$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b48a874-a3d6-44f8-96ca-dad28fae06b5.roa File: 1b48a874-a3d6-44f8-96ca-dad28fae06b5.roa (raw, json) Hash identifier: Zo+Nxr7kFlfN0MykMuV5ZmcVCNfBlvLhzNC9ENOGkeg= Subject key identifier: B1:2E:BA:27:16:B3:52:24:B3:B3:67:F4:98:76:9F:87:88:B6:3D:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37BE9390065758900B1C2E91BD932A532241ECF5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b48a874-a3d6-44f8-96ca-dad28fae06b5.roa Signing time: Wed 13 Aug 2025 00:00:18 +0000 ROA not before: Wed 13 Aug 2025 00:00:18 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.255.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:be:93:90:06:57:58:90:0b:1c:2e:91:bd:93:2a:53:22:41:ec:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:00:18 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=0b48e392ab5d328bd82db28fb1f4e2b016f1b32a6532f21b39dd392d70bb10e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ae:04:3e:62:e3:b9:ee:4e:7f:6b:8a:4b:26: 7b:05:0e:f4:06:bb:48:cc:c9:b8:a7:0c:cc:42:5e: 67:28:05:56:b7:b1:89:4e:ae:83:a9:3c:a1:11:21: bc:5a:a8:d7:c4:62:2d:a3:84:9c:59:b7:14:7a:81: c7:1b:87:d8:c8:6e:5e:d6:81:71:d2:40:89:01:d2: 0e:00:d2:59:65:9e:44:12:dc:5f:af:39:40:bc:95: 20:7b:54:07:44:0b:47:0a:ab:b1:21:42:87:db:ae: d4:a8:ba:3c:5c:7e:3d:38:1f:b6:91:8d:df:0f:4e: 4c:09:c2:b7:72:64:85:ee:65:8c:e1:3a:6a:40:f7: 5f:80:00:40:23:f6:f8:91:8f:cd:6d:0b:e8:2b:81: 19:9d:04:3d:e1:6a:55:1e:03:df:d6:45:27:fe:d4: 27:a2:a1:1b:93:ac:81:c5:61:5f:ce:39:62:a9:49: 81:c5:8f:66:ef:13:bd:c5:20:fe:2c:33:96:8f:41: 80:52:b7:d2:9f:30:b1:97:84:b4:eb:23:91:49:ac: b0:39:2d:1f:6b:44:b2:b9:05:b8:4c:bc:d1:cd:69: 91:c0:5c:66:28:01:5f:14:f3:c3:77:a8:0d:3d:36: cd:07:f1:f8:cc:8a:7f:d3:35:3f:31:db:8b:8a:2d: e2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:2E:BA:27:16:B3:52:24:B3:B3:67:F4:98:76:9F:87:88:B6:3D:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b48a874-a3d6-44f8-96ca-dad28fae06b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.255.56.0/24 Signature Algorithm: sha256WithRSAEncryption 11:78:aa:40:46:ea:53:6c:c8:d5:8e:86:89:d7:c0:32:e9:9f: 3c:37:d1:89:84:ee:14:87:33:cb:20:df:66:9d:3c:6c:28:47: 75:90:cb:9e:3a:98:ac:38:f1:44:8c:21:81:29:b6:2e:25:14: be:8e:e1:30:0f:30:cd:96:f9:79:be:79:2f:ea:c0:7a:a9:41: e3:e0:c6:1a:24:0a:e3:db:bf:74:7f:96:42:92:27:2c:f3:fd: 12:33:a2:d5:c3:0b:31:bd:7a:89:9c:02:6b:bc:93:8b:36:9d: 48:ed:bb:4d:85:6b:f4:e8:4b:e7:43:61:0a:fc:d0:17:8a:19: 3a:0d:eb:fe:db:fb:ea:78:43:ee:b4:b4:5f:e3:7c:6c:0f:6c: f1:90:e2:27:63:15:d0:c6:92:10:e0:be:de:c4:e1:39:d1:d4: 6c:09:02:6e:a8:37:2c:39:7f:a6:6b:62:c9:26:67:91:c1:f6: 75:11:48:57:46:2e:67:21:03:ea:2d:3f:9f:41:cf:d7:13:69: 87:8e:21:96:de:ab:d3:90:6d:17:aa:3a:72:83:4c:73:68:fb: 49:8a:85:d4:17:69:31:67:2a:c2:7f:d5:7e:d4:0c:5d:dd:aa: 58:9d:ea:84:a9:a2:e5:67:a6:56:e4:b4:56:8d:e4:d6:30:ad: 80:69:51:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN76TkAZXWJALHC6RvZMqUyJB7PUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAwMDE4WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjQ4ZTM5MmFiNWQzMjhiZDgyZGIyOGZiMWY0ZTJiMDE2 ZjFiMzJhNjUzMmYyMWIzOWRkMzkyZDcwYmIxMGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjrgQ+YuO57k5/a4pLJnsFDvQGu0jMybinDMxCXmcoBVa3 sYlOroOpPKERIbxaqNfEYi2jhJxZtxR6gccbh9jIbl7WgXHSQIkB0g4A0lllnkQS 3F+vOUC8lSB7VAdEC0cKq7EhQofbrtSoujxcfj04H7aRjd8PTkwJwrdyZIXuZYzh OmpA91+AAEAj9viRj81tC+grgRmdBD3halUeA9/WRSf+1CeioRuTrIHFYV/OOWKp SYHFj2bvE73FIP4sM5aPQYBSt9KfMLGXhLTrI5FJrLA5LR9rRLK5BbhMvNHNaZHA XGYoAV8U88N3qA09Ns0H8fjMin/TNT8x24uKLeIdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsS66JxazUiSzs2f0mHafh4i2PbswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFiNDhhODc0LWEzZDYtNDRmOC05NmNhLWRhZDI4ZmFlMDZiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABo/zgwDQYJKoZIhvcNAQELBQADggEBABF4qkBG6lNsyNWOhonXwDLpnzw3 0YmE7hSHM8sg32adPGwoR3WQy546mKw48USMIYEpti4lFL6O4TAPMM2W+Xm+eS/q wHqpQePgxhokCuPbv3R/lkKSJyzz/RIzotXDCzG9eomcAmu8k4s2nUjtu02Fa/To S+dDYQr80BeKGToN6/7b++p4Q+60tF/jfGwPbPGQ4idjFdDGkhDgvt7E4TnR1GwJ Am6oNyw5f6ZrYskmZ5HB9nURSFdGLmchA+otP59Bz9cTaYeOIZbeq9OQbReqOnKD THNo+0mKhdQXaTFnKsJ/1X7UDF3dqlid6oSpouVnplbktFaN5NYwrYBpUdI= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:58 2025 by rpki-client