$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa File: c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa (raw, json) Hash identifier: dNg1ck9bycwOQrgfuGSImk03RzCpGZW9ReRwPEqBN6M= Subject key identifier: D5:D2:1D:4A:1E:74:35:B9:90:F0:85:FA:CD:55:7A:53:5E:F5:61:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37562F48A9EEF107E136C1CA8F1128C5C80BC89B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa Signing time: Fri 05 Sep 2025 00:00:28 +0000 ROA not before: Fri 05 Sep 2025 00:00:28 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:56:2f:48:a9:ee:f1:07:e1:36:c1:ca:8f:11:28:c5:c8:0b:c8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:00:28 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=1ca166f0ee3cb33bf670d072e327268574cccec40e739b3511e5a7d888e919a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:38:48:cb:36:25:61:c4:ef:d7:ca:6f:f7:5f: 86:36:d1:d3:05:a5:04:37:91:38:d7:d1:99:f2:f7: 6e:b8:67:8e:89:86:61:f1:9c:9f:aa:55:4b:78:74: b3:b0:c3:13:d9:c3:57:5c:3f:ba:e5:fd:ae:39:eb: 4e:11:b0:8f:23:1a:06:85:00:d7:16:1b:bf:31:21: 1d:7b:cd:b5:84:03:55:42:ec:f6:5f:f8:14:43:6d: ad:71:b5:58:54:b1:96:11:04:19:4b:81:4b:d6:9e: 77:3c:58:e3:cc:fa:18:4c:af:80:b6:a9:0b:cf:bd: 7a:f8:8b:56:93:ed:12:1a:71:41:f0:70:90:e2:ec: 31:db:ca:d4:90:ac:f0:c1:a9:a8:cd:e0:f3:c7:6b: 0e:55:fe:54:b3:f5:e0:89:b0:be:9d:7a:5a:11:7b: 2b:d9:2f:47:b8:3a:70:81:3f:65:81:12:ab:30:94: bc:f0:87:8f:89:e2:74:30:2b:12:d7:1a:ed:9a:1d: 9a:97:9a:be:21:e1:12:db:8c:b0:e9:b5:7f:30:e2: bb:30:1f:c2:a6:8e:16:89:d3:4f:81:5d:af:97:2d: fc:eb:a0:04:d1:71:01:ce:ee:89:75:d2:83:89:3c: 51:b5:b5:e1:0e:b1:88:e3:82:e9:1a:a7:0d:22:10: 2a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D2:1D:4A:1E:74:35:B9:90:F0:85:FA:CD:55:7A:53:5E:F5:61:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:d7:a2:0a:3b:f4:bb:d8:d2:ce:42:6c:3d:f5:d8:55:8e:f0: ea:db:36:ff:41:f9:89:90:92:dc:76:2c:ed:9e:0a:1f:8c:0a: 30:63:37:9a:0a:3e:6e:90:df:3a:dc:28:68:e5:1d:38:60:c5: 4d:9c:99:1a:16:8e:cd:77:17:e2:76:35:33:da:eb:91:4c:03: 72:40:ab:b1:83:39:47:1c:b7:1c:5d:07:f4:f2:d2:29:3f:c0: c7:6b:aa:02:60:e3:cd:bf:0c:20:ae:59:d8:49:63:7c:08:47: 0b:73:3b:d8:a6:d5:af:3b:94:a0:ed:73:79:a5:15:1e:47:dd: 5f:7f:0c:e0:4b:c3:8f:cf:d8:b6:1f:82:2f:d4:27:a5:bd:7b: 3e:c7:38:a8:7b:ad:93:df:01:2e:70:8b:2d:af:c4:db:bd:34: 60:89:1a:a9:0c:39:c7:7a:d2:62:ad:d7:79:63:72:09:03:44: 87:4c:86:0e:20:7d:17:77:18:61:bc:ce:2a:48:1b:66:8a:5e: f6:5f:19:f9:de:d3:e3:23:eb:73:5c:f3:fb:23:6c:9a:35:8d: 62:f1:e3:b5:12:70:0e:93:ad:71:22:4c:c3:53:8b:20:10:12: a9:ea:54:92:9f:ec:b7:3d:b1:bf:87:7d:a1:98:b6:24:f2:a0: bc:ab:c8:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN1YvSKnu8QfhNsHKjxEoxcgLyJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMDI4WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2ExNjZmMGVlM2NiMzNiZjY3MGQwNzJlMzI3MjY4NTc0 Y2NjZWM0MGU3MzliMzUxMWU1YTdkODg4ZTkxOWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtOEjLNiVhxO/Xym/3X4Y20dMFpQQ3kTjX0Zny9264Z46J hmHxnJ+qVUt4dLOwwxPZw1dcP7rl/a45604RsI8jGgaFANcWG78xIR17zbWEA1VC 7PZf+BRDba1xtVhUsZYRBBlLgUvWnnc8WOPM+hhMr4C2qQvPvXr4i1aT7RIacUHw cJDi7DHbytSQrPDBqajN4PPHaw5V/lSz9eCJsL6deloReyvZL0e4OnCBP2WBEqsw lLzwh4+J4nQwKxLXGu2aHZqXmr4h4RLbjLDptX8w4rswH8KmjhaJ00+BXa+XLfzr oATRcQHO7ol10oOJPFG1teEOsYjjgukapw0iECrhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1dIdSh50NbmQ8IX6zVV6U171YawwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NDVhZGViLTQ5OGQtNGRkOS1hMGQ5LTA3MGY1NzU3YzhmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCFTANBgkqhkiG9w0BAQsFAAOCAQEA0NeiCjv0u9jSzkJsPfXYVY7w6ts2 /0H5iZCS3HYs7Z4KH4wKMGM3mgo+bpDfOtwoaOUdOGDFTZyZGhaOzXcX4nY1M9rr kUwDckCrsYM5Rxy3HF0H9PLSKT/Ax2uqAmDjzb8MIK5Z2EljfAhHC3M72KbVrzuU oO1zeaUVHkfdX38M4EvDj8/Yth+CL9Qnpb17Psc4qHutk98BLnCLLa/E2700YIka qQw5x3rSYq3XeWNyCQNEh0yGDiB9F3cYYbzOKkgbZope9l8Z+d7T4yPrc1zz+yNs mjWNYvHjtRJwDpOtcSJMw1OLIBASqepUkp/stz2xv4d9oZi2JPKgvKvINA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:29 2025 by rpki-client