$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa File: a5a28861-ee8e-44d9-b363-30a1f04e1125.roa (raw, json) Hash identifier: nTsz6qHJLlnEC4ton9LNG2SSSz72FSgba49GyUcqL3U= Subject key identifier: 3E:27:45:54:29:AE:F4:B2:C5:95:51:52:CE:59:6C:0D:34:9C:30:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D521DD7B9EDC91BE7F62A8483DE7DAF06AE86BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa Signing time: Tue 05 Aug 2025 00:31:34 +0000 ROA not before: Tue 05 Aug 2025 00:31:34 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.163.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:52:1d:d7:b9:ed:c9:1b:e7:f6:2a:84:83:de:7d:af:06:ae:86:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:31:34 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=cb161bc35df9eccba3dc9808b79186a98fdea2da31afa406d4b047f2957b8d47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:34:7c:cd:3c:1a:75:4a:6d:9e:17:7f:c7:7d: 66:aa:4e:32:4d:66:f4:58:4d:6d:59:a5:0d:5e:5d: 7b:89:f3:c7:86:30:8b:21:7e:e1:e2:7a:41:4f:3f: 42:e8:d2:67:7b:f1:08:c0:41:de:e4:23:74:07:c1: 66:b0:3b:1c:a8:41:32:b0:dc:31:e7:ee:2f:81:48: 17:41:ac:59:4b:b4:ee:05:2b:d8:73:e3:56:38:87: 3a:95:ab:5f:98:58:02:a6:eb:34:ef:fa:9e:2c:74: 66:3d:b3:52:81:c8:80:3f:10:6a:ee:ee:65:ea:b2: ac:5d:ad:e0:2c:d4:f8:60:29:fe:c3:ff:8e:8e:02: 33:db:96:36:20:a7:ba:35:27:56:f6:f8:aa:f8:fb: 17:d1:32:be:44:52:5d:eb:7a:49:2f:4f:cc:6e:65: 21:1a:cc:71:6c:cf:ef:2e:61:a6:a7:53:66:c5:48: 9d:51:0b:9b:8e:da:de:d8:09:ee:24:ce:97:d8:69: 3d:c9:c8:de:8f:c7:58:80:01:62:e5:71:71:7f:02: 43:5e:02:61:40:09:57:0c:31:92:ca:2f:cc:54:64: 51:7f:e2:61:5d:7a:24:34:bd:17:58:c4:0e:8a:ef: bf:56:66:5f:32:f6:cd:af:3f:cf:3d:31:ba:83:3f: 42:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:27:45:54:29:AE:F4:B2:C5:95:51:52:CE:59:6C:0D:34:9C:30:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.163.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:f3:1c:82:31:7a:09:59:bb:76:3b:56:fd:08:7c:4b:52:bc: a8:9a:b9:b8:cc:37:8c:74:4b:4d:5a:0a:f0:c1:b8:d9:a5:98: ba:44:a5:8e:a4:e3:d4:66:d0:5d:14:3b:b1:d6:ca:5e:e4:02: cd:a9:a0:d4:0d:15:3c:15:28:2f:00:bf:1e:5c:ea:20:8b:48: 23:88:2d:d0:d5:46:f4:d1:ef:02:4f:4b:3d:f4:1e:ba:42:77: 43:90:90:d9:3b:e5:cd:27:17:8e:29:f4:11:27:b3:55:15:47: 4f:07:4e:2d:e9:91:7a:18:1e:b0:a3:a9:78:50:85:94:95:c2: 97:9d:55:82:6d:11:a9:70:f7:9c:ba:ee:4a:c0:51:5a:ee:99: 15:1e:31:54:50:6d:ca:a5:e6:1a:8d:7b:17:4e:50:b1:1f:ee: c7:20:a4:62:96:c4:20:67:fe:ec:e4:c7:98:ea:95:61:9f:6a: 5d:53:df:c6:1e:12:cf:a7:35:a4:65:43:bd:07:69:22:61:f8: 73:2f:c7:a6:e5:cd:c3:ce:f9:9a:a5:50:af:76:b0:27:a9:ac: 92:e0:e8:12:58:8f:a5:f0:af:37:08:b8:96:4e:a0:aa:0f:7e: 9b:9e:d0:1e:c5:8b:74:16:3b:1f:d5:9e:fb:1a:9b:6d:99:cc: 52:c7:6f:27 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHVId17ntyRvn9iqEg959rwauhrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMTM0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjE2MWJjMzVkZjllY2NiYTNkYzk4MDhiNzkxODZhOThm ZGVhMmRhMzFhZmE0MDZkNGIwNDdmMjk1N2I4ZDQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvNHzNPBp1Sm2eF3/HfWaqTjJNZvRYTW1ZpQ1eXXuJ88eG MIshfuHiekFPP0Lo0md78QjAQd7kI3QHwWawOxyoQTKw3DHn7i+BSBdBrFlLtO4F K9hz41Y4hzqVq1+YWAKm6zTv+p4sdGY9s1KByIA/EGru7mXqsqxdreAs1PhgKf7D /46OAjPbljYgp7o1J1b2+Kr4+xfRMr5EUl3rekkvT8xuZSEazHFsz+8uYaanU2bF SJ1RC5uO2t7YCe4kzpfYaT3JyN6Px1iAAWLlcXF/AkNeAmFACVcMMZLKL8xUZFF/ 4mFdeiQ0vRdYxA6K779WZl8y9s2vP889MbqDP0LFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPidFVCmu9LLFlVFSzllsDTScMOAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTI4ODYxLWVlOGUtNDRkOS1iMzYzLTMwYTFmMDRlMTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ozANBgkqhkiG9w0BAQsFAAOCAQEAG/McgjF6CVm7djtW/Qh8S1K8qJq5 uMw3jHRLTVoK8MG42aWYukSljqTj1GbQXRQ7sdbKXuQCzamg1A0VPBUoLwC/Hlzq IItII4gt0NVG9NHvAk9LPfQeukJ3Q5CQ2TvlzScXjin0ESezVRVHTwdOLemRehge sKOpeFCFlJXCl51Vgm0RqXD3nLruSsBRWu6ZFR4xVFBtyqXmGo17F05QsR/uxyCk YpbEIGf+7OTHmOqVYZ9qXVPfxh4Sz6c1pGVDvQdpImH4cy/HpuXNw875mqVQr3aw J6mskuDoEliPpfCvNwi4lk6gqg9+m57QHsWLdBY7H9We+xqbbZnMUsdvJw== -----END CERTIFICATE-----Generated at Wed Aug 6 16:19:06 2025 by rpki-client