$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa File: cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa (raw, json) Hash identifier: esoqWAhxD9OeZJAqlOY34sfGkHsPgcy1/tKpFTmw9Xw= Subject key identifier: B7:2D:E7:39:20:F8:D9:A8:8D:DC:9D:58:10:5C:39:C5:01:CF:8A:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 303C6E39CEA6976622B9776E6400CC293A6315CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa Signing time: Tue 05 Aug 2025 00:40:21 +0000 ROA not before: Tue 05 Aug 2025 00:40:21 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:3c:6e:39:ce:a6:97:66:22:b9:77:6e:64:00:cc:29:3a:63:15:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:40:21 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c582aa68294b7bf22bd65fbff39552cfa17cebe5a4723afdbaef79573ef4fd6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:78:a1:5a:a9:3c:c4:3e:3d:b5:56:3b:52:8f: 78:e3:b5:c4:6b:26:ec:05:9a:3d:d8:c6:da:63:1b: a2:9b:bf:0b:5b:16:41:42:2e:e2:8d:07:8e:6a:bf: 60:d7:d8:6f:c0:f3:f0:92:c2:f3:b9:89:91:49:4b: 4d:5f:5d:93:b6:0d:b5:76:bf:a8:f5:72:22:ad:97: bd:59:e4:5a:cb:b3:9e:c1:df:fa:92:90:35:90:5b: 34:75:33:c6:c3:c3:55:6e:7e:67:b6:70:fc:4c:70: ed:77:a3:fa:08:9c:f0:0c:f3:e2:5a:b6:f2:f4:60: ac:b7:9d:47:aa:ab:93:cf:d7:a8:08:1b:4f:b3:fd: 3d:a0:4a:1b:d2:68:37:7a:22:ec:1f:b9:b1:b2:54: 6e:d5:21:a0:77:9c:77:6b:89:3c:f9:42:d3:e9:93: 0f:ef:aa:09:d8:b9:bc:7e:b5:1e:37:f3:cd:05:ee: 8b:10:80:22:dd:94:85:f2:d9:f9:0b:b8:20:8a:91: ac:01:80:5f:c0:ee:24:43:b8:73:ae:c6:b3:03:ab: 31:1f:4f:82:ad:67:14:89:5f:1c:de:f4:ff:8c:0b: 83:38:e1:f7:0f:77:15:da:c2:1f:5e:c0:9d:3c:bf: e1:bc:51:eb:79:27:6b:6a:30:93:7b:30:fa:9d:a6: 60:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2D:E7:39:20:F8:D9:A8:8D:DC:9D:58:10:5C:39:C5:01:CF:8A:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:32:b8:e5:0c:41:18:4a:a2:bb:54:4c:0f:ec:c8:2c:88:10: 61:37:5e:db:5e:17:ec:c6:11:d3:12:ca:09:1e:e5:1c:4c:9c: 5c:c4:a6:ad:e7:e9:e7:c8:56:14:57:ec:7e:6d:d2:a5:64:39: ff:a8:66:27:0f:ad:89:03:45:76:65:b0:84:e7:ea:8f:b0:40: 85:3e:1c:5e:a9:98:e1:f1:17:a8:0b:24:96:c5:64:3d:5b:b1: ee:b0:75:59:2b:da:75:d3:37:89:e8:29:5c:08:39:b8:7d:38: 62:b2:8d:fc:9a:4c:9a:58:dd:fb:b2:85:cb:f3:8f:b9:86:a3: cc:51:3d:06:9d:52:d6:8e:9d:e5:dd:a6:2e:64:a0:ed:cd:94: 55:21:84:69:98:ff:eb:ab:1a:54:46:2a:8c:88:58:1a:55:3b: 20:bd:5c:63:11:45:ad:ee:1d:23:07:42:0d:0a:70:99:b9:c3: 73:05:58:ab:9c:18:8d:ce:f6:47:14:bd:6c:09:46:1a:46:aa: 57:d3:eb:4c:2d:71:68:9d:e5:9f:71:18:d9:32:3a:44:18:55: f3:16:cc:b0:bb:67:f5:6b:db:c1:db:59:d7:6b:32:20:28:26: ae:c4:bf:03:ac:1c:bd:21:b0:ec:f3:bd:a7:ce:bc:c5:a7:ad: 19:3f:4f:eb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMDxuOc6ml2YiuXduZADMKTpjFc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MDIxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTgyYWE2ODI5NGI3YmYyMmJkNjVmYmZmMzk1NTJjZmEx N2NlYmU1YTQ3MjNhZmRiYWVmNzk1NzNlZjRmZDZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCweKFaqTzEPj21VjtSj3jjtcRrJuwFmj3YxtpjG6Kbvwtb FkFCLuKNB45qv2DX2G/A8/CSwvO5iZFJS01fXZO2DbV2v6j1ciKtl71Z5FrLs57B 3/qSkDWQWzR1M8bDw1Vufme2cPxMcO13o/oInPAM8+JatvL0YKy3nUeqq5PP16gI G0+z/T2gShvSaDd6IuwfubGyVG7VIaB3nHdriTz5QtPpkw/vqgnYubx+tR43880F 7osQgCLdlIXy2fkLuCCKkawBgF/A7iRDuHOuxrMDqzEfT4KtZxSJXxze9P+MC4M4 4fcPdxXawh9ewJ08v+G8Uet5J2tqMJN7MPqdpmD5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUty3nOSD42aiN3J1YEFw5xQHPir4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNDg1ODRkLTE5ZTgtNDhjNS1iZDE1LThhMzNiOWRjNmQ0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4STANBgkqhkiG9w0BAQsFAAOCAQEANTK45QxBGEqiu1RMD+zILIgQYTde 214X7MYR0xLKCR7lHEycXMSmrefp58hWFFfsfm3SpWQ5/6hmJw+tiQNFdmWwhOfq j7BAhT4cXqmY4fEXqAsklsVkPVux7rB1WSvaddM3iegpXAg5uH04YrKN/JpMmljd +7KFy/OPuYajzFE9Bp1S1o6d5d2mLmSg7c2UVSGEaZj/66saVEYqjIhYGlU7IL1c YxFFre4dIwdCDQpwmbnDcwVYq5wYjc72RxS9bAlGGkaqV9PrTC1xaJ3ln3EY2TI6 RBhV8xbMsLtn9WvbwdtZ12syICgmrsS/A6wcvSGw7PO9p868xaetGT9P6w== -----END CERTIFICATE-----Generated at Wed Aug 6 05:21:30 2025 by rpki-client