0X8R/GJ6ZpkbjLJmAWMNrhpUW9lkellRixtRseqh/Vf ml2Y8aAh6qWWL21JYJVZvQn+74+VxT1svufifU7M/TKu1Qr3SzssbTZAfw== -----END CERTIFICATE-----Generated at Thu Jul 31 01:08:28 2025 by rpki-client