$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0a77f14-a38d-4604-b636-1ee34be2637a.roa File: d0a77f14-a38d-4604-b636-1ee34be2637a.roa (raw, json) Hash identifier: 788x/CYM9jIrFLGqJFXfuWkEwZiD6u6tGWtuMGn+1vk= Subject key identifier: B9:1C:B0:EE:49:4D:6D:A8:E4:0E:A1:19:57:3E:36:79:85:FB:AF:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DA493716E400579ECDB234CA6737EDDF915C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0a77f14-a38d-4604-b636-1ee34be2637a.roa Signing time: Fri 25 Jul 2025 00:10:32 +0000 ROA not before: Fri 25 Jul 2025 00:10:32 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.10.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a4:93:71:6e:40:05:79:ec:db:23:4c:a6:73:7e:dd:f9:15:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:10:32 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=716431886651166f08b0c9a134f6b0191e8f333bb36a6b4927fdd4dc1c0071d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:81:e5:0f:56:57:91:17:9d:a4:14:01:8a:f7: 40:70:3f:5e:2b:c3:b8:cd:ca:c6:82:33:93:40:ac: a9:8e:42:13:af:9f:39:03:e6:ed:ed:46:cd:f9:e6: eb:ba:5e:c4:58:b2:3e:82:d3:a7:0a:28:08:3c:91: 2c:71:ea:05:1f:1e:88:93:b3:eb:30:2a:af:58:e8: 90:4b:07:10:31:2f:14:0a:ab:1f:5b:1a:41:58:5f: f7:29:54:5d:97:ee:7b:df:e1:c8:18:2b:90:a9:20: 98:72:4d:cb:87:9e:b8:de:6c:4e:59:87:38:3d:3b: 79:f8:db:1e:49:27:e1:3c:b2:aa:3c:31:f1:46:11: 3e:21:e8:a8:39:82:8b:10:3c:a9:81:20:86:a6:e6: 20:ae:52:0c:bb:ef:99:1d:f0:33:5b:82:79:6f:81: 1c:bd:67:91:bd:ce:44:f4:fe:e6:dc:ce:04:87:49: 04:31:4b:b5:ff:3b:79:b1:76:f7:fc:12:ed:50:da: e4:ae:36:cb:25:b8:b3:1c:48:da:de:94:c3:d7:cd: 64:5f:06:4b:26:f3:27:df:89:63:64:1b:ae:ac:fd: 91:e4:11:73:a1:4f:63:94:65:53:9d:25:b9:e6:38: 83:da:bd:4f:ff:bf:b3:86:00:06:f2:b5:46:ea:46: 3d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1C:B0:EE:49:4D:6D:A8:E4:0E:A1:19:57:3E:36:79:85:FB:AF:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0a77f14-a38d-4604-b636-1ee34be2637a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.10.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:58:20:0b:cf:45:4c:6d:f2:c6:9e:17:17:5c:a7:48:42:0b: 95:51:fd:bc:81:36:31:9c:0b:aa:6d:db:97:52:20:2f:71:46: d9:f2:f5:42:94:76:ad:02:d8:e1:93:3c:7f:49:ac:8e:18:e3: 68:19:4f:c5:eb:8e:ca:f3:a5:f5:8a:4b:40:cd:6d:4f:28:32: 55:d1:3f:52:cf:ef:75:9d:d0:e7:af:bd:1b:76:fb:4a:df:f8: 0a:f5:d3:61:f4:fb:86:e5:d9:ff:9f:4f:5d:d7:c6:48:e2:d3: 80:92:1a:d6:8c:a3:44:76:c5:6c:9f:d9:d8:f9:72:83:29:83: 56:14:61:7d:0c:fb:12:3a:ae:81:15:25:26:1e:5d:16:83:f8: fa:df:78:d7:5f:a3:aa:19:c6:b2:6f:33:a4:c0:b8:b4:98:b0: ff:f4:fc:ca:f8:b6:f3:54:c1:94:24:e7:d8:3b:0b:29:97:71: b0:b7:26:91:48:96:ce:97:f8:06:2e:43:09:fb:98:1f:0d:d0: 83:4d:cd:f2:57:a4:bd:9e:86:6b:40:44:01:a3:72:f9:75:21: 62:3d:d0:5b:2b:69:df:db:27:c5:d1:be:38:cb:57:27:4c:08: ba:5c:eb:e9:57:dd:9a:df:9b:cc:3b:3c:30:b5:d6:7a:12:c6: 28:f3:1b:f8 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITfaSTcW5ABXns2yNMpnN+3fkVwTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA3MjUwMDEwMzJaFw0yNTA4MjkyMzU5NTla MHoxSTBHBgNVBAUTQDcxNjQzMTg4NjY1MTE2NmYwOGIwYzlhMTM0ZjZiMDE5MWU4 ZjMzM2JiMzZhNmI0OTI3ZmRkNGRjMWMwMDcxZDAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJ6B5Q9WV5EXnaQUAYr3QHA/XivDuM3KxoIzk0CsqY5CE6+f OQPm7e1Gzfnm67pexFiyPoLTpwooCDyRLHHqBR8eiJOz6zAqr1jokEsHEDEvFAqr H1saQVhf9ylUXZfue9/hyBgrkKkgmHJNy4eeuN5sTlmHOD07efjbHkkn4Tyyqjwx 8UYRPiHoqDmCixA8qYEghqbmIK5SDLvvmR3wM1uCeW+BHL1nkb3ORPT+5tzOBIdJ BDFLtf87ebF29/wS7VDa5K42yyW4sxxI2t6Uw9fNZF8GSybzJ9+JY2Qbrqz9keQR c6FPY5RlU50lueY4g9q9T/+/s4YABvK1RupGPa0CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBS5HLDuSU1tqOQOoRlXPjZ5hfuv0zAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZDBhNzdmMTQtYTM4ZC00NjA0LWI2MzYtMWVlMzRiZTI2MzdhLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDADgKMA0GCSqGSIb3DQEBCwUAA4IBAQB+WCALz0VMbfLGnhcXXKdIQguVUf28 gTYxnAuqbduXUiAvcUbZ8vVClHatAtjhkzx/SayOGONoGU/F647K86X1iktAzW1P KDJV0T9Sz+91ndDnr70bdvtK3/gK9dNh9PuG5dn/n09d18ZI4tOAkhrWjKNEdsVs n9nY+XKDKYNWFGF9DPsSOq6BFSUmHl0Wg/j633jXX6OqGcaybzOkwLi0mLD/9PzK +LbzVMGUJOfYOwspl3GwtyaRSJbOl/gGLkMJ+5gfDdCDTc3yV6S9noZrQEQBo3L5 dSFiPdBbK2nf2yfF0b44y1cnTAi6XOvpV92a35vMOzwwtdZ6EsYo8xv4 -----END CERTIFICATE-----Generated at Wed Aug 6 04:08:52 2025 by rpki-client