$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa File: ecba0557-c004-41c2-bd5b-63142dbee294.roa (raw, json) Hash identifier: DLKeYIQ+wWGEd6QYZz8lKKdzBCtD6muEWxwj0BsepX0= Subject key identifier: 0B:1B:8B:49:52:FE:38:AE:B6:BE:42:36:84:10:4C:DD:2E:7D:79:22 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 68CC4AA3915B29AB1F6F5D3363D646313DFCFAFF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa Signing time: Tue 19 Aug 2025 00:40:40 +0000 ROA not before: Tue 19 Aug 2025 00:40:40 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:cc:4a:a3:91:5b:29:ab:1f:6f:5d:33:63:d6:46:31:3d:fc:fa:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Aug 19 00:40:40 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=0a52459ecf76206812e923f3d4f4b462bb8ce99ab6301a2ee472fb2f5ba3f675, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8e:db:47:d7:d5:23:78:a4:25:49:df:86:b4: 7e:46:61:81:ae:d1:69:2e:ea:25:19:2a:d2:13:d7: 84:89:02:c5:9f:77:df:2c:5b:7f:85:fa:43:de:59: 69:f7:06:94:c5:60:47:c2:01:f3:f7:b3:67:82:ae: 2f:71:dd:82:90:5c:1e:8c:17:9c:97:b4:dc:64:e2: 02:22:f1:d2:7c:02:a1:8b:50:c7:3f:a5:53:8e:f4: 5b:67:f7:4c:9a:55:11:c6:5b:d1:e2:c1:39:7d:84: 51:02:b4:46:f5:95:66:6b:09:0c:da:be:67:e7:4c: 3d:cb:33:cd:31:56:01:84:16:c6:ba:ee:7f:03:2f: a3:f0:1f:77:e4:62:fc:39:2c:28:cf:25:82:67:0c: 4d:82:4f:ce:06:32:99:2a:a8:51:e4:c3:dd:83:3a: ba:68:1d:87:79:68:f1:5e:ad:5f:28:0f:d8:d7:02: 32:17:45:5d:14:09:35:6a:ed:7e:71:e5:00:9c:64: ad:33:36:1d:51:64:03:a9:7f:c6:18:5f:9d:42:a7: c3:9f:21:2b:8b:bf:45:72:8f:ba:db:58:13:be:49: 1f:ee:fa:e9:6e:3c:11:ee:6a:d4:a4:0c:0c:70:ab: 5a:7f:fb:49:2a:bd:82:eb:07:c2:69:c2:ae:bb:e0: 27:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1B:8B:49:52:FE:38:AE:B6:BE:42:36:84:10:4C:DD:2E:7D:79:22 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.248.0/24 Signature Algorithm: sha256WithRSAEncryption 03:06:01:1d:17:7c:86:c2:0c:5b:50:9b:44:60:4e:11:0e:09: 0b:5d:c9:57:88:b7:33:16:ff:72:79:01:2a:e0:3b:23:9c:36: bb:27:5f:d0:58:24:cc:db:9e:05:7f:81:eb:24:9d:5f:e6:6a: 76:42:92:2d:e2:84:3a:12:35:2d:34:a5:a1:d0:73:90:db:4e: c6:68:3f:8f:83:c3:cd:99:39:1a:49:9e:7b:4a:a5:1d:43:7c: c3:4c:f8:9b:5e:75:15:5a:82:98:f3:16:3e:d9:4b:4a:99:1d: 5f:d5:75:f6:2c:0e:ec:91:12:6d:e4:91:1a:46:c5:2e:3c:8e: c5:17:8c:cd:cc:70:56:35:d3:25:2c:2e:ee:84:e7:b7:20:8e: d1:33:88:70:eb:36:9c:3d:d8:67:65:79:68:32:ef:38:63:13: 36:12:d2:4d:db:61:f0:dc:b8:1d:65:b2:dc:d3:0e:f8:65:8b: a6:aa:29:41:43:8b:5c:8f:c2:ec:2d:cc:b7:f5:7d:81:7b:72: d1:e9:6c:51:81:08:ff:15:c8:55:2f:ad:12:28:b0:23:2a:94: 41:e2:83:fe:df:e5:31:ed:06:22:b4:75:a0:11:ba:d3:8a:ad: 84:ea:1b:77:f1:e2:8c:1e:d9:9b:5e:29:23:d7:c6:65:c4:38: 1e:15:d3:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaMxKo5FbKasfb10zY9ZGMT38+v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwODE5MDA0MDQwWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTUyNDU5ZWNmNzYyMDY4MTJlOTIzZjNkNGY0YjQ2MmJi OGNlOTlhYjYzMDFhMmVlNDcyZmIyZjViYTNmNjc1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSjttH19UjeKQlSd+GtH5GYYGu0Wku6iUZKtIT14SJAsWf d98sW3+F+kPeWWn3BpTFYEfCAfP3s2eCri9x3YKQXB6MF5yXtNxk4gIi8dJ8AqGL UMc/pVOO9Ftn90yaVRHGW9HiwTl9hFECtEb1lWZrCQzavmfnTD3LM80xVgGEFsa6 7n8DL6PwH3fkYvw5LCjPJYJnDE2CT84GMpkqqFHkw92DOrpoHYd5aPFerV8oD9jX AjIXRV0UCTVq7X5x5QCcZK0zNh1RZAOpf8YYX51Cp8OfISuLv0Vyj7rbWBO+SR/u +uluPBHuatSkDAxwq1p/+0kqvYLrB8Jpwq674CcbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCxuLSVL+OK62vkI2hBBM3S59eSIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2VjYmEwNTU3LWMwMDQtNDFjMi1iZDViLTYzMTQyZGJlZTI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/gwDQYJKoZIhvcNAQELBQADggEBAAMGAR0XfIbCDFtQm0RgThEOCQtd yVeItzMW/3J5ASrgOyOcNrsnX9BYJMzbngV/gesknV/manZCki3ihDoSNS00paHQ c5DbTsZoP4+Dw82ZORpJnntKpR1DfMNM+JtedRVagpjzFj7ZS0qZHV/VdfYsDuyR Em3kkRpGxS48jsUXjM3McFY10yUsLu6E57cgjtEziHDrNpw92GdleWgy7zhjEzYS 0k3bYfDcuB1lstzTDvhli6aqKUFDi1yPwuwtzLf1fYF7ctHpbFGBCP8VyFUvrRIo sCMqlEHig/7f5THtBiK0daARutOKrYTqG3fx4owe2ZteKSPXxmXEOB4V04s= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:55 2025 by rpki-client