$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa File: 1c9d5620-aeb3-442d-ac52-b345961602c4.roa (raw, json) Hash identifier: /9Ayde0OQFMsdGJNAbWLa4oW9f39xiAedtxGImfhpLc= Subject key identifier: 4E:8C:28:15:0C:E3:A5:F7:DE:74:3A:F1:DB:31:CF:2B:9A:E3:85:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25F8B728BAE88666369CC105E829DD46C5D67DCE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa Signing time: Tue 05 Aug 2025 00:40:13 +0000 ROA not before: Tue 05 Aug 2025 00:40:13 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f8:b7:28:ba:e8:86:66:36:9c:c1:05:e8:29:dd:46:c5:d6:7d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:40:13 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5e30b3a6fc88cfead9ad82b32ca2a1777206d48fa01a1a7b9afa018dedb79bda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:be:a4:aa:a3:0a:c2:d1:23:e7:14:c3:ed:ed: 3b:d2:ec:a2:df:e5:10:61:ec:59:8d:f1:20:3e:80: b0:33:b0:b7:7e:b6:11:52:16:9f:ae:8f:90:23:44: a1:31:f6:46:fa:f2:0f:1f:63:69:8e:c8:79:a9:a8: 6a:c5:f9:db:2b:1a:29:be:6e:eb:20:cc:85:68:24: 34:02:9b:8f:24:14:da:8f:a9:d0:f7:7b:81:4f:60: 9d:fe:a4:7a:07:0a:4d:fa:71:ef:d2:ca:e1:75:86: 08:90:12:0b:68:45:25:11:fa:09:b8:48:c3:05:05: 24:15:99:cd:07:f0:df:02:ee:ff:a9:9c:b6:44:62: 22:c3:ff:80:da:e3:cf:3b:e9:3e:36:21:28:41:b8: 5e:b4:4c:ab:6f:ee:73:2c:71:75:1e:64:2e:59:80: fa:95:ed:fa:22:44:4a:ca:76:ed:ef:29:28:00:6a: 41:a3:6d:07:8c:b9:4c:ee:3d:98:4e:ae:af:c6:5a: a6:f9:1c:ac:fb:d6:8f:22:01:4c:da:30:da:df:d6: 38:7d:5b:cb:dd:10:f6:4e:3e:2b:e3:e6:bf:a6:d3: fe:5b:87:f4:9a:08:0c:2c:0c:ca:4e:63:63:56:70: 51:9e:69:74:4a:8e:e4:c2:09:b7:f2:56:17:a8:b2: c7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8C:28:15:0C:E3:A5:F7:DE:74:3A:F1:DB:31:CF:2B:9A:E3:85:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:16:d3:8f:15:cc:af:e3:dd:2c:bb:19:ac:69:aa:10:a1:2a: f7:70:a0:80:48:5d:11:b6:a0:18:d6:1d:55:d3:93:77:8e:fb: 4f:ab:69:80:61:88:5d:c1:65:55:2c:b9:e9:b7:1a:6d:5f:d0: c8:4d:6d:23:65:f5:a4:47:d1:cb:c6:7a:a1:6c:c8:d2:30:a1: 49:d2:4c:04:8f:29:75:3b:64:76:54:9c:ca:f5:3d:0f:77:c0: 28:d1:cf:9b:89:dd:e9:80:6f:f7:0c:5e:a9:d3:27:33:28:15: 1f:ce:90:ce:ba:73:cf:ac:3a:6d:ff:8b:5a:37:1e:fe:97:91: c6:53:00:58:2a:6a:7f:69:67:9a:23:ab:2f:c4:b3:7c:4a:f2: a4:c1:37:7e:d0:4b:5b:87:ca:b4:2c:99:42:14:b4:62:70:4f: 9e:d4:00:fb:6d:fa:08:12:26:c1:76:6e:6c:3b:bd:6a:86:d8: a2:e4:90:93:af:1f:ec:9a:b7:b9:32:10:ac:89:5e:d3:0b:a9: fa:d8:9a:a6:21:e5:27:aa:ef:5e:19:0b:aa:64:f8:aa:17:14: e0:4d:19:50:81:e1:ce:42:a9:df:1b:74:52:da:b1:4c:7c:29: f7:1a:b5:c3:14:25:75:d9:9b:b3:83:e9:27:33:f5:aa:5c:bf: c1:00:a5:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJfi3KLrohmY2nMEF6CndRsXWfc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MDEzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTMwYjNhNmZjODhjZmVhZDlhZDgyYjMyY2EyYTE3Nzcy MDZkNDhmYTAxYTFhN2I5YWZhMDE4ZGVkYjc5YmRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJvqSqowrC0SPnFMPt7TvS7KLf5RBh7FmN8SA+gLAzsLd+ thFSFp+uj5AjRKEx9kb68g8fY2mOyHmpqGrF+dsrGim+busgzIVoJDQCm48kFNqP qdD3e4FPYJ3+pHoHCk36ce/SyuF1hgiQEgtoRSUR+gm4SMMFBSQVmc0H8N8C7v+p nLZEYiLD/4Da48876T42IShBuF60TKtv7nMscXUeZC5ZgPqV7foiRErKdu3vKSgA akGjbQeMuUzuPZhOrq/GWqb5HKz71o8iAUzaMNrf1jh9W8vdEPZOPivj5r+m0/5b h/SaCAwsDMpOY2NWcFGeaXRKjuTCCbfyVheossefAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTowoFQzjpffedDrx2zHPK5rjhfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOWQ1NjIwLWFlYjMtNDQyZC1hYzUyLWIzNDU5NjE2MDJjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ODANBgkqhkiG9w0BAQsFAAOCAQEABxbTjxXMr+PdLLsZrGmqEKEq93Cg gEhdEbagGNYdVdOTd477T6tpgGGIXcFlVSy56bcabV/QyE1tI2X1pEfRy8Z6oWzI 0jChSdJMBI8pdTtkdlScyvU9D3fAKNHPm4nd6YBv9wxeqdMnMygVH86Qzrpzz6w6 bf+LWjce/peRxlMAWCpqf2lnmiOrL8SzfErypME3ftBLW4fKtCyZQhS0YnBPntQA +236CBImwXZubDu9aobYouSQk68f7Jq3uTIQrIle0wup+tiapiHlJ6rvXhkLqmT4 qhcU4E0ZUIHhzkKp3xt0UtqxTHwp9xq1wxQlddmbs4PpJzP1qly/wQClFA== -----END CERTIFICATE-----Generated at Sat Aug 9 02:49:21 2025 by rpki-client