$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa File: 55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa (raw, json) Hash identifier: CmZmLP2y3StsM5ydMg155qXtfAK+MolphEp5j9rr0Vc= Subject key identifier: BA:12:91:A0:77:9D:6D:37:04:CB:AD:F7:53:0C:5D:B6:1B:D6:53:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EFBCD8821F107A323A689063E0EB16E567E50D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa Signing time: Mon 04 Aug 2025 17:31:10 +0000 ROA not before: Mon 04 Aug 2025 17:31:10 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.112.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:fb:cd:88:21:f1:07:a3:23:a6:89:06:3e:0e:b1:6e:56:7e:50:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:31:10 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=243928e97f42e59e72ed213f8147790775931e804ca9a9608587d1b347ba634e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f7:f7:64:05:d8:47:e0:c9:56:4f:0c:58:bc: 50:f6:eb:5f:e1:89:34:70:14:ae:ae:a1:3b:a8:69: fa:14:c5:0d:c2:d3:8f:45:a9:8e:5b:b0:f9:ce:6a: 71:92:d8:bb:6d:4b:c0:6e:28:f4:d4:fc:d0:29:ba: ec:2f:30:4a:62:41:91:b5:ef:55:76:a7:bc:e5:7b: 20:d6:b5:7f:45:15:58:83:f3:f0:96:68:74:14:38: dc:63:70:0f:e1:9c:c3:03:98:f1:cd:c1:d9:3d:a5: ad:3f:e9:ac:33:26:d9:e3:70:b7:68:9a:64:a0:72: 84:63:27:32:69:a8:16:bb:dd:5c:92:f8:e2:08:25: ec:94:b4:db:78:fd:17:09:96:50:f1:98:63:2c:8e: c2:82:79:35:ae:eb:ae:f9:4a:58:3e:79:93:16:c9: f6:38:91:b7:79:56:7a:8c:1e:e4:50:1a:ea:7f:f8: d7:b6:65:96:04:e7:29:80:a2:d4:25:09:62:90:87: d7:d4:fa:b1:3a:76:62:fe:2d:58:54:56:81:7f:c1: a6:dd:de:af:51:80:02:1d:6b:f3:c7:98:fa:3a:ef: d8:aa:83:97:e0:51:4f:97:d5:23:97:87:1a:2f:8c: 76:cb:16:86:e4:c9:5c:94:19:1b:28:59:ec:0f:9c: b6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:12:91:A0:77:9D:6D:37:04:CB:AD:F7:53:0C:5D:B6:1B:D6:53:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55fe2f68-5263-41e3-bddf-9961f0c5b0b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.112.32.0/19 Signature Algorithm: sha256WithRSAEncryption 33:76:93:b9:87:08:68:c9:9d:62:55:29:d5:b9:5b:66:e6:0a: b3:00:69:a7:49:4d:76:7d:1f:7b:95:df:a4:16:97:63:e1:b6: 44:04:70:d6:35:4d:43:b9:0d:ca:dc:5b:eb:bc:2c:ea:89:32: 1d:e5:70:d2:31:33:b2:6e:13:53:02:cc:5d:b5:b3:cd:fd:33: 6b:7a:39:51:af:da:3b:d5:1c:11:67:93:3f:25:9e:44:09:65: ba:15:d1:af:88:84:8d:98:61:93:db:f7:5c:96:5d:c0:5c:a2: 51:cb:e2:94:ab:2c:14:b2:f4:d7:68:cc:bc:0c:c5:b5:2d:0d: 5f:23:98:41:88:55:69:3b:cf:16:1a:1b:c3:6b:a3:30:ac:29: 86:05:3e:32:ea:19:81:dc:09:4e:ee:fd:3a:3c:78:f5:e6:c3: ec:d1:b3:67:b4:fb:a0:da:63:64:c2:fd:97:4c:26:9a:6b:ae: b3:0c:fe:cb:b2:f9:2d:5e:a8:1e:55:26:50:00:be:9b:53:e0: b3:cc:05:c7:b4:22:54:b2:d3:ac:62:18:88:4c:a7:4f:67:8c: 32:58:78:66:cf:c2:40:34:22:7d:6b:07:7b:a8:1d:39:cc:b9: b4:eb:f1:c8:d5:47:9b:11:93:8a:e5:ba:f7:c2:fa:0b:67:fb: 71:c2:28:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfvvNiCHxB6MjpokGPg6xblZ+UNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTczMTEwWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDM5MjhlOTdmNDJlNTllNzJlZDIxM2Y4MTQ3NzkwNzc1 OTMxZTgwNGNhOWE5NjA4NTg3ZDFiMzQ3YmE2MzRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJ9/dkBdhH4MlWTwxYvFD261/hiTRwFK6uoTuoafoUxQ3C 049FqY5bsPnOanGS2LttS8BuKPTU/NApuuwvMEpiQZG171V2p7zleyDWtX9FFViD 8/CWaHQUONxjcA/hnMMDmPHNwdk9pa0/6awzJtnjcLdommSgcoRjJzJpqBa73VyS +OIIJeyUtNt4/RcJllDxmGMsjsKCeTWu6675Slg+eZMWyfY4kbd5VnqMHuRQGup/ +Ne2ZZYE5ymAotQlCWKQh9fU+rE6dmL+LVhUVoF/wabd3q9RgAIda/PHmPo679iq g5fgUU+X1SOXhxovjHbLFobkyVyUGRsoWewPnLYXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuhKRoHedbTcEy633UwxdthvWU20wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1ZmUyZjY4LTUyNjMtNDFlMy1iZGRmLTk5NjFmMGM1YjBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2cCAwDQYJKoZIhvcNAQELBQADggEBADN2k7mHCGjJnWJVKdW5W2bmCrMA aadJTXZ9H3uV36QWl2PhtkQEcNY1TUO5DcrcW+u8LOqJMh3lcNIxM7JuE1MCzF21 s839M2t6OVGv2jvVHBFnkz8lnkQJZboV0a+IhI2YYZPb91yWXcBcolHL4pSrLBSy 9NdozLwMxbUtDV8jmEGIVWk7zxYaG8NrozCsKYYFPjLqGYHcCU7u/To8ePXmw+zR s2e0+6DaY2TC/ZdMJpprrrMM/suy+S1eqB5VJlAAvptT4LPMBce0IlSy06xiGIhM p09njDJYeGbPwkA0In1rB3uoHTnMubTr8cjVR5sRk4rluvfC+gtn+3HCKCI= -----END CERTIFICATE-----Generated at Wed Aug 6 14:22:00 2025 by rpki-client