$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa File: 8e2ea47c-7af2-420d-8695-f2f769b2008c.roa (raw, json) Hash identifier: INZP5InveYVwMba77K9NAqP5T41MobdCcEhuEt59dsA= Subject key identifier: E9:45:B6:68:D8:9D:83:32:E0:8B:E4:41:8E:EC:06:1D:ED:80:B9:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E73844B6EBE42D4049F7D898ACB436AA72F872E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa Signing time: Tue 05 Aug 2025 00:31:01 +0000 ROA not before: Tue 05 Aug 2025 00:31:01 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:73:84:4b:6e:be:42:d4:04:9f:7d:89:8a:cb:43:6a:a7:2f:87:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:31:01 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=94f5ca636a4c3c0bd8f3befbadfcced3f11aeecce175e59f61d0642a15810a57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c7:ef:67:e1:9c:f5:85:e4:fc:2a:ab:59:db: 21:bd:4b:3b:95:d3:bf:fe:d1:41:1c:4c:11:6d:37: f7:cf:4f:ab:0d:7c:f9:35:e0:3d:03:4a:13:4c:7c: b4:0b:f9:32:cd:73:a2:c0:35:df:87:b4:2b:02:ab: b4:9e:a2:e6:fe:08:2d:58:f7:a3:29:0b:a3:b0:47: 35:a7:52:8c:01:c3:16:8f:52:4a:cb:55:a7:25:1c: f6:e1:89:93:de:31:3d:df:d7:6d:71:8d:c9:20:27: 7e:ae:ea:e9:a9:07:7e:ec:9d:9d:06:b1:ad:5f:73: ba:26:14:9a:92:9b:7d:f8:72:15:2f:e3:74:ea:f1: 9b:8d:bd:c9:86:b6:95:d9:03:72:05:6d:b3:e9:d8: 41:c9:1d:bc:5f:91:ff:e5:e0:ee:65:e4:7f:a2:b9: f1:f7:09:2e:a6:4e:34:e4:f6:f6:8f:4d:2e:1c:3e: 8c:1d:95:5d:c9:6f:cb:49:e1:13:0b:58:c0:ca:fc: 7f:fd:4b:13:35:35:09:3d:2e:07:9d:e5:8c:81:ef: 41:eb:e2:85:e4:6b:7f:4f:fd:ca:e8:83:19:10:82: 16:bd:db:d1:aa:30:fb:b9:cf:cd:f8:ca:ae:99:db: 5a:42:ae:1b:a9:f9:6e:4f:2a:8d:2c:6b:f7:39:5c: 08:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:45:B6:68:D8:9D:83:32:E0:8B:E4:41:8E:EC:06:1D:ED:80:B9:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7a:11:69:fe:92:5c:b2:85:d7:7a:de:5f:76:39:59:a2:9f:75: 7a:02:92:35:67:61:68:19:11:d4:73:77:58:2c:45:52:94:e6: fc:0d:e6:1c:d3:76:d7:9c:f9:c2:45:7a:46:bc:7c:39:78:75: a0:88:dc:9d:f7:c1:15:15:2d:ea:c9:f6:9f:5a:b9:da:02:e8: bc:58:89:48:82:79:15:36:84:5b:08:9d:7a:2c:da:5d:1d:0c: 60:9e:02:e4:75:0e:9f:96:49:b2:5d:49:ab:d2:21:44:09:c8: b3:5f:53:97:d4:00:d9:d0:0a:d1:79:f5:5b:db:30:4a:b3:7e: 7c:98:22:d6:56:76:ef:e7:9a:83:e8:9c:d4:ee:2c:93:60:07: c1:9e:12:21:8f:35:3e:89:a3:c9:0b:e7:c3:bb:ba:4d:a0:56: f3:f3:ba:0e:4a:d2:bb:c3:64:70:63:e3:51:45:cc:44:96:d5: 70:d7:8a:fc:71:61:00:3e:3e:6f:d0:37:c7:70:62:41:f9:af: 36:0e:58:66:2b:61:49:dc:4b:4b:fe:19:ff:ec:b2:5e:34:14: 29:7f:3f:35:76:15:8a:33:cd:cf:cf:df:13:19:2b:16:f8:d9: f7:e7:19:45:77:fb:7f:7e:5b:7c:2d:90:1f:ec:69:11:2d:ea: 07:73:27:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbnOES26+QtQEn32JistDaqcvhy4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMTAxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGY1Y2E2MzZhNGMzYzBiZDhmM2JlZmJhZGZjY2VkM2Yx MWFlZWNjZTE3NWU1OWY2MWQwNjQyYTE1ODEwYTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD5x+9n4Zz1heT8KqtZ2yG9SzuV07/+0UEcTBFtN/fPT6sN fPk14D0DShNMfLQL+TLNc6LANd+HtCsCq7Seoub+CC1Y96MpC6OwRzWnUowBwxaP UkrLVaclHPbhiZPeMT3f121xjckgJ36u6umpB37snZ0Gsa1fc7omFJqSm334chUv 43Tq8ZuNvcmGtpXZA3IFbbPp2EHJHbxfkf/l4O5l5H+iufH3CS6mTjTk9vaPTS4c PowdlV3Jb8tJ4RMLWMDK/H/9SxM1NQk9Lged5YyB70Hr4oXka39P/crogxkQgha9 29GqMPu5z834yq6Z21pCrhup+W5PKo0sa/c5XAh9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6UW2aNidgzLgi+RBjuwGHe2AuWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMmVhNDdjLTdhZjItNDIwZC04Njk1LWYyZjc2OWIyMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49TANBgkqhkiG9w0BAQsFAAOCAQEAehFp/pJcsoXXet5fdjlZop91egKS NWdhaBkR1HN3WCxFUpTm/A3mHNN215z5wkV6Rrx8OXh1oIjcnffBFRUt6sn2n1q5 2gLovFiJSIJ5FTaEWwideizaXR0MYJ4C5HUOn5ZJsl1Jq9IhRAnIs19Tl9QA2dAK 0Xn1W9swSrN+fJgi1lZ27+eag+ic1O4sk2AHwZ4SIY81PomjyQvnw7u6TaBW8/O6 DkrSu8NkcGPjUUXMRJbVcNeK/HFhAD4+b9A3x3BiQfmvNg5YZithSdxLS/4Z/+yy XjQUKX8/NXYVijPNz8/fExkrFvjZ9+cZRXf7f35bfC2QH+xpES3qB3MnwQ== -----END CERTIFICATE-----Generated at Wed Aug 6 05:59:36 2025 by rpki-client