$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa File: ee072b22-d511-4e36-bf63-9dea3fed9955.roa (raw, json) Hash identifier: G7t503VaYRCJ46O09SeXYdKq/8QHp7ksfHACtliYvd0= Subject key identifier: 3D:6F:36:06:43:CF:F1:E2:FE:C8:F3:47:20:32:52:C0:E2:E3:60:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37F8EED21D02578821558EA497FFE3998292DBF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa Signing time: Wed 06 Aug 2025 00:31:45 +0000 ROA not before: Wed 06 Aug 2025 00:31:45 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:f8:ee:d2:1d:02:57:88:21:55:8e:a4:97:ff:e3:99:82:92:db:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:31:45 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=6f0eb38187506d4c3144ae95a9dbde588742c1ba383128cb7aa1c88be0bf9cf1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:05:67:ec:1f:b5:83:c8:14:87:28:f0:33:27: cd:0d:31:be:ea:fe:be:6b:ea:05:2e:07:24:90:a3: 6c:a8:da:f1:10:74:e8:86:7a:7e:19:af:fe:99:ca: 5a:6f:31:3d:8a:f7:69:18:8b:90:cb:ea:2a:d1:85: 48:22:61:79:1a:e0:a4:7a:81:5e:49:47:ab:b0:f4: fa:9c:61:5c:dc:8f:f1:68:ce:cd:bf:9f:9e:ff:1e: 5e:54:5a:bb:e3:70:c3:a8:09:ec:80:ca:83:3c:73: 65:f5:89:a2:4d:5f:42:e6:cb:18:fd:4a:90:7e:7b: b1:79:3e:a9:af:aa:a5:6e:ca:d9:a4:d2:d2:bd:b1: 2b:87:aa:af:f8:3f:ef:d8:a7:f7:79:12:1a:27:a1: b3:5f:06:20:aa:72:d1:d1:66:7f:2d:0a:bf:c5:4b: 14:e8:4a:d1:f7:fa:49:b7:43:c4:bc:7e:89:92:a6: 19:79:70:f3:19:da:60:ce:63:75:51:9d:43:d9:35: 72:27:45:0d:5e:ea:b3:3f:d1:ba:d7:5c:9d:58:09: 26:d0:ca:5a:3c:af:7c:29:48:de:74:3e:a9:e2:c2: 5b:32:55:ba:55:ac:3e:e2:a0:07:97:ef:94:42:e2: 2e:da:40:fd:23:57:aa:f9:d3:05:58:2c:08:2a:cb: 89:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6F:36:06:43:CF:F1:E2:FE:C8:F3:47:20:32:52:C0:E2:E3:60:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9e:2c:62:d9:8a:2e:2a:60:98:4d:28:fd:ad:61:a6:ff:27:31: 4f:5c:9f:e6:af:5e:63:86:71:2c:66:40:33:e7:5f:c2:7c:a5: ee:25:c6:32:9d:e7:5c:8e:30:4f:3d:84:0f:21:69:c8:51:b4: 6b:25:99:1c:72:d1:f9:d4:eb:8d:c9:d2:59:ec:db:1d:f3:47: bb:9b:7f:30:73:ac:9c:51:3e:a7:2a:03:33:f4:64:32:1e:eb: 3b:84:a4:f8:de:af:57:f7:78:66:2b:9d:5f:a3:70:82:29:5c: 70:04:d7:0b:4a:23:16:60:da:0f:38:65:b6:a2:2d:0e:82:1f: fe:fc:65:eb:bc:6b:d5:17:f1:fe:35:25:e0:fb:5c:41:50:1a: 8c:ba:5d:94:a0:0f:18:51:25:b7:e4:2c:1a:c2:28:bb:41:60: 57:8b:dd:d0:3a:73:73:77:9f:7b:ea:01:a3:1d:b1:c9:80:4d: ef:64:82:8f:14:e9:e4:54:54:fc:37:f6:1a:e6:79:e1:6e:a3: 76:67:92:5f:8b:e7:3a:b1:06:cd:00:4a:3a:bf:7a:e5:13:72: 12:5f:ca:ae:6b:e0:a1:cd:83:4c:3e:cd:76:8f:00:86:23:cb: 36:8b:9d:b9:ad:1e:7b:ba:52:5b:c0:51:e8:99:e1:10:53:c7: 53:5d:a0:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN/ju0h0CV4ghVY6kl//jmYKS2/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAzMTQ1WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjBlYjM4MTg3NTA2ZDRjMzE0NGFlOTVhOWRiZGU1ODg3 NDJjMWJhMzgzMTI4Y2I3YWExYzg4YmUwYmY5Y2YxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4BWfsH7WDyBSHKPAzJ80NMb7q/r5r6gUuBySQo2yo2vEQ dOiGen4Zr/6ZylpvMT2K92kYi5DL6irRhUgiYXka4KR6gV5JR6uw9PqcYVzcj/Fo zs2/n57/Hl5UWrvjcMOoCeyAyoM8c2X1iaJNX0Lmyxj9SpB+e7F5PqmvqqVuytmk 0tK9sSuHqq/4P+/Yp/d5EhonobNfBiCqctHRZn8tCr/FSxToStH3+km3Q8S8fomS phl5cPMZ2mDOY3VRnUPZNXInRQ1e6rM/0brXXJ1YCSbQylo8r3wpSN50Pqniwlsy VbpVrD7ioAeX75RC4i7aQP0jV6r50wVYLAgqy4kvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPW82BkPP8eL+yPNHIDJSwOLjYPcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMDcyYjIyLWQ1MTEtNGUzNi1iZjYzLTlkZWEzZmVkOTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KDANBgkqhkiG9w0BAQsFAAOCAQEAnixi2YouKmCYTSj9rWGm/ycxT1yf 5q9eY4ZxLGZAM+dfwnyl7iXGMp3nXI4wTz2EDyFpyFG0ayWZHHLR+dTrjcnSWezb HfNHu5t/MHOsnFE+pyoDM/RkMh7rO4Sk+N6vV/d4ZiudX6NwgilccATXC0ojFmDa DzhltqItDoIf/vxl67xr1Rfx/jUl4PtcQVAajLpdlKAPGFElt+QsGsIou0FgV4vd 0Dpzc3efe+oBox2xyYBN72SCjxTp5FRU/Df2GuZ54W6jdmeSX4vnOrEGzQBKOr96 5RNyEl/Krmvgoc2DTD7Ndo8AhiPLNoudua0ee7pSW8BR6JnhEFPHU12gmA== -----END CERTIFICATE-----Generated at Wed Aug 6 13:09:59 2025 by rpki-client