$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa File: cd040691-6f04-4613-a81f-f5417500cc0b.roa (raw, json) Hash identifier: ov1QKXBjFUD/Ymzm2WwZgJAWZTe7G/KMWGbGzbhvkr8= Subject key identifier: DB:FB:9B:BF:CC:89:EF:FA:E1:54:09:C4:D9:58:33:C7:C3:F6:3E:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31662FB4DDA8F8CA442DAD385B7DA2689F702DF7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa Signing time: Sat 14 Jun 2025 00:51:52 +0000 ROA not before: Sat 14 Jun 2025 00:51:52 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.128.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:66:2f:b4:dd:a8:f8:ca:44:2d:ad:38:5b:7d:a2:68:9f:70:2d:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:51:52 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=b8184c7c665f2c3064f9df5b8ebec177ad51f834c0ad696b8157acc66ab93d2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:85:83:e6:67:02:e5:b1:50:f3:cc:5c:31:63: c8:c0:31:22:1a:25:cf:cc:7f:48:f0:aa:67:ee:a8: b7:ba:65:60:6f:62:b1:e0:28:ad:da:5f:f9:c9:41: 57:27:6a:6b:6e:17:23:55:0b:fd:85:a0:96:d4:6f: 8c:ab:fd:76:f6:f9:c5:b8:4c:21:2f:7d:33:99:4a: 80:ac:d7:80:28:18:ce:a1:83:f2:64:8d:ee:30:bb: 35:39:4b:29:e7:0d:02:ca:58:4a:78:70:b0:02:aa: ee:1e:a7:41:b5:5c:8c:8e:53:c2:48:a7:9e:74:5f: 38:0e:64:b0:fe:d7:18:4c:dc:f2:54:11:21:70:b2: 87:f8:46:a4:1d:5d:ac:d5:97:32:2f:d7:19:05:70: 75:fa:c0:b5:a8:a8:44:2e:50:dc:c2:14:1c:3e:2a: 85:c4:34:1f:ae:d1:49:4f:73:b6:c0:4b:cb:37:8e: e8:da:1f:c0:bd:8b:1d:8e:42:3c:11:dc:3e:99:73: f8:c8:b9:b9:b6:27:82:88:2b:72:b9:f9:3d:fe:b8: d1:66:1c:50:dd:62:b8:14:46:4e:b0:17:99:b6:af: 7a:e7:59:e5:17:5f:45:ae:31:d6:90:44:4a:8b:cf: 0b:df:06:21:11:f6:08:65:05:a0:ad:5d:0c:72:80: 8f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FB:9B:BF:CC:89:EF:FA:E1:54:09:C4:D9:58:33:C7:C3:F6:3E:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.128.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6c:04:19:aa:e2:23:96:81:99:99:69:5c:b7:76:ea:93:f4:74: 28:57:92:41:14:ed:87:0c:5e:09:33:c8:32:c3:bf:f6:f9:db: 61:00:1b:5c:13:f3:da:65:16:a6:78:2c:b7:49:82:79:e9:df: 39:84:d0:ba:9f:27:d0:ef:b4:1e:6e:eb:78:95:1f:71:90:b6: ad:22:ab:21:c6:b8:bd:04:42:65:0f:6b:d3:10:53:63:35:8d: 11:5f:20:73:e7:07:83:dd:6f:99:e1:f3:4b:cf:6b:90:23:0e: b5:0d:8a:05:f7:f2:c9:5b:d0:88:9f:5d:a5:be:42:5b:cc:8d: 6b:00:c9:34:2b:2f:9f:b4:ea:7b:66:66:9b:2d:07:84:5e:e1: d1:b7:63:9a:7c:ef:3a:2e:e9:e0:23:1b:98:c6:f9:48:3c:9e: 48:4c:7b:24:a8:d8:01:9c:ea:61:32:19:2d:d8:9a:f8:92:ba: b5:60:f6:05:d5:3b:90:cc:31:3d:83:dc:19:e7:1d:f3:98:71: 50:83:a2:d7:13:7a:45:dd:ab:41:0a:a3:e8:20:2b:bc:03:cc: f5:35:44:5c:60:7d:47:01:5b:ec:98:d3:35:db:01:0c:e7:4e: c6:ca:dc:1b:e6:70:05:9d:fe:42:4e:0f:72:00:7d:19:1d:03: 25:ad:52:a6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMWYvtN2o+MpELa04W32iaJ9wLfcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MTUyWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODE4NGM3YzY2NWYyYzMwNjRmOWRmNWI4ZWJlYzE3N2Fk NTFmODM0YzBhZDY5NmI4MTU3YWNjNjZhYjkzZDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1hYPmZwLlsVDzzFwxY8jAMSIaJc/Mf0jwqmfuqLe6ZWBv YrHgKK3aX/nJQVcnamtuFyNVC/2FoJbUb4yr/Xb2+cW4TCEvfTOZSoCs14AoGM6h g/Jkje4wuzU5SynnDQLKWEp4cLACqu4ep0G1XIyOU8JIp550XzgOZLD+1xhM3PJU ESFwsof4RqQdXazVlzIv1xkFcHX6wLWoqEQuUNzCFBw+KoXENB+u0UlPc7bAS8s3 jujaH8C9ix2OQjwR3D6Zc/jIubm2J4KIK3K5+T3+uNFmHFDdYrgURk6wF5m2r3rn WeUXX0WuMdaQREqLzwvfBiER9ghlBaCtXQxygI99AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2/ubv8yJ7/rhVAnE2Vgzx8P2PhQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkMDQwNjkxLTZmMDQtNDYxMy1hODFmLWY1NDE3NTAwY2MwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4gDANBgkqhkiG9w0BAQsFAAOCAQEAbAQZquIjloGZmWlct3bqk/R0KFeS QRTthwxeCTPIMsO/9vnbYQAbXBPz2mUWpngst0mCeenfOYTQup8n0O+0Hm7reJUf cZC2rSKrIca4vQRCZQ9r0xBTYzWNEV8gc+cHg91vmeHzS89rkCMOtQ2KBffyyVvQ iJ9dpb5CW8yNawDJNCsvn7Tqe2Zmmy0HhF7h0bdjmnzvOi7p4CMbmMb5SDyeSEx7 JKjYAZzqYTIZLdia+JK6tWD2BdU7kMwxPYPcGecd85hxUIOi1xN6Rd2rQQqj6CAr vAPM9TVEXGB9RwFb7JjTNdsBDOdOxsrcG+ZwBZ3+Qk4PcgB9GR0DJa1Spg== -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:49 2025 by rpki-client