$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa File: 22c9a730-4525-4f9f-9737-1126e2e464db.roa (raw, json) Hash identifier: 4rwVwgIxx7WDPY3OitnWDhKny2RwnLC0Bnb51w8dSx8= Subject key identifier: CB:5D:C0:A7:08:C5:D9:E9:72:2D:E3:6B:40:B6:18:BC:0E:E4:28:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 156F08133DFC1EA3BDD20EB8A87E9756DEB056C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa Signing time: Mon 18 Aug 2025 15:50:16 +0000 ROA not before: Mon 18 Aug 2025 15:50:16 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.151.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6f:08:13:3d:fc:1e:a3:bd:d2:0e:b8:a8:7e:97:56:de:b0:56:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:50:16 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=cd23541c14faf0373991e02d2ebec12863fc790e51363b6a41939c01733bc709, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:07:c3:ed:a1:fc:40:4c:d1:64:91:06:2a: af:59:4d:fd:b1:e4:11:87:92:64:9b:03:58:1b:19: b9:87:2a:8e:40:87:84:b4:0c:bf:ae:42:61:db:2c: 32:2f:fa:f8:81:6a:eb:9d:ee:e3:db:58:ae:94:d6: 34:ce:4f:a1:f3:40:d3:49:27:b6:08:49:33:2c:8a: ce:5d:a3:a7:31:17:bf:f2:c6:dd:35:4c:20:15:c2: 49:62:4a:90:35:89:d7:13:09:aa:e0:b3:10:8e:26: 53:7f:51:eb:72:85:e0:a8:eb:41:72:29:a9:21:34: 8a:51:4d:90:62:9d:26:74:02:56:94:be:0b:aa:33: de:0d:44:3b:80:44:91:81:54:5b:12:92:b9:b5:29: 47:e3:77:e4:eb:30:48:54:64:f8:40:96:5a:2f:98: 80:49:13:2a:ca:ff:96:04:51:34:28:fc:cb:a4:69: 42:b9:ec:76:3f:e9:50:d3:7e:4d:bc:74:dc:d9:af: 3e:2f:9e:05:9f:90:d3:43:e5:4b:4e:4e:e6:39:ed: b2:a4:a7:78:79:4a:69:33:96:b1:7b:e1:e2:1e:37: 80:b0:9d:d6:36:15:60:3e:8d:42:b4:c0:17:85:1b: 37:d0:30:42:3e:94:0e:7b:66:2e:99:31:d6:f1:97: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5D:C0:A7:08:C5:D9:E9:72:2D:E3:6B:40:B6:18:BC:0E:E4:28:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.151.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:a8:c7:f2:df:1c:08:01:89:19:f4:bc:01:bf:1d:0f:e6:51: 69:09:3d:da:49:53:65:27:66:5c:75:f6:de:30:36:e6:d9:29: 5c:10:94:83:69:1d:7e:cd:cc:60:08:25:fa:37:dd:b6:1f:b3: 2c:7d:07:b3:ad:1e:6b:f9:00:a3:c4:c6:9e:f2:68:5e:53:88: 07:ba:ff:67:bf:21:6f:60:7e:52:93:26:b4:64:1f:76:c9:44: 5c:0f:ef:0f:3d:fc:9a:3c:8e:df:45:22:e1:28:9d:d2:8e:f6: 63:45:bd:48:a7:ee:84:47:aa:a5:c5:8f:08:23:aa:11:25:e7: 2f:40:fc:33:ee:ce:77:62:e9:36:8d:2a:ac:94:73:db:ba:c1: 19:f7:0e:e2:d0:21:d5:31:32:d2:d4:e7:1b:d3:14:49:19:c3: e2:46:c0:8a:68:85:55:2a:f1:fd:fd:c5:4c:62:c8:52:89:a6: f2:f1:d8:a3:17:ed:b9:de:5e:12:52:d9:3b:a9:5d:e3:44:50: 35:26:f5:5b:7f:41:52:de:fb:ee:b4:cd:48:c3:a6:6e:b3:07: 11:5f:b3:03:be:49:b6:6d:12:3f:b7:ab:ea:b8:91:99:6d:11: 1e:a1:af:93:62:d1:6c:f7:60:4b:50:a4:27:db:15:d0:88:fc: 8a:93:e3:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFW8IEz38HqO90g64qH6XVt6wVscwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MDE2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDIzNTQxYzE0ZmFmMDM3Mzk5MWUwMmQyZWJlYzEyODYz ZmM3OTBlNTEzNjNiNmE0MTkzOWMwMTczM2JjNzA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9XwfD7aH8QEzRZJEGKq9ZTf2x5BGHkmSbA1gbGbmHKo5A h4S0DL+uQmHbLDIv+viBauud7uPbWK6U1jTOT6HzQNNJJ7YISTMsis5do6cxF7/y xt01TCAVwkliSpA1idcTCargsxCOJlN/UetyheCo60FyKakhNIpRTZBinSZ0AlaU vguqM94NRDuARJGBVFsSkrm1KUfjd+TrMEhUZPhAllovmIBJEyrK/5YEUTQo/Muk aUK57HY/6VDTfk28dNzZrz4vngWfkNND5UtOTuY57bKkp3h5SmkzlrF74eIeN4Cw ndY2FWA+jUK0wBeFGzfQMEI+lA57Zi6ZMdbxl9phAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy13ApwjF2elyLeNrQLYYvA7kKKMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyYzlhNzMwLTQ1MjUtNGY5Zi05NzM3LTExMjZlMmU0NjRkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4lzANBgkqhkiG9w0BAQsFAAOCAQEAWajH8t8cCAGJGfS8Ab8dD+ZRaQk9 2klTZSdmXHX23jA25tkpXBCUg2kdfs3MYAgl+jfdth+zLH0Hs60ea/kAo8TGnvJo XlOIB7r/Z78hb2B+UpMmtGQfdslEXA/vDz38mjyO30Ui4Sid0o72Y0W9SKfuhEeq pcWPCCOqESXnL0D8M+7Od2LpNo0qrJRz27rBGfcO4tAh1TEy0tTnG9MUSRnD4kbA imiFVSrx/f3FTGLIUomm8vHYoxftud5eElLZO6ld40RQNSb1W39BUt777rTNSMOm brMHEV+zA75Jtm0SP7er6riRmW0RHqGvk2LRbPdgS1CkJ9sV0Ij8ipPjRA== -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:14 2025 by rpki-client