$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2337adfc-3e6e-4798-9efd-afd8e5bd04c9.roa File: 2337adfc-3e6e-4798-9efd-afd8e5bd04c9.roa (raw, json) Hash identifier: b1BYq6qA10HGS/mVdcPRy3RSXG+rOu4eqz3e0kN8XFM= Subject key identifier: 0E:F3:EC:09:D8:D3:A5:CE:61:5A:A4:D2:65:32:F9:56:18:50:58:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01744686E8BE76968F16A0278D0402D5CFEC11CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2337adfc-3e6e-4798-9efd-afd8e5bd04c9.roa Signing time: Mon 04 Aug 2025 17:40:57 +0000 ROA not before: Mon 04 Aug 2025 17:40:57 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:74:46:86:e8:be:76:96:8f:16:a0:27:8d:04:02:d5:cf:ec:11:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:40:57 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=b14cc999f1636e214a9ab06fb51e72ea1f8e841342f9baedaaa9afe09cc241e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:88:4d:e7:ec:0d:e6:a6:ef:9b:ec:0a:c7:ea: 95:d3:e8:d4:43:3a:d0:a7:06:87:53:33:51:79:f2: 5d:b4:d3:d7:12:a4:d8:eb:eb:7e:9e:8e:4c:8f:18: 84:2a:05:23:8f:c9:fa:36:0f:9c:f6:ad:08:10:e5: b9:79:9f:f2:98:2f:31:ff:d5:59:9f:a2:91:96:56: 6e:04:77:61:c6:af:44:17:c8:0e:9d:02:3e:0c:95: d1:26:8f:c6:13:5d:59:80:55:90:5d:f8:41:3d:3f: eb:9f:67:89:6f:ec:68:59:46:ca:93:cc:cc:1e:77: 45:ea:55:76:61:b6:95:4a:59:92:b6:96:4e:44:34: 68:5f:1b:70:ca:49:03:b1:eb:b1:4c:72:d1:ca:6b: ef:86:86:7f:25:b4:ca:0c:b5:4a:30:fb:56:09:33: f5:7d:6c:31:84:44:fa:f8:33:45:d0:84:6f:6e:88: c7:0a:20:2f:9a:af:ed:52:24:78:f5:47:b6:75:35: 25:18:07:54:08:0f:e5:32:c5:c1:b4:9a:28:f5:2f: a5:ef:a6:14:d9:08:01:36:85:cf:6e:21:2e:1c:7d: f3:95:d0:89:e0:cf:01:84:8b:2f:31:fc:d5:45:53: 75:f7:82:fd:11:94:11:8a:8f:21:80:54:f7:81:e5: a1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F3:EC:09:D8:D3:A5:CE:61:5A:A4:D2:65:32:F9:56:18:50:58:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2337adfc-3e6e-4798-9efd-afd8e5bd04c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3f:1c:35:e2:d2:33:60:e7:63:5f:6d:b5:e1:27:80:eb:fc:0b: 77:c0:8a:2d:58:04:12:a6:8e:fd:ff:4c:f7:fa:9b:89:06:aa: f9:ac:84:61:57:6d:0c:58:98:bb:2d:0e:65:4a:ce:ef:c0:52: 09:ea:aa:8d:9d:12:22:68:9f:e6:40:cd:db:36:49:ac:3a:ba: 90:20:4f:28:88:44:89:97:a5:1a:00:5c:13:a2:85:89:ad:f1: 51:b7:9f:52:ee:9c:82:42:18:e6:f4:b1:a9:03:60:2c:3d:46: 83:fb:3a:f3:50:cb:c4:cf:ac:f8:5b:24:78:8a:76:86:36:9f: 6d:1a:5d:7b:13:c0:20:51:b2:40:52:67:f5:ce:e3:6a:ef:a8: c2:8b:c1:ca:04:2b:fa:39:ba:df:01:cc:5e:53:37:67:05:84: c6:20:6d:ed:72:26:f7:f4:0f:10:a6:5a:c6:a1:5d:a9:a8:27: 00:d9:4a:43:46:7c:3f:4d:dc:dd:be:c2:ee:b4:fa:84:49:07: 84:6a:d7:d5:de:39:f5:75:96:26:16:e9:89:48:93:cb:65:b6: 21:c1:00:10:b8:6b:25:57:8f:3a:32:3c:3d:45:7d:59:e0:e5: b0:61:f0:ee:c6:21:b9:49:9d:0e:57:18:6c:ec:60:42:9e:d4: df:44:69:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAXRGhui+dpaPFqAnjQQC1c/sEc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTc0MDU3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTRjYzk5OWYxNjM2ZTIxNGE5YWIwNmZiNTFlNzJlYTFm OGU4NDEzNDJmOWJhZWRhYWE5YWZlMDljYzI0MWU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsiE3n7A3mpu+b7ArH6pXT6NRDOtCnBodTM1F58l2009cS pNjr636ejkyPGIQqBSOPyfo2D5z2rQgQ5bl5n/KYLzH/1VmfopGWVm4Ed2HGr0QX yA6dAj4MldEmj8YTXVmAVZBd+EE9P+ufZ4lv7GhZRsqTzMwed0XqVXZhtpVKWZK2 lk5ENGhfG3DKSQOx67FMctHKa++Ghn8ltMoMtUow+1YJM/V9bDGERPr4M0XQhG9u iMcKIC+ar+1SJHj1R7Z1NSUYB1QID+UyxcG0mij1L6XvphTZCAE2hc9uIS4cffOV 0IngzwGEiy8x/NVFU3X3gv0RlBGKjyGAVPeB5aGrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDvPsCdjTpc5hWqTSZTL5VhhQWDswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMzdhZGZjLTNlNmUtNDc5OC05ZWZkLWFmZDhlNWJkMDRjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4hTANBgkqhkiG9w0BAQsFAAOCAQEAPxw14tIzYOdjX2214SeA6/wLd8CK LVgEEqaO/f9M9/qbiQaq+ayEYVdtDFiYuy0OZUrO78BSCeqqjZ0SImif5kDN2zZJ rDq6kCBPKIhEiZelGgBcE6KFia3xUbefUu6cgkIY5vSxqQNgLD1Gg/s681DLxM+s +FskeIp2hjafbRpdexPAIFGyQFJn9c7jau+owovBygQr+jm63wHMXlM3ZwWExiBt 7XIm9/QPEKZaxqFdqagnANlKQ0Z8P03c3b7C7rT6hEkHhGrX1d459XWWJhbpiUiT y2W2IcEAELhrJVePOjI8PUV9WeDlsGHw7sYhuUmdDlcYbOxgQp7U30RpKg== -----END CERTIFICATE-----Generated at Wed Aug 6 10:06:13 2025 by rpki-client