$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3732605d-e89e-4ee3-b46d-7df664583874.roa File: 3732605d-e89e-4ee3-b46d-7df664583874.roa (raw, json) Hash identifier: VQJv/fns8B1jXeM7YBvRq8zU5+NbNnWNf2PRS8bvexU= Subject key identifier: 45:4E:8D:7A:4E:A0:27:6E:F3:D6:B3:97:F2:3E:ED:64:DF:28:7E:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05B287E8354E490E1ED3A75EA3BCFD2A783B163E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3732605d-e89e-4ee3-b46d-7df664583874.roa Signing time: Mon 18 Aug 2025 15:52:01 +0000 ROA not before: Mon 18 Aug 2025 15:52:01 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b2:87:e8:35:4e:49:0e:1e:d3:a7:5e:a3:bc:fd:2a:78:3b:16:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:52:01 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=8b46adde736530774b1b8293ba4e97dd2128e8913bb40bcbfbfce1a76b9b5497, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ad:d0:fd:13:a9:6a:d7:ca:8b:6c:71:3c:61: c7:d3:35:c3:24:75:32:42:95:4d:76:a8:58:67:aa: ba:53:1f:74:0c:8a:ba:d4:36:2d:35:ce:82:14:88: d2:fc:63:8d:d1:18:07:ad:22:f1:11:4d:ef:70:f1: 3d:1d:90:f0:7d:6d:02:59:60:87:4b:a2:bd:f4:71: 3d:40:d8:92:ab:51:a9:60:27:a6:97:54:7b:81:f0: 62:6f:2b:07:f9:c2:ef:d2:2a:1a:9d:69:6b:01:82: 05:aa:a9:f8:86:b3:2d:75:f2:d7:a8:8d:79:55:7c: 05:75:48:07:23:33:d1:c8:83:b8:d5:73:06:b6:d2: 96:37:55:1f:80:89:88:47:3a:55:b6:2f:93:1e:5c: 0b:fc:b6:7a:a1:95:82:5b:f5:64:41:15:8f:91:dd: b0:0a:fa:71:c5:cd:79:cc:9f:80:ab:0e:3d:ca:3e: 09:a4:29:54:70:6a:c5:6e:6c:27:e3:9c:e0:37:ca: 4b:03:dd:45:39:0c:4d:b6:9d:08:78:24:ba:7b:7b: 3f:1f:19:d0:15:cf:85:98:e5:e1:2b:61:66:a0:5f: 90:29:68:ed:01:d8:d7:96:44:32:ac:7f:62:00:65: dc:e2:f1:b4:f2:8b:23:ea:ce:03:a8:4f:a7:32:75: 12:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4E:8D:7A:4E:A0:27:6E:F3:D6:B3:97:F2:3E:ED:64:DF:28:7E:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3732605d-e89e-4ee3-b46d-7df664583874.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:9b:5b:eb:87:61:68:ab:5f:6e:22:fa:13:e3:19:ea:5e:54: fd:b6:39:58:7d:91:fc:78:96:ac:6c:8d:9f:e3:6b:14:d6:ed: 26:52:96:1e:9f:5d:a7:73:d9:e1:83:46:95:95:bc:27:d2:2c: 2f:99:dc:37:02:da:f3:2c:ad:1b:51:1f:b6:20:10:4e:fd:8c: 45:34:57:4e:bd:58:ce:84:d2:c9:13:73:22:82:90:e5:6a:77: 0f:6e:18:8e:1e:b3:79:f7:8d:c0:0c:16:af:63:30:f4:e6:77: 46:8d:d7:5a:0f:4f:6b:3a:ab:b1:c3:8b:f1:8a:19:4d:38:e5: b1:eb:8b:1c:52:fe:9f:9e:d9:af:a9:c5:42:63:2e:69:f0:ff: f3:d6:50:06:bb:64:29:7f:07:3f:98:f8:73:7d:28:9c:cd:e4: c1:44:d1:0b:80:1b:02:fe:b1:39:35:f0:fc:3a:bb:e1:67:1d: 39:10:6f:a9:5f:aa:3a:ec:df:0c:26:42:c9:6c:38:a8:f9:4b: 2f:f8:89:5d:e2:54:77:82:10:d8:4d:3c:62:dc:b0:82:6c:07: 8b:3f:db:09:ec:96:fb:be:d2:47:e7:34:7d:c6:c1:5c:67:23: f2:20:e6:83:85:ca:5b:a4:08:10:ff:84:c7:af:09:8f:a9:8a: 39:98:a5:8c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBbKH6DVOSQ4e06deo7z9Kng7Fj4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MjAxWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjQ2YWRkZTczNjUzMDc3NGIxYjgyOTNiYTRlOTdkZDIx MjhlODkxM2JiNDBiY2JmYmZjZTFhNzZiOWI1NDk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjrdD9E6lq18qLbHE8YcfTNcMkdTJClU12qFhnqrpTH3QM irrUNi01zoIUiNL8Y43RGAetIvERTe9w8T0dkPB9bQJZYIdLor30cT1A2JKrUalg J6aXVHuB8GJvKwf5wu/SKhqdaWsBggWqqfiGsy118teojXlVfAV1SAcjM9HIg7jV cwa20pY3VR+AiYhHOlW2L5MeXAv8tnqhlYJb9WRBFY+R3bAK+nHFzXnMn4CrDj3K PgmkKVRwasVubCfjnOA3yksD3UU5DE22nQh4JLp7ez8fGdAVz4WY5eErYWagX5Ap aO0B2NeWRDKsf2IAZdzi8bTyiyPqzgOoT6cydRKHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURU6Nek6gJ27z1rOX8j7tZN8ofk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzI2MDVkLWU4OWUtNGVlMy1iNDZkLTdkZjY2NDU4Mzg3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4gjANBgkqhkiG9w0BAQsFAAOCAQEAyptb64dhaKtfbiL6E+MZ6l5U/bY5 WH2R/HiWrGyNn+NrFNbtJlKWHp9dp3PZ4YNGlZW8J9IsL5ncNwLa8yytG1EftiAQ Tv2MRTRXTr1YzoTSyRNzIoKQ5Wp3D24Yjh6zefeNwAwWr2Mw9OZ3Ro3XWg9Pazqr scOL8YoZTTjlseuLHFL+n57Zr6nFQmMuafD/89ZQBrtkKX8HP5j4c30onM3kwUTR C4AbAv6xOTXw/Dq74WcdORBvqV+qOuzfDCZCyWw4qPlLL/iJXeJUd4IQ2E08Ytyw gmwHiz/bCeyW+77SR+c0fcbBXGcj8iDmg4XKW6QIEP+Ex68Jj6mKOZiljA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:13 2025 by rpki-client