$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa File: 1165be7b-1545-4b66-8938-2321c07d5a67.roa (raw, json) Hash identifier: nELYRxQ3xEIqFyS+4WAhfZZoW3Wraq8zQHBRGD6RZFE= Subject key identifier: 79:1C:8E:25:85:A3:DC:A0:62:24:C6:E8:26:2A:64:E8:FF:49:6C:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FC86452DA10784F75A99FE385BAEF4B9BF3028E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa Signing time: Tue 19 Aug 2025 00:11:44 +0000 ROA not before: Tue 19 Aug 2025 00:11:44 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.247.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c8:64:52:da:10:78:4f:75:a9:9f:e3:85:ba:ef:4b:9b:f3:02:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:11:44 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=64020c6506f125a805a65c44fdfea99b3e0600d9403f3d30e69e643e5942ad47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b1:3e:2b:80:3f:e1:08:58:13:54:0a:50:8b: 2a:16:4a:16:58:8e:7c:8e:c0:8c:ed:44:d9:0e:80: 22:ae:5a:c0:8e:60:bd:9d:93:fd:b1:ae:0f:76:2e: f6:12:10:13:77:d6:d9:81:39:a7:0d:20:3f:a9:be: 22:5d:ed:82:d2:f8:9b:2e:08:14:46:3a:c3:27:99: ec:3f:bc:2d:1b:38:1b:3d:f2:1b:cd:1b:4d:20:87: e1:ff:e7:6d:7a:34:48:de:fa:e5:a6:23:d7:d2:6f: 4d:16:03:e0:35:69:12:32:9c:dc:9a:a3:b3:1f:a3: c7:dc:66:e1:25:f7:c9:54:0e:35:8a:ea:24:69:41: d7:86:0c:fc:cb:70:ac:ce:b3:b1:fa:bc:57:62:b0: 3c:08:97:60:15:aa:52:d1:52:7e:ce:95:57:01:5b: 72:89:a2:ff:e3:80:4a:73:18:94:16:a5:3b:d8:28: df:e9:78:8e:ed:c8:f3:b9:6b:15:dc:05:ab:c0:c3: d9:41:aa:77:1e:06:cf:cb:0d:74:0a:99:96:73:8b: 76:10:3b:4c:4c:03:0e:68:e7:8b:07:34:cd:a3:1c: 44:b1:11:95:e5:b8:88:12:b0:fa:61:0d:99:68:00: 9c:5c:5e:72:91:de:a8:e9:ac:08:30:d2:10:c6:d6: ef:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1C:8E:25:85:A3:DC:A0:62:24:C6:E8:26:2A:64:E8:FF:49:6C:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.247.0.0/16 Signature Algorithm: sha256WithRSAEncryption cc:e1:d2:25:d6:af:54:6d:60:91:25:d8:93:8c:ef:9a:29:5d: 74:c2:7b:30:68:78:ff:35:85:f7:5f:fd:49:38:ad:9d:4f:8c: ad:23:f1:c6:cb:d7:e6:d6:56:59:15:1d:72:5a:cc:8d:93:0f: 0e:06:f3:0f:d8:12:04:04:5f:40:78:ee:1a:8c:11:13:86:3b: 8a:58:da:b1:bd:fa:61:a9:d3:d9:d1:4a:77:1e:d9:a8:ef:9a: d2:3d:fc:9f:33:5f:7e:4c:f0:85:a7:3f:0e:67:fb:cf:7a:4e: 85:dd:ba:67:ae:c6:52:d6:bc:71:dd:8e:5b:18:4a:fa:47:12: 2c:81:72:41:4b:d9:ad:c3:df:90:ed:01:5b:03:87:1f:cc:d4: ea:de:e6:48:fc:9c:b1:c1:c5:4e:1c:89:90:11:a8:27:eb:47: 5a:77:a7:56:69:db:44:a2:a5:78:2f:3e:be:7f:f6:6c:b4:fc: 63:ea:3c:6a:a4:68:e7:ba:c9:0d:de:f2:ca:c5:39:ea:ec:d1: c3:6f:77:24:a7:cc:1e:48:39:1f:79:be:55:64:87:a8:1b:cb: 80:0c:a8:a1:53:a7:ed:ca:d2:31:3f:31:67:39:16:2d:33:27: 44:94:a9:69:a6:af:8f:7d:c2:f2:7c:d0:fa:6f:6e:24:2a:e1: 01:97:88:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf8hkUtoQeE91qZ/jhbrvS5vzAo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAxMTQ0WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDAyMGM2NTA2ZjEyNWE4MDVhNjVjNDRmZGZlYTk5YjNl MDYwMGQ5NDAzZjNkMzBlNjllNjQzZTU5NDJhZDQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0sT4rgD/hCFgTVApQiyoWShZYjnyOwIztRNkOgCKuWsCO YL2dk/2xrg92LvYSEBN31tmBOacNID+pviJd7YLS+JsuCBRGOsMnmew/vC0bOBs9 8hvNG00gh+H/5216NEje+uWmI9fSb00WA+A1aRIynNyao7Mfo8fcZuEl98lUDjWK 6iRpQdeGDPzLcKzOs7H6vFdisDwIl2AVqlLRUn7OlVcBW3KJov/jgEpzGJQWpTvY KN/peI7tyPO5axXcBavAw9lBqnceBs/LDXQKmZZzi3YQO0xMAw5o54sHNM2jHESx EZXluIgSsPphDZloAJxcXnKR3qjprAgw0hDG1u9hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeRyOJYWj3KBiJMboJipk6P9JbKgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExNjViZTdiLTE1NDUtNGI2Ni04OTM4LTIzMjFjMDdkNWE2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49zANBgkqhkiG9w0BAQsFAAOCAQEAzOHSJdavVG1gkSXYk4zvmilddMJ7 MGh4/zWF91/9STitnU+MrSPxxsvX5tZWWRUdclrMjZMPDgbzD9gSBARfQHjuGowR E4Y7iljasb36YanT2dFKdx7ZqO+a0j38nzNffkzwhac/Dmf7z3pOhd26Z67GUta8 cd2OWxhK+kcSLIFyQUvZrcPfkO0BWwOHH8zU6t7mSPycscHFThyJkBGoJ+tHWnen VmnbRKKleC8+vn/2bLT8Y+o8aqRo57rJDd7yysU56uzRw293JKfMHkg5H3m+VWSH qBvLgAyooVOn7crSMT8xZzkWLTMnRJSpaaavj33C8nzQ+m9uJCrhAZeInQ== -----END CERTIFICATE-----Generated at Sat Aug 23 09:06:04 2025 by rpki-client