$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa File: 0289d084-7f33-4bbc-baa0-e777f631c75e.roa (raw, json) Hash identifier: /orYr9Q68VvWQXiLlF0pAb/IRpKGNxAagfMk6pDT2zo= Subject key identifier: 1A:59:3E:E7:EB:0A:43:43:A3:EA:90:AD:A2:AA:74:10:DC:FD:57:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D54D495D08FF6EC2BA3212D8B61BC433874F794 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa Signing time: Tue 19 Aug 2025 00:21:08 +0000 ROA not before: Tue 19 Aug 2025 00:21:08 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:54:d4:95:d0:8f:f6:ec:2b:a3:21:2d:8b:61:bc:43:38:74:f7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:21:08 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=2aaa29180acab6f6124c282fa2648e8a4d0c35e43e2af213164e80260c49170c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7d:1d:67:88:b7:54:93:81:b0:97:2c:45:4d: db:96:c0:e9:8e:2d:22:2f:ac:ec:c5:0a:ac:53:57: 7c:d5:88:ba:49:c3:64:d0:02:74:00:68:8a:02:b8: 50:ea:8d:e4:ba:15:2b:4c:c7:dd:ad:38:17:02:76: 0a:45:ff:70:e6:d8:e1:1c:b2:a0:7a:e6:28:47:f2: 84:d4:9b:95:43:83:c9:9d:0b:8a:38:58:f4:38:f3: 02:b1:45:01:e6:af:c6:67:e3:49:ff:78:20:28:3c: f1:5d:83:90:a6:6f:94:82:5f:28:a3:23:ff:40:cb: 98:7e:16:4e:dd:cc:06:f9:a7:4c:cc:1e:e8:ff:aa: 59:f9:ff:fa:5f:fa:65:a4:68:25:e6:d2:b3:b9:f9: ff:45:20:0c:47:a3:77:fa:15:1f:1d:d1:89:43:41: a0:b6:27:ca:19:66:36:5b:70:6a:ad:ea:e2:91:57: e3:06:22:da:cd:a1:f1:db:88:a5:92:15:da:80:41: dc:4e:b6:5c:9e:b0:ae:d9:d1:54:f7:01:75:59:bf: 1f:4f:26:b2:62:6f:6e:d2:9f:cb:32:4b:72:90:9e: 8d:2c:fc:93:33:12:6c:0f:65:d7:61:6b:76:be:5a: 48:7e:3e:33:00:13:bf:cf:fe:a9:c4:d4:da:d1:54: 9a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:59:3E:E7:EB:0A:43:43:A3:EA:90:AD:A2:AA:74:10:DC:FD:57:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption d3:74:bf:90:ac:f5:53:e1:90:0d:93:59:c2:08:85:81:47:66: 6f:d0:fa:17:ca:dd:5c:97:ea:53:7d:56:2c:07:dd:3a:7f:2b: 8d:bb:84:08:89:cd:a5:7f:b5:49:9d:44:9c:9a:93:69:01:47: f1:f7:6b:5c:38:79:4a:68:04:85:76:54:6b:19:b3:de:23:7f: ea:15:e5:7b:c2:b5:5f:3a:d4:8a:ad:d2:3a:4e:ff:cb:c7:a7: 07:0b:da:1e:4b:c7:6e:fe:f7:fb:5c:6c:be:10:bb:d9:79:74: fd:33:2c:9d:d0:8e:63:d4:c6:76:e4:c7:7d:cb:a4:26:01:b9: 87:03:16:88:20:d2:59:d6:eb:8e:a9:9d:43:58:14:55:93:5d: ca:80:be:3e:72:e9:ff:c2:4c:a9:aa:92:72:c4:f8:d0:df:fa: 8e:35:d0:c8:3e:8b:ac:b0:4f:51:ee:26:31:4d:06:f8:55:87: 17:b3:32:71:0e:fa:61:1c:6e:9c:d1:4e:e5:2c:5f:2c:ed:f2: 4f:28:a3:3a:31:4c:08:b2:58:98:69:68:b9:3c:8d:63:2a:1a: 18:40:7e:44:c4:63:36:d7:dc:96:22:80:96:c6:ab:8e:7e:d7: 25:c7:b6:3e:a3:63:73:bd:6b:9d:95:aa:36:00:81:bc:ae:67: 0b:58:65:cc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDVTUldCP9uwroyEti2G8Qzh095QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAyMTA4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWFhMjkxODBhY2FiNmY2MTI0YzI4MmZhMjY0OGU4YTRk MGMzNWU0M2UyYWYyMTMxNjRlODAyNjBjNDkxNzBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnfR1niLdUk4GwlyxFTduWwOmOLSIvrOzFCqxTV3zViLpJ w2TQAnQAaIoCuFDqjeS6FStMx92tOBcCdgpF/3Dm2OEcsqB65ihH8oTUm5VDg8md C4o4WPQ48wKxRQHmr8Zn40n/eCAoPPFdg5Cmb5SCXyijI/9Ay5h+Fk7dzAb5p0zM Huj/qln5//pf+mWkaCXm0rO5+f9FIAxHo3f6FR8d0YlDQaC2J8oZZjZbcGqt6uKR V+MGItrNofHbiKWSFdqAQdxOtlyesK7Z0VT3AXVZvx9PJrJib27Sn8syS3KQno0s /JMzEmwPZddha3a+Wkh+PjMAE7/P/qnE1NrRVJoJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGlk+5+sKQ0Oj6pCtoqp0ENz9V60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyODlkMDg0LTdmMzMtNGJiYy1iYWEwLWU3NzdmNjMxYzc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4CTANBgkqhkiG9w0BAQsFAAOCAQEA03S/kKz1U+GQDZNZwgiFgUdmb9D6 F8rdXJfqU31WLAfdOn8rjbuECInNpX+1SZ1EnJqTaQFH8fdrXDh5SmgEhXZUaxmz 3iN/6hXle8K1XzrUiq3SOk7/y8enBwvaHkvHbv73+1xsvhC72Xl0/TMsndCOY9TG duTHfcukJgG5hwMWiCDSWdbrjqmdQ1gUVZNdyoC+PnLp/8JMqaqScsT40N/6jjXQ yD6LrLBPUe4mMU0G+FWHF7MycQ76YRxunNFO5SxfLO3yTyijOjFMCLJYmGlouTyN YyoaGEB+RMRjNtfcliKAlsarjn7XJce2PqNjc71rnZWqNgCBvK5nC1hlzA== -----END CERTIFICATE-----Generated at Sat Aug 23 10:30:27 2025 by rpki-client