$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa File: fb84443e-6393-43c5-8053-c16873c52b3c.roa (raw, json) Hash identifier: MBU078zFwE/VkX6O/jIoAByZNyIHzTE0f8qIjkGgoig= Subject key identifier: D5:7C:68:16:E3:73:88:B8:98:CD:33:FD:DA:FA:17:3E:84:79:74:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B45DFBC8071708969E858A41F78045ECDF4469F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa Signing time: Tue 12 Aug 2025 00:51:28 +0000 ROA not before: Tue 12 Aug 2025 00:51:28 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:45:df:bc:80:71:70:89:69:e8:58:a4:1f:78:04:5e:cd:f4:46:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:51:28 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=7a51263ee1da98661fba95f3762b551af19806608f024c9e619daa37f56d33a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2b:0b:f7:a2:53:63:e6:29:33:ef:32:62:dc: 54:4a:8b:4b:50:42:ab:95:e6:00:fd:a0:3f:de:50: 09:6d:30:06:e3:bd:ab:3f:7e:c5:5f:a9:e5:ac:ca: b0:64:03:0d:23:56:dd:11:4e:f3:d3:b2:72:a6:8b: 82:22:8f:a8:01:7f:ce:ca:82:26:15:52:2e:e5:ca: aa:59:fe:40:29:97:8d:2d:55:0b:c6:53:a1:83:dc: d0:3d:2f:4f:68:9e:e5:73:65:fc:82:ab:4f:51:9e: fe:b5:74:74:e9:6b:a3:93:9f:a4:a9:3a:ba:09:5a: 2b:2d:c2:59:d5:a7:5c:e8:d3:4a:fa:0c:a8:71:c7: 30:08:58:cb:65:31:cd:eb:65:63:0f:bf:d2:7c:05: 82:bf:7d:57:a2:fe:0d:39:b0:da:2c:16:b1:e3:a9: f0:23:d8:1b:8a:89:17:3c:1d:b1:59:a5:73:2b:ea: c1:db:49:b4:ac:5e:35:76:72:ef:57:31:cb:6b:5b: a8:f8:94:cf:36:ec:35:74:d5:de:df:49:e4:72:74: 18:54:42:c3:63:8d:15:9d:2e:76:05:fd:85:1d:9c: 1c:e9:db:19:a9:e8:9b:89:1a:11:11:59:08:32:fc: 09:4b:1d:df:d6:0c:16:50:82:e9:04:2e:56:ed:68: 67:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7C:68:16:E3:73:88:B8:98:CD:33:FD:DA:FA:17:3E:84:79:74:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4f:b9:94:5a:47:19:65:33:3f:d9:3a:01:df:cc:22:b7:93:6b: 95:26:26:c9:67:89:63:13:6a:e2:1d:1e:e8:0a:14:d1:de:03: 46:93:2a:7f:8b:51:c3:c4:3c:a6:6e:57:0c:04:05:f7:05:91: 14:93:c5:44:c5:08:14:aa:ba:11:e8:fa:a1:d3:7e:13:b1:e0: 25:26:e5:46:1a:e1:5f:41:09:9d:38:bc:9b:4d:6e:f0:e8:99: cf:e9:87:83:2f:b9:29:21:f8:14:e4:4b:4a:19:25:6a:7f:0e: 2d:b5:e0:cc:20:12:b1:f6:49:46:91:46:83:19:16:b3:bb:68: 8b:8a:d8:d0:aa:3a:dc:a6:aa:d5:52:9c:5b:34:38:c6:8d:63: 07:72:7e:69:71:72:1d:1e:23:a3:ab:6a:38:cb:71:f8:e4:d8: 09:e6:8d:e0:e4:8b:8c:85:41:24:fd:3e:fc:48:8f:55:cf:b5: 71:3f:e2:86:98:8d:63:1f:3e:b9:91:3b:88:66:02:f2:77:ac: a0:6d:a9:88:f1:b9:49:b8:0a:fb:a9:52:86:8d:b0:b4:41:d7: f4:45:f6:ff:bd:7c:c4:bd:e8:93:b6:95:70:34:d8:d9:73:0e: 66:9d:a7:fa:61:8a:38:c3:54:2a:8f:32:4b:62:db:29:89:f3: da:2f:8f:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC0XfvIBxcIlp6FikH3gEXs30Rp8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MTI4WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTUxMjYzZWUxZGE5ODY2MWZiYTk1ZjM3NjJiNTUxYWYx OTgwNjYwOGYwMjRjOWU2MTlkYWEzN2Y1NmQzM2E0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCKwv3olNj5ikz7zJi3FRKi0tQQquV5gD9oD/eUAltMAbj vas/fsVfqeWsyrBkAw0jVt0RTvPTsnKmi4Iij6gBf87KgiYVUi7lyqpZ/kApl40t VQvGU6GD3NA9L09onuVzZfyCq09Rnv61dHTpa6OTn6SpOroJWistwlnVp1zo00r6 DKhxxzAIWMtlMc3rZWMPv9J8BYK/fVei/g05sNosFrHjqfAj2BuKiRc8HbFZpXMr 6sHbSbSsXjV2cu9XMctrW6j4lM827DV01d7fSeRydBhUQsNjjRWdLnYF/YUdnBzp 2xmp6JuJGhERWQgy/AlLHd/WDBZQgukELlbtaGexAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1XxoFuNziLiYzTP92voXPoR5dCwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiODQ0NDNlLTYzOTMtNDNjNS04MDUzLWMxNjg3M2M1MmIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdHmAAwDQYJKoZIhvcNAQELBQADggEBAE+5lFpHGWUzP9k6Ad/MIreTa5Um JslniWMTauIdHugKFNHeA0aTKn+LUcPEPKZuVwwEBfcFkRSTxUTFCBSquhHo+qHT fhOx4CUm5UYa4V9BCZ04vJtNbvDomc/ph4MvuSkh+BTkS0oZJWp/Di214MwgErH2 SUaRRoMZFrO7aIuK2NCqOtymqtVSnFs0OMaNYwdyfmlxch0eI6OrajjLcfjk2Anm jeDki4yFQST9PvxIj1XPtXE/4oaYjWMfPrmRO4hmAvJ3rKBtqYjxuUm4CvupUoaN sLRB1/RF9v+9fMS96JO2lXA02NlzDmadp/phijjDVCqPMkti2ymJ89ovjyw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:47 2025 by rpki-client