$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa File: f8f69e0f-af75-4a08-9d97-31505d87d67d.roa (raw, json) Hash identifier: 2t9C6Lnsl31opWq8cgiNW926Nt23ZBFS3co2PL40bPI= Subject key identifier: D9:8A:21:E0:D7:A4:78:FC:26:FC:B2:89:85:2C:1E:51:2F:4C:64:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2543239017934E135E9171633C77B01C41A4193F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa Signing time: Tue 05 Aug 2025 00:30:57 +0000 ROA not before: Tue 05 Aug 2025 00:30:57 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:43:23:90:17:93:4e:13:5e:91:71:63:3c:77:b0:1c:41:a4:19:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:30:57 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d7b9eb69a590e0cca4b51b2822ea09a6d575f68e806b4fb67c2389bc1937377a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:aa:c3:06:be:30:aa:4c:cb:f6:96:d4:2f: 8f:4e:e5:ee:b9:71:0d:ae:3e:01:a7:12:c7:2e:8b: 37:6b:fa:23:ca:59:c7:f9:7d:cf:7a:cb:80:a1:0f: b8:30:b8:f8:42:c1:84:3f:25:8c:a9:ba:a4:36:52: 0a:25:94:b1:e4:8c:0a:4a:cc:d4:ea:e7:72:16:7f: 2d:29:9b:51:da:fe:3d:2d:8b:d7:23:3b:0b:4b:bc: c8:01:d5:69:1b:d0:df:ef:c2:82:58:87:e2:33:97: b6:45:d7:7b:45:d1:b5:d6:50:24:56:cc:cb:d7:42: b6:f5:a0:fa:43:cc:35:f3:4f:1d:4d:2e:6e:31:bf: 95:be:78:a4:53:ef:69:fa:b3:95:eb:8a:be:5a:cc: 2f:9a:f3:a2:a5:c3:45:c5:b3:9a:94:02:09:d3:49: 41:27:95:4d:63:72:a6:ab:12:e7:9e:c5:9f:09:16: 4f:fe:eb:02:be:70:9d:b6:d6:d9:0f:0c:6a:08:29: 7a:9e:d7:d4:8f:6b:7b:68:bd:be:71:b9:93:2f:e7: 61:43:e3:29:6c:ca:61:f9:a1:e5:f5:37:23:09:ec: 80:14:b7:b2:9c:31:16:47:ec:4b:ca:f9:ba:22:67: b3:42:20:48:e5:43:c5:94:b0:80:d8:f6:bc:69:58: 95:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8A:21:E0:D7:A4:78:FC:26:FC:B2:89:85:2C:1E:51:2F:4C:64:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:f0:52:ce:db:46:11:70:1b:70:a8:64:1d:34:c7:4e:89:48: ca:da:f7:5d:9b:c0:10:96:4e:5d:5a:1e:95:76:39:ee:b8:35: c5:d9:24:79:bb:ba:37:ef:b5:8d:9d:8c:c2:99:b7:f3:08:51: 9d:70:45:5d:75:cf:a0:f1:66:16:2c:b6:8c:a2:f7:74:85:32: de:66:4a:9f:cd:a3:0a:28:35:a9:fa:06:87:ee:b8:70:11:ce: b1:ae:92:7b:ef:80:05:c3:de:b1:1e:9e:44:63:9e:52:93:f9: 32:8a:46:7c:a0:c6:6e:b6:91:f2:76:ec:db:0b:4b:5f:d5:47: 7a:63:73:50:54:43:74:20:a9:bc:1c:c1:af:9f:e4:e6:f7:85: fa:15:ba:18:13:13:1a:cf:4a:96:1f:20:5c:04:26:43:74:4a: a5:ab:3a:f7:70:e4:4e:42:b3:a3:55:15:78:7e:4a:d0:c0:3d: 94:3a:be:54:3a:67:12:4d:a9:12:ab:dc:a1:93:5b:2f:23:b0: 5a:64:de:69:1d:9d:26:2c:71:76:f2:13:05:70:a4:b5:ce:f0: 9a:50:03:02:43:38:e4:a4:64:b5:74:d0:2d:01:35:0d:c2:f1: 7d:f9:a4:82:6e:90:33:5a:bb:e0:05:e2:bf:0f:3a:d5:3f:2c: 5e:54:ac:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJUMjkBeTThNekXFjPHewHEGkGT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAzMDU3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2I5ZWI2OWE1OTBlMGNjYTRiNTFiMjgyMmVhMDlhNmQ1 NzVmNjhlODA2YjRmYjY3YzIzODliYzE5MzczNzdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzDarDBr4wqkzL9pbUL49O5e65cQ2uPgGnEscuizdr+iPK Wcf5fc96y4ChD7gwuPhCwYQ/JYypuqQ2UgollLHkjApKzNTq53IWfy0pm1Ha/j0t i9cjOwtLvMgB1Wkb0N/vwoJYh+Izl7ZF13tF0bXWUCRWzMvXQrb1oPpDzDXzTx1N Lm4xv5W+eKRT72n6s5Xrir5azC+a86Klw0XFs5qUAgnTSUEnlU1jcqarEueexZ8J Fk/+6wK+cJ221tkPDGoIKXqe19SPa3tovb5xuZMv52FD4ylsymH5oeX1NyMJ7IAU t7KcMRZH7EvK+boiZ7NCIEjlQ8WUsIDY9rxpWJXDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2Yoh4NekePwm/LKJhSweUS9MZC4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4ZjY5ZTBmLWFmNzUtNGEwOC05ZDk3LTMxNTA1ZDg3ZDY3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA47zANBgkqhkiG9w0BAQsFAAOCAQEAtPBSzttGEXAbcKhkHTTHTolIytr3 XZvAEJZOXVoelXY57rg1xdkkebu6N++1jZ2Mwpm38whRnXBFXXXPoPFmFiy2jKL3 dIUy3mZKn82jCig1qfoGh+64cBHOsa6Se++ABcPesR6eRGOeUpP5MopGfKDGbraR 8nbs2wtLX9VHemNzUFRDdCCpvBzBr5/k5veF+hW6GBMTGs9Klh8gXAQmQ3RKpas6 93DkTkKzo1UVeH5K0MA9lDq+VDpnEk2pEqvcoZNbLyOwWmTeaR2dJixxdvITBXCk tc7wmlADAkM45KRktXTQLQE1DcLxffmkgm6QM1q74AXivw861T8sXlSsFQ== -----END CERTIFICATE-----Generated at Wed Aug 6 09:38:06 2025 by rpki-client