$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa File: 907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa (raw, json) Hash identifier: bb4ScnRYbQOzM+At5324KMHtBLIZCb3Ds/jJQ1brx1U= Subject key identifier: 58:33:40:8E:34:8B:2F:BD:A5:62:28:B9:DD:BA:E8:60:8A:F8:DC:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AB9124F8F58155473DFB30F0BC8FCA61AB182B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa Signing time: Fri 18 Jul 2025 00:32:04 +0000 ROA not before: Fri 18 Jul 2025 00:32:04 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b9:12:4f:8f:58:15:54:73:df:b3:0f:0b:c8:fc:a6:1a:b1:82:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:32:04 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=f66e8df50f75d86304bf3ec8b49b355a1ae852fe03f3273aa326c031a747845f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4d:67:ef:7d:4b:2a:b4:4e:bc:01:4c:9b:59: 2e:01:ec:5b:84:28:d7:c7:11:ab:b0:d4:8c:48:69: b6:f6:3a:a0:35:1d:96:1f:88:1f:2e:2a:20:2d:51: d2:39:3a:ea:9f:04:84:96:75:f9:e7:c7:5b:2a:06: 9e:08:c0:8f:b4:8a:a6:6f:02:28:f9:e4:2a:7b:a6: c2:9e:52:bc:f9:7a:29:ee:4d:68:95:22:76:fa:b5: ad:7b:9d:f9:0f:95:82:9e:cf:07:62:01:73:5c:25: 3d:0b:5b:97:cf:2a:58:ec:aa:f2:ae:ae:27:60:fe: 36:16:f4:93:25:9a:fd:8a:e5:2a:b3:1b:c2:ef:74: c7:de:c9:bf:79:19:66:96:3e:d1:46:84:31:40:c1: 34:de:07:dc:1d:4f:49:38:6f:36:f0:cb:49:1f:56: 08:90:b6:f1:cd:95:62:54:f4:d7:98:4d:9f:87:e3: da:27:d6:77:db:79:5c:36:95:09:8f:73:52:fb:a5: bd:68:90:b8:54:45:1e:b8:f3:fd:4b:12:aa:93:3f: b8:42:be:a0:fe:12:cd:03:93:83:5a:e2:94:e7:31: 91:71:da:62:01:f3:40:57:be:29:f0:58:c9:b0:89: 04:1f:92:b2:c1:a9:eb:55:38:41:37:fc:fa:80:42: 1b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:33:40:8E:34:8B:2F:BD:A5:62:28:B9:DD:BA:E8:60:8A:F8:DC:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 56:24:14:6d:89:70:44:bb:74:a1:e5:c8:00:ef:63:d2:09:2e: 50:30:6b:71:4e:5a:0d:09:1f:0b:df:0b:fe:f4:20:b3:2e:27: de:46:33:2f:0b:e9:26:44:32:3a:ab:df:b3:0d:ad:6f:62:92: 68:51:a3:9c:e8:98:bf:80:fc:bf:fa:10:87:4e:33:f0:28:a0: 67:fa:0e:07:aa:a6:c3:fa:83:46:a8:2b:d2:a9:03:f9:41:20: ae:35:61:a5:a5:4a:bf:0d:c2:f4:c2:45:f0:62:84:ae:e7:7e: f4:92:23:12:64:bc:15:cc:77:a5:e7:3a:bb:09:e4:89:7a:cd: e1:2e:73:de:f9:8b:12:27:be:d0:31:a3:b6:a9:60:e4:80:8e: 98:f3:74:3a:90:27:d1:ea:77:fa:8c:96:e5:7b:c0:c5:50:24: 45:69:b3:af:31:49:56:ad:90:82:c4:87:d6:5c:b3:b1:fa:64: 15:c5:d7:56:58:fe:d8:ad:d9:d0:1f:c5:1f:a5:92:38:69:f5: 13:b5:5b:b3:b2:76:83:00:ad:c8:ba:79:2d:ba:cc:41:6c:e6: b7:39:63:a6:fe:ac:ba:9f:de:63:90:88:76:32:43:61:a0:7a: 8a:b5:e1:4b:5a:d7:25:9d:b5:e8:e8:31:73:f5:1e:f1:61:ef: db:6a:7f:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKrkST49YFVRz37MPC8j8phqxgrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAzMjA0WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjZlOGRmNTBmNzVkODYzMDRiZjNlYzhiNDliMzU1YTFh ZTg1MmZlMDNmMzI3M2FhMzI2YzAzMWE3NDc4NDVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTTWfvfUsqtE68AUybWS4B7FuEKNfHEauw1IxIabb2OqA1 HZYfiB8uKiAtUdI5OuqfBISWdfnnx1sqBp4IwI+0iqZvAij55Cp7psKeUrz5einu TWiVInb6ta17nfkPlYKezwdiAXNcJT0LW5fPKljsqvKuridg/jYW9JMlmv2K5Sqz G8LvdMfeyb95GWaWPtFGhDFAwTTeB9wdT0k4bzbwy0kfVgiQtvHNlWJU9NeYTZ+H 49on1nfbeVw2lQmPc1L7pb1okLhURR648/1LEqqTP7hCvqD+Es0Dk4Na4pTnMZFx 2mIB80BXvinwWMmwiQQfkrLBqetVOEE3/PqAQhvNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWDNAjjSLL72lYii53broYIr43JgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwN2QxZmY2LWI3MmQtNGViOC04MWU5LTRiOTliNTgyNGQ3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uzANBgkqhkiG9w0BAQsFAAOCAQEAViQUbYlwRLt0oeXIAO9j0gkuUDBr cU5aDQkfC98L/vQgsy4n3kYzLwvpJkQyOqvfsw2tb2KSaFGjnOiYv4D8v/oQh04z 8CigZ/oOB6qmw/qDRqgr0qkD+UEgrjVhpaVKvw3C9MJF8GKErud+9JIjEmS8Fcx3 pec6uwnkiXrN4S5z3vmLEie+0DGjtqlg5ICOmPN0OpAn0ep3+oyW5XvAxVAkRWmz rzFJVq2QgsSH1lyzsfpkFcXXVlj+2K3Z0B/FH6WSOGn1E7Vbs7J2gwCtyLp5LbrM QWzmtzljpv6sup/eY5CIdjJDYaB6irXhS1rXJZ216Ogxc/Ue8WHv22p/aA== -----END CERTIFICATE-----Generated at Mon Aug 4 22:21:11 2025 by rpki-client