$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa File: 3140b59c-e29d-4b8a-8974-b6c470960f1b.roa (raw, json) Hash identifier: QcbM81fIxKnjj4birX4TyazA9pkS3/aevZDEf9yVy3U= Subject key identifier: C8:8C:36:34:E0:9B:C6:09:72:39:3D:BC:E0:71:DF:C4:A6:DD:11:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C042A8FBE0A89A5A327B5952001B3C5CD21D90C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa Signing time: Wed 04 Jun 2025 00:10:55 +0000 ROA not before: Wed 04 Jun 2025 00:10:55 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:04:2a:8f:be:0a:89:a5:a3:27:b5:95:20:01:b3:c5:cd:21:d9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:10:55 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=4ec96cbab9c44e5b8d0eec7601554d70b19820d21c47fa1aea5d6721aa5a4304, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c7:85:d6:f4:46:f2:53:86:c4:77:8b:1f:ff: 97:0f:0f:ed:11:74:ef:58:08:ac:de:5b:08:aa:c1: 84:0c:4e:14:8b:37:6a:f9:0f:63:0f:dc:e2:b9:34: 7f:73:9b:c7:a9:60:05:d0:66:0a:a1:ed:72:d8:bc: 4a:e5:57:22:16:49:9f:a3:cd:bb:5d:48:43:ae:e7: c2:ca:ac:f0:7f:44:c6:eb:2c:d2:cf:1a:41:84:24: 91:c4:9e:f8:53:62:54:3d:20:1d:5b:5f:5b:1e:65: 55:0d:95:d9:51:fa:56:db:5a:ad:b8:71:1c:18:3d: 31:28:5d:ea:9d:7e:77:d6:b2:55:bb:ad:75:46:a2: 00:fd:8c:3a:46:64:5e:16:d1:6b:7d:05:50:ff:a6: 05:39:19:92:38:19:49:65:4d:23:f7:1d:f3:16:d2: 47:72:8a:0e:61:d1:d2:cd:1b:c9:0c:fa:46:ff:c5: 55:99:fa:5c:f6:6f:1f:4c:a6:5d:7f:4e:b6:02:1f: c5:c0:d7:9d:7f:04:85:1a:e6:ed:8c:ed:cd:47:06: da:fa:57:af:3c:30:82:1c:ff:56:db:ba:0f:f1:8a: ad:3c:6e:cf:a9:05:3a:f3:78:ff:31:93:69:0f:38: cd:80:76:77:f4:43:4f:02:80:ed:38:bc:80:84:05: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8C:36:34:E0:9B:C6:09:72:39:3D:BC:E0:71:DF:C4:A6:DD:11:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:77:e9:82:73:f1:35:0d:9c:f0:51:8d:9d:ca:56:f7:33:6f: 45:ae:b8:eb:dd:af:ab:12:c3:d6:fa:8c:73:96:b9:13:23:f0: 5b:d2:db:55:94:ba:0b:2b:f6:b9:6a:6b:0b:67:08:f2:40:9a: e0:9a:98:a6:9d:a6:ac:b3:cc:db:76:37:9f:a8:df:3f:54:77: be:08:d6:44:68:60:6f:28:2e:0c:17:2c:b7:31:92:1f:44:46: 5d:0b:01:1d:9a:25:02:a8:e9:26:02:c4:94:36:a4:f7:fa:69: e3:f2:e5:69:22:d0:d5:3e:85:d2:a6:c7:b9:7d:2b:c4:ba:ad: db:68:c0:0c:a5:fd:7a:4b:fc:a5:07:c7:aa:55:4d:61:86:da: d1:80:4f:b9:77:f9:e2:a0:11:4c:48:9a:9c:f0:d3:ec:ec:c8: ed:5e:a4:2b:9a:a9:86:00:fe:b1:83:94:f3:39:14:85:7d:ad: f7:71:69:1d:60:65:2b:21:96:45:28:3f:32:ed:21:c0:e5:ee: 93:50:47:14:b4:48:02:3e:ee:5b:31:b8:47:c2:fa:f2:2f:97: 22:6c:de:bd:76:f4:da:28:c1:ed:d5:0d:9f:5e:ea:ab:db:88: c9:c9:07:9e:a6:be:a5:53:60:99:df:5b:a1:83:9b:61:be:1c: a9:80:d3:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbAQqj74KiaWjJ7WVIAGzxc0h2QwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMDU1WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWM5NmNiYWI5YzQ0ZTViOGQwZWVjNzYwMTU1NGQ3MGIx OTgyMGQyMWM0N2ZhMWFlYTVkNjcyMWFhNWE0MzA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsx4XW9EbyU4bEd4sf/5cPD+0RdO9YCKzeWwiqwYQMThSL N2r5D2MP3OK5NH9zm8epYAXQZgqh7XLYvErlVyIWSZ+jzbtdSEOu58LKrPB/RMbr LNLPGkGEJJHEnvhTYlQ9IB1bX1seZVUNldlR+lbbWq24cRwYPTEoXeqdfnfWslW7 rXVGogD9jDpGZF4W0Wt9BVD/pgU5GZI4GUllTSP3HfMW0kdyig5h0dLNG8kM+kb/ xVWZ+lz2bx9Mpl1/TrYCH8XA151/BIUa5u2M7c1HBtr6V688MIIc/1bbug/xiq08 bs+pBTrzeP8xk2kPOM2Adnf0Q08CgO04vICEBZm3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyIw2NOCbxglyOT284HHfxKbdEdAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxNDBiNTljLWUyOWQtNGI4YS04OTc0LWI2YzQ3MDk2MGYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4czANBgkqhkiG9w0BAQsFAAOCAQEABXfpgnPxNQ2c8FGNncpW9zNvRa64 692vqxLD1vqMc5a5EyPwW9LbVZS6Cyv2uWprC2cI8kCa4JqYpp2mrLPM23Y3n6jf P1R3vgjWRGhgbyguDBcstzGSH0RGXQsBHZolAqjpJgLElDak9/pp4/LlaSLQ1T6F 0qbHuX0rxLqt22jADKX9ekv8pQfHqlVNYYba0YBPuXf54qARTEianPDT7OzI7V6k K5qphgD+sYOU8zkUhX2t93FpHWBlKyGWRSg/Mu0hwOXuk1BHFLRIAj7uWzG4R8L6 8i+XImzevXb02ijB7dUNn17qq9uIyckHnqa+pVNgmd9boYObYb4cqYDT9A== -----END CERTIFICATE-----Generated at Sat Jun 14 06:41:38 2025 by rpki-client