$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: dwM1Vd5YUR5WB67Nq/edF40yVrxchlzZlVomL8vG+2o= Subject key identifier: 76:DB:58:B7:06:CA:B8:5F:19:45:DF:35:A5:11:46:62:0C:F6:26:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DA1EB2B72105EC9B38B15A648D0B54941919CA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Fri 18 Jul 2025 00:31:17 +0000 ROA not before: Fri 18 Jul 2025 00:31:17 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a1:eb:2b:72:10:5e:c9:b3:8b:15:a6:48:d0:b5:49:41:91:9c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:31:17 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=1e3dab85b16d79ed8673bf3c4e25f0d5656c08cd36b8d361e1d01d306440aeb0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:4c:4b:c6:76:13:dc:e6:89:de:58:56:38:5d: 32:cb:c3:92:53:bd:06:68:42:42:4a:d6:8b:5c:df: 39:e3:1c:01:85:fb:08:45:27:fe:d2:78:e0:ff:10: 6c:cd:a0:b6:0b:e2:29:e4:9e:39:6c:f5:ee:a3:aa: 04:80:f9:00:1a:3c:66:40:b7:b7:14:9c:58:b3:e8: 78:d4:09:c7:ac:df:ee:77:72:e5:87:a3:68:27:b8: 3c:d5:9f:e6:4f:69:e6:07:02:7e:54:6e:48:78:81: 17:d1:65:71:3f:0b:09:d3:17:b6:10:02:6b:c7:0a: 09:a7:d8:c6:d4:be:d2:00:f4:8e:35:1c:a3:c7:fd: ea:18:9b:2d:7d:c2:63:00:b7:05:51:fd:64:8f:97: 88:fc:f6:36:74:f0:30:97:2c:cf:2d:d5:28:12:0a: 6f:d2:7d:6a:55:29:8a:e5:51:d9:a7:c3:46:35:62: 24:10:a0:72:d4:64:53:3a:5e:9f:57:15:05:30:78: 86:b4:1b:5c:33:9d:ed:ba:82:40:1d:9c:8d:94:c2: bc:02:b4:e0:11:96:ef:f7:33:54:4d:6e:21:24:9f: d8:4c:e0:18:69:88:74:05:94:bd:2f:e4:26:7b:e0: dc:c9:2a:92:bb:9f:4a:c4:51:e9:6a:a4:74:66:bc: d5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DB:58:B7:06:CA:B8:5F:19:45:DF:35:A5:11:46:62:0C:F6:26:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption a9:6b:80:e3:33:a7:d8:70:4c:50:62:39:0c:80:2e:ab:d2:d7: 57:51:fc:b7:64:6c:61:ee:57:03:7a:51:6e:e5:ce:93:a2:72: 07:9d:77:4b:54:8a:e9:e2:25:dc:92:7f:09:21:01:47:ae:92: bc:61:c1:16:42:db:49:01:a6:26:67:e9:ca:1b:6e:78:df:5d: e5:c8:32:4f:3a:4f:90:82:95:9b:0a:75:13:3f:ee:fe:17:f5: ae:0e:3f:86:81:53:6c:c0:e6:c3:96:c8:62:2d:df:b2:82:d5: d1:5e:75:d9:4d:24:3d:29:8b:80:2e:51:9a:9d:d0:83:93:a0: e1:f5:c4:02:8b:e8:cf:8c:8b:51:38:b1:84:ea:ef:83:11:1a: 60:43:38:2c:4e:d5:dc:0f:7a:3c:79:92:d6:6d:b1:e1:ad:c7: 1f:06:06:3a:65:20:c2:bc:a2:5d:f2:94:c4:26:29:c3:68:8e: 80:fe:6c:47:4e:95:36:4b:c2:35:74:36:bb:17:bc:a0:01:b8: 83:d7:e6:8e:0f:39:4c:2e:2a:3d:50:e6:f4:bc:ea:de:63:4c: 66:d3:73:87:85:e0:99:18:30:ce:7e:c4:e6:a8:f2:9a:83:2f: 5d:e1:bc:2d:8a:af:08:1b:f9:b4:01:cc:2e:6e:39:1a:e3:4b: 36:6d:d2:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPaHrK3IQXsmzixWmSNC1SUGRnKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAzMTE3WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTNkYWI4NWIxNmQ3OWVkODY3M2JmM2M0ZTI1ZjBkNTY1 NmMwOGNkMzZiOGQzNjFlMWQwMWQzMDY0NDBhZWIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD9TEvGdhPc5oneWFY4XTLLw5JTvQZoQkJK1otc3znjHAGF +whFJ/7SeOD/EGzNoLYL4inknjls9e6jqgSA+QAaPGZAt7cUnFiz6HjUCces3+53 cuWHo2gnuDzVn+ZPaeYHAn5Ubkh4gRfRZXE/CwnTF7YQAmvHCgmn2MbUvtIA9I41 HKPH/eoYmy19wmMAtwVR/WSPl4j89jZ08DCXLM8t1SgSCm/SfWpVKYrlUdmnw0Y1 YiQQoHLUZFM6Xp9XFQUweIa0G1wzne26gkAdnI2UwrwCtOARlu/3M1RNbiEkn9hM 4BhpiHQFlL0v5CZ74NzJKpK7n0rEUelqpHRmvNULAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdttYtwbKuF8ZRd81pRFGYgz2JscwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAqWuA4zOn2HBMUGI5DIAuq9LXV1H8 t2RsYe5XA3pRbuXOk6JyB513S1SK6eIl3JJ/CSEBR66SvGHBFkLbSQGmJmfpyhtu eN9d5cgyTzpPkIKVmwp1Ez/u/hf1rg4/hoFTbMDmw5bIYi3fsoLV0V512U0kPSmL gC5Rmp3Qg5Og4fXEAovoz4yLUTixhOrvgxEaYEM4LE7V3A96PHmS1m2x4a3HHwYG OmUgwryiXfKUxCYpw2iOgP5sR06VNkvCNXQ2uxe8oAG4g9fmjg85TC4qPVDm9Lzq 3mNMZtNzh4XgmRgwzn7E5qjymoMvXeG8LYqvCBv5tAHMLm45GuNLNm3SyQ== -----END CERTIFICATE-----Generated at Fri Aug 8 00:38:26 2025 by rpki-client