$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa File: 48843fd0-701f-458d-8038-49a4eae8ba8e.roa (raw, json) Hash identifier: faZ1JKDL+iO3COPZZibjopoe9dXSYTu/4LP81bo79MA= Subject key identifier: 78:C1:01:3D:CD:14:F2:19:89:FA:71:E1:42:94:D2:02:63:2A:7A:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3153F6DD3C5FD82B263018005B1BB7C54132C606 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa Signing time: Tue 05 Aug 2025 00:40:22 +0000 ROA not before: Tue 05 Aug 2025 00:40:22 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:53:f6:dd:3c:5f:d8:2b:26:30:18:00:5b:1b:b7:c5:41:32:c6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:40:22 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ebab73df23a65089064fc94fef8c8f86da847c82d629bbcf6f841bf57220cdec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:84:b3:6a:f5:9a:4a:0d:aa:08:53:0e:98:d1: 20:b2:80:73:c5:f6:39:7b:04:77:d8:a9:8d:c9:8f: 5a:53:8a:d4:53:94:f4:98:fb:f3:97:db:8e:78:af: 82:16:8f:c8:a2:3c:e4:28:f9:5e:c7:6b:1c:8e:61: 5d:76:91:6d:99:c3:32:e9:b7:1b:9b:ca:3e:07:4b: ab:4d:5b:fb:aa:b9:30:6d:12:e1:18:45:04:a0:ee: 03:a7:89:1a:10:f5:b5:43:13:9c:26:a1:9f:3c:dd: 7a:03:d2:c3:7c:3f:19:7f:a8:77:71:d2:b8:38:4d: e3:d1:b5:44:a8:24:75:a1:29:b3:8a:4a:7f:19:fc: d1:fa:0f:70:96:8f:d1:1c:d6:15:47:50:64:9c:a8: 88:59:3d:96:a5:ac:fb:29:25:34:ef:58:93:54:21: 2e:ba:c8:f5:9d:2d:92:73:9d:f2:7f:da:be:1f:2a: 0f:3d:26:3c:8d:c3:d4:a9:0e:95:39:86:a1:7d:b9: ac:f7:89:82:2c:cf:24:e4:c3:be:22:2a:02:87:52: cc:0e:fb:7a:6e:16:9a:35:ad:91:38:31:a7:86:4e: 0a:17:64:cb:90:46:72:62:e3:5a:05:fa:ba:a9:4e: c2:2b:11:fa:8d:74:b1:00:87:e8:75:3e:e7:b4:c4: c1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C1:01:3D:CD:14:F2:19:89:FA:71:E1:42:94:D2:02:63:2A:7A:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48843fd0-701f-458d-8038-49a4eae8ba8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption 95:97:81:f8:4c:52:1c:4b:0e:62:97:a7:ae:0f:fc:b9:93:90: 4a:26:97:38:7a:dc:0b:38:52:1b:b8:ec:66:1b:3a:27:3e:7a: 6b:ab:c2:2b:e1:88:af:95:84:23:c1:de:89:0d:1b:37:93:39: 75:27:64:91:69:21:c5:d8:66:5d:d6:99:2c:8a:5b:74:1d:63: 69:6b:0c:c3:f7:b3:d5:54:ab:9c:1f:93:42:b8:1f:64:3f:d1: 74:25:48:37:37:e0:de:06:c1:81:bb:3e:c5:e6:78:0e:14:fe: 5e:af:6a:9b:49:7d:db:75:af:5c:75:52:cc:c3:cc:c4:77:92: c0:76:3d:55:b0:df:39:ee:31:82:04:ea:6b:db:83:cd:d3:a1: ad:70:da:ea:ff:6c:7c:c4:c3:a4:e3:27:23:0f:da:02:be:ff: a2:ef:a0:40:eb:c5:c4:b7:50:b5:54:cb:e0:cd:89:f6:64:90: 5c:c0:40:da:1b:cd:42:c3:81:54:6d:70:41:75:89:ee:4e:c5: 80:b0:e0:3a:7d:7c:98:92:3f:2c:b4:0c:a9:6e:cf:59:4e:1d: 7a:1b:14:b1:83:d3:3c:c8:33:ee:57:c4:56:07:55:a7:14:b0: 6b:88:19:71:e3:df:b0:01:35:a5:20:1c:b5:ec:29:b3:8b:7e: 18:74:66:51 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMVP23Txf2CsmMBgAWxu3xUEyxgYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MDIyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmFiNzNkZjIzYTY1MDg5MDY0ZmM5NGZlZjhjOGY4NmRh ODQ3YzgyZDYyOWJiY2Y2Zjg0MWJmNTcyMjBjZGVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDShLNq9ZpKDaoIUw6Y0SCygHPF9jl7BHfYqY3Jj1pTitRT lPSY+/OX2454r4IWj8iiPOQo+V7HaxyOYV12kW2ZwzLptxubyj4HS6tNW/uquTBt EuEYRQSg7gOniRoQ9bVDE5wmoZ883XoD0sN8Pxl/qHdx0rg4TePRtUSoJHWhKbOK Sn8Z/NH6D3CWj9Ec1hVHUGScqIhZPZalrPspJTTvWJNUIS66yPWdLZJznfJ/2r4f Kg89JjyNw9SpDpU5hqF9uaz3iYIszyTkw74iKgKHUswO+3puFpo1rZE4MaeGTgoX ZMuQRnJi41oF+rqpTsIrEfqNdLEAh+h1Pue0xMHtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeMEBPc0U8hmJ+nHhQpTSAmMqeo4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4ODQzZmQwLTcwMWYtNDU4ZC04MDM4LTQ5YTRlYWU4YmE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4SjANBgkqhkiG9w0BAQsFAAOCAQEAlZeB+ExSHEsOYpenrg/8uZOQSiaX OHrcCzhSG7jsZhs6Jz56a6vCK+GIr5WEI8HeiQ0bN5M5dSdkkWkhxdhmXdaZLIpb dB1jaWsMw/ez1VSrnB+TQrgfZD/RdCVINzfg3gbBgbs+xeZ4DhT+Xq9qm0l923Wv XHVSzMPMxHeSwHY9VbDfOe4xggTqa9uDzdOhrXDa6v9sfMTDpOMnIw/aAr7/ou+g QOvFxLdQtVTL4M2J9mSQXMBA2hvNQsOBVG1wQXWJ7k7FgLDgOn18mJI/LLQMqW7P WU4dehsUsYPTPMgz7lfEVgdVpxSwa4gZcePfsAE1pSActewps4t+GHRmUQ== -----END CERTIFICATE-----Generated at Thu Aug 7 05:11:05 2025 by rpki-client