$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json) Hash identifier: AtSkKxCFu+1m/FUQKDSF5RT+pdPztbovsbZi5EDE6IE= Subject key identifier: 6E:03:CD:3D:4F:64:5B:5C:64:69:9B:5B:F2:FE:1C:E9:3A:F9:97:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7903A03994380E209ED9B09C9EE9D07C2BCE81F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa Signing time: Sat 19 Jul 2025 00:22:00 +0000 ROA not before: Sat 19 Jul 2025 00:22:00 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:03:a0:39:94:38:0e:20:9e:d9:b0:9c:9e:e9:d0:7c:2b:ce:81:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:22:00 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=5a70c01e71902f88deaffccdaf7d7fb58e90dfefbfd31ef3ed05e504a7926520, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:e0:8f:50:5d:e7:94:f8:85:cc:b5:95:d4: ec:31:72:1b:a8:0b:6f:07:3a:b9:8e:41:eb:c7:4d: 5c:57:16:6c:b9:9d:6c:c3:b0:a8:0f:03:bd:9f:7e: 62:ee:67:bc:ec:d7:54:be:6a:20:be:5e:1e:bc:0e: 41:8a:5e:f7:54:14:23:4d:21:6f:fb:31:15:35:f3: 82:c2:02:e9:d8:47:c1:77:f0:88:ba:9e:a0:6f:c0: c6:7c:76:18:96:75:6f:ae:05:9a:05:3c:ba:03:34: d9:10:79:57:02:72:48:77:dd:93:76:ee:e9:a6:ea: 89:b9:28:09:af:ce:d5:b2:ca:d1:5e:1c:27:94:29: 12:3e:8e:d5:2f:3e:fd:84:b7:39:cc:e6:54:55:28: fc:b7:44:7e:47:60:b9:48:ab:83:86:5d:2a:bb:37: 57:ce:fc:a8:65:00:b2:35:ab:35:4a:ff:93:2e:35: 5a:cf:97:e8:be:05:be:20:bc:6c:c7:0f:17:ad:a7: 94:f6:a9:ab:f3:c2:9d:a5:cb:04:fc:36:5d:ea:9d: cd:90:91:70:4c:af:cc:94:a9:a7:16:9d:85:0b:78: 8e:a1:25:92:38:88:6b:d0:a7:f5:5b:7e:7e:d2:59: 98:b1:ee:8d:cb:22:79:83:cd:68:eb:59:92:bb:ce: bd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:03:CD:3D:4F:64:5B:5C:64:69:9B:5B:F2:FE:1C:E9:3A:F9:97:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:00:c6:89:9d:dc:53:5a:58:d2:68:f6:6c:a0:27:c9:46:dd: 8b:89:46:1e:f9:5a:81:a8:86:a6:2c:0a:e4:ce:ed:7b:87:cc: aa:d0:2c:d4:c5:35:60:d5:50:e9:72:e5:46:f7:71:c0:db:f5: fe:a6:9d:a9:5b:8c:6b:7c:7b:48:93:e7:8b:c8:31:64:f2:5c: 52:b3:5e:8e:cb:ea:d4:45:73:69:02:92:4b:93:71:dc:bf:e4: a1:b6:15:0a:4c:64:26:11:d4:d5:c7:d2:dc:a2:54:2b:2d:52: bf:dc:fb:73:01:6d:8d:aa:7e:3a:36:68:dd:97:4b:e6:c7:1b: 02:28:8f:4f:6a:49:85:ef:5b:9a:12:e9:9f:93:af:f8:3c:e5: dd:b5:8f:53:6c:c3:ac:c4:41:11:76:f7:da:e6:6e:8c:fe:35: 7e:37:b5:ff:52:1e:ff:8b:93:19:22:a5:a1:39:22:19:eb:fe: 54:79:8d:c6:d5:cc:e7:8a:ba:bf:45:3a:a6:35:f5:4c:d4:d6: 24:e5:a3:12:ed:f6:aa:5b:aa:24:fd:ae:1b:54:fb:3d:9a:47: f4:2e:e0:18:b6:27:f5:1e:89:80:3f:ff:db:5a:60:02:0c:17: 33:b1:68:de:78:c5:ba:06:3b:ef:78:cc:06:01:25:9c:d5:c6: 7c:06:1b:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeQOgOZQ4DiCe2bCcnunQfCvOgfAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAyMjAwWhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTcwYzAxZTcxOTAyZjg4ZGVhZmZjY2RhZjdkN2ZiNThl OTBkZmVmYmZkMzFlZjNlZDA1ZTUwNGE3OTI2NTIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLCeCPUF3nlPiFzLWV1OwxchuoC28HOrmOQevHTVxXFmy5 nWzDsKgPA72ffmLuZ7zs11S+aiC+Xh68DkGKXvdUFCNNIW/7MRU184LCAunYR8F3 8Ii6nqBvwMZ8dhiWdW+uBZoFPLoDNNkQeVcCckh33ZN27umm6om5KAmvztWyytFe HCeUKRI+jtUvPv2EtznM5lRVKPy3RH5HYLlIq4OGXSq7N1fO/KhlALI1qzVK/5Mu NVrPl+i+Bb4gvGzHDxetp5T2qavzwp2lywT8Nl3qnc2QkXBMr8yUqacWnYULeI6h JZI4iGvQp/Vbfn7SWZix7o3LInmDzWjrWZK7zr01AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbgPNPU9kW1xkaZtb8v4c6Tr5l4EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2ZTc0ZGQwLTU3MzMtNGMyZi1iNTAwLTJkNzVjYWI5NzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4LDANBgkqhkiG9w0BAQsFAAOCAQEAJgDGiZ3cU1pY0mj2bKAnyUbdi4lG HvlagaiGpiwK5M7te4fMqtAs1MU1YNVQ6XLlRvdxwNv1/qadqVuMa3x7SJPni8gx ZPJcUrNejsvq1EVzaQKSS5Nx3L/kobYVCkxkJhHU1cfS3KJUKy1Sv9z7cwFtjap+ OjZo3ZdL5scbAiiPT2pJhe9bmhLpn5Ov+Dzl3bWPU2zDrMRBEXb32uZujP41fje1 /1Ie/4uTGSKloTkiGev+VHmNxtXM54q6v0U6pjX1TNTWJOWjEu32qluqJP2uG1T7 PZpH9C7gGLYn9R6JgD//21pgAgwXM7Fo3njFugY773jMBgElnNXGfAYbPA== -----END CERTIFICATE-----Generated at Sat Aug 9 03:02:14 2025 by rpki-client