$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa File: 6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa (raw, json) Hash identifier: t5l6OS7Hh1HQ2inRifJannb2GQfXB66k18Kst0liGw4= Subject key identifier: 7A:E3:60:DF:06:4E:D3:91:7C:3E:88:B3:6B:15:0F:5A:6D:66:8C:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76468DFDE8EACDDEE006AE1F56CD830704117312 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa Signing time: Tue 05 Aug 2025 00:30:19 +0000 ROA not before: Tue 05 Aug 2025 00:30:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.197.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:46:8d:fd:e8:ea:cd:de:e0:06:ae:1f:56:cd:83:07:04:11:73:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:30:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=df2e394245e5a13162252e790974b0e4518321122af6cbec4caaa0c7ebf16fd3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:76:a4:01:f2:cc:35:bd:8a:b5:0b:fe:6d: 5b:1e:56:d3:bd:44:14:2b:a5:eb:c7:0c:65:60:13: 3e:83:2c:bb:9b:b1:ce:7d:32:6c:1f:21:ee:da:58: 7a:02:04:6c:bf:10:e5:55:61:eb:1c:b8:49:13:0b: 17:76:a8:56:83:7b:f2:58:3c:d4:4b:30:87:4c:c3: 70:ef:2b:f5:7b:92:07:d7:97:52:62:45:59:98:87: b0:c9:1c:97:a4:e2:85:36:73:c8:26:a8:64:9a:fb: 4a:2d:90:49:cf:8b:52:c0:72:42:f1:ee:d6:a9:e8: 48:43:52:33:22:7f:32:1a:31:ed:4d:43:52:d8:e5: 65:2d:91:02:18:6f:39:12:8a:ec:b9:64:c6:8d:8b: d1:91:ed:21:0b:e2:f4:dc:5a:75:0b:a2:b1:11:63: d2:60:f8:ce:d3:77:3e:04:76:25:13:23:82:ca:3c: f1:17:f7:ec:d2:87:40:1a:7c:53:25:c4:ee:b5:21: e9:32:7c:f5:6f:58:59:4c:7d:d6:1c:56:b0:79:b1: 3a:72:58:00:3f:6d:9d:28:7f:78:0b:a8:04:ae:f0: 47:01:a8:99:68:f9:b5:e7:e1:2c:f3:73:5f:be:e0: cb:46:ab:11:75:83:d2:51:df:f1:4a:cd:b4:c7:1c: 43:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E3:60:DF:06:4E:D3:91:7C:3E:88:B3:6B:15:0F:5A:6D:66:8C:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6582d7f8-5e59-4931-bbcd-c67b298af3fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.197.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:63:6e:b3:f4:74:63:34:7e:c1:4e:bc:05:22:e9:63:1f:39: 7e:6c:3e:8d:07:c5:78:10:06:83:35:28:ec:e8:ab:52:de:ee: 2c:45:6a:65:26:8c:c7:05:99:ae:36:72:e6:5b:27:ff:22:7f: 4e:72:7c:51:7b:b4:84:88:9b:2c:8f:2d:db:d3:3b:3d:4b:b5: bd:c8:fe:3d:40:ad:0b:3e:d2:93:cd:a2:3b:6f:1b:29:4a:fc: be:2b:8f:74:23:66:2f:88:93:2e:dd:dd:b1:f4:b5:dd:b4:f9: b2:0b:e1:84:83:da:82:f3:37:50:4c:6b:d8:4f:22:ff:12:48: c0:45:ad:65:5a:a6:f7:5b:cc:83:3b:75:15:2e:e1:f4:7b:d7: 5c:a2:87:fa:68:14:e5:18:ad:7f:e1:ab:78:5c:a1:0f:d0:e9: 23:ab:64:12:e6:61:7e:8a:14:f4:73:21:41:f5:d7:d5:2b:4c: e7:4b:3e:30:a0:52:63:45:df:47:11:8c:0b:9c:c0:75:14:47: ce:e6:a3:89:01:f2:cf:a4:cf:ca:7d:00:31:bd:6d:3a:7e:39: e1:d8:08:32:ff:d5:1d:8f:68:03:63:c3:76:4b:94:de:54:1e: b0:93:80:72:a4:b6:81:7c:5d:5a:87:bf:55:ee:4a:43:41:67: 8a:15:5b:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdkaN/ejqzd7gBq4fVs2DBwQRcxIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMDE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjJlMzk0MjQ1ZTVhMTMxNjIyNTJlNzkwOTc0YjBlNDUx ODMyMTEyMmFmNmNiZWM0Y2FhYTBjN2ViZjE2ZmQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5eHakAfLMNb2KtQv+bVseVtO9RBQrpevHDGVgEz6DLLub sc59MmwfIe7aWHoCBGy/EOVVYescuEkTCxd2qFaDe/JYPNRLMIdMw3DvK/V7kgfX l1JiRVmYh7DJHJek4oU2c8gmqGSa+0otkEnPi1LAckLx7tap6EhDUjMifzIaMe1N Q1LY5WUtkQIYbzkSiuy5ZMaNi9GR7SEL4vTcWnULorERY9Jg+M7Tdz4EdiUTI4LK PPEX9+zSh0AafFMlxO61IekyfPVvWFlMfdYcVrB5sTpyWAA/bZ0of3gLqASu8EcB qJlo+bXn4Szzc1++4MtGqxF1g9JR3/FKzbTHHEMNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeuNg3wZO05F8PoizaxUPWm1mjNMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1ODJkN2Y4LTVlNTktNDkzMS1iYmNkLWM2N2IyOThhZjNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xTANBgkqhkiG9w0BAQsFAAOCAQEAZGNus/R0YzR+wU68BSLpYx85fmw+ jQfFeBAGgzUo7OirUt7uLEVqZSaMxwWZrjZy5lsn/yJ/TnJ8UXu0hIibLI8t29M7 PUu1vcj+PUCtCz7Sk82iO28bKUr8viuPdCNmL4iTLt3dsfS13bT5sgvhhIPagvM3 UExr2E8i/xJIwEWtZVqm91vMgzt1FS7h9HvXXKKH+mgU5Ritf+GreFyhD9DpI6tk EuZhfooU9HMhQfXX1StM50s+MKBSY0XfRxGMC5zAdRRHzuajiQHyz6TPyn0AMb1t On454dgIMv/VHY9oA2PDdkuU3lQesJOAcqS2gXxdWoe/Ve5KQ0FnihVbhQ== -----END CERTIFICATE-----Generated at Sat Aug 9 15:15:28 2025 by rpki-client