$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa File: 4fee6d78-1728-44bd-b799-ca975927c66a.roa (raw, json) Hash identifier: l2vSr3IISMc+flQpXLRkZJ/A/bD6Jm1c6rTEWWjuIK0= Subject key identifier: EB:C2:A2:04:AB:09:37:44:9C:06:2D:5E:D7:3E:BB:A9:C9:9C:FF:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 094B1C101C0E815D1BF96A5B9B69509E8837D7A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa Signing time: Tue 12 Aug 2025 00:30:58 +0000 ROA not before: Tue 12 Aug 2025 00:30:58 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:4b:1c:10:1c:0e:81:5d:1b:f9:6a:5b:9b:69:50:9e:88:37:d7:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:30:58 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=3596d028d3a292c6c3fc8e950a40f88b1a06351e6c0517b7fa3c295aa8f14c8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:2d:e4:e5:07:e2:75:fd:64:d2:ba:c4:b1: 70:c0:00:55:97:d3:74:91:c8:10:c3:94:bc:75:59: dc:89:03:af:53:67:8e:ea:e8:94:b9:2e:77:4e:f4: 97:d0:a8:1c:89:4d:66:ad:b6:81:c3:5a:e3:68:3e: 0d:36:ca:1c:9f:6a:ed:f0:34:2c:d8:27:8d:f5:ac: 7f:66:b9:96:62:da:90:d9:87:08:85:b7:87:9c:45: 2b:b7:7c:1a:33:12:53:fc:03:98:22:41:94:db:ad: 52:db:72:66:4a:42:42:56:22:ed:4b:e8:b1:99:9c: 25:ea:b0:84:04:a4:c6:8f:03:c3:94:5d:59:a0:67: 05:c6:0b:d1:71:60:0e:e1:81:3c:34:5a:91:ea:22: a1:c6:e8:c1:7c:c1:f0:4f:b2:ce:1e:3e:90:e4:ae: 98:ff:06:5e:03:e9:1a:b9:83:0d:4b:bb:e8:88:b8: bd:35:ce:b0:e1:30:b2:92:31:cb:6e:a7:9f:41:41: 70:f9:4d:ca:c9:58:68:b2:ef:27:a2:a5:ed:31:24: 92:a1:c1:ab:10:81:76:2b:62:22:0d:d2:43:be:26: 95:e4:49:95:a9:91:bc:14:16:26:6d:9c:65:8e:3d: bc:ed:01:07:65:3f:65:97:ac:f4:78:ff:de:6a:f6: 33:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C2:A2:04:AB:09:37:44:9C:06:2D:5E:D7:3E:BB:A9:C9:9C:FF:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fee6d78-1728-44bd-b799-ca975927c66a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption cf:2f:b3:1d:40:27:21:63:21:df:dc:8e:30:20:72:b8:0e:6c: 35:32:e2:60:9f:8e:28:61:51:2d:26:00:dd:50:70:9e:4a:8b: c0:73:15:28:b0:6a:89:db:d5:fe:00:02:c7:d8:da:98:4f:d4: 9e:2f:5e:cf:cb:7f:d6:f2:df:29:54:39:98:77:c8:20:66:ca: c5:39:73:e2:22:71:a5:4a:fd:3c:f7:1f:88:6d:51:0a:8b:64: e1:fe:b8:a1:a8:dc:db:c2:cf:02:29:66:00:0d:13:69:3f:20: 77:66:32:f2:ec:2b:bc:61:df:d0:0a:bc:67:18:32:27:7a:2f: 8a:9c:60:8c:ea:6d:a7:71:61:af:ac:29:18:48:e8:59:45:ef: cb:c6:d3:95:de:45:22:db:7b:3a:bc:64:59:84:19:15:8b:df: 4c:63:54:02:f1:f5:a6:a7:8a:f1:76:d3:82:4d:79:a6:b6:a3: e2:04:8b:f7:ab:40:06:8d:ed:83:ea:49:ec:ab:ec:52:03:f6: cb:a6:81:fc:3a:88:c5:25:5b:85:45:ed:a5:0a:0a:b6:3d:b1: ed:d8:a0:82:75:17:ba:d4:bf:b5:34:01:1e:61:12:dd:55:91: ad:6c:02:bd:de:57:ea:29:12:ee:4f:f6:f5:6e:8a:18:38:ef: 88:53:50:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCUscEBwOgV0b+Wpbm2lQnog316UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMDU4WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTk2ZDAyOGQzYTI5MmM2YzNmYzhlOTUwYTQwZjg4YjFh MDYzNTFlNmMwNTE3YjdmYTNjMjk1YWE4ZjE0YzhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDcC3k5Qfidf1k0rrEsXDAAFWX03SRyBDDlLx1WdyJA69T Z47q6JS5LndO9JfQqByJTWattoHDWuNoPg02yhyfau3wNCzYJ431rH9muZZi2pDZ hwiFt4ecRSu3fBozElP8A5giQZTbrVLbcmZKQkJWIu1L6LGZnCXqsIQEpMaPA8OU XVmgZwXGC9FxYA7hgTw0WpHqIqHG6MF8wfBPss4ePpDkrpj/Bl4D6Rq5gw1Lu+iI uL01zrDhMLKSMctup59BQXD5TcrJWGiy7yeipe0xJJKhwasQgXYrYiIN0kO+JpXk SZWpkbwUFiZtnGWOPbztAQdlP2WXrPR4/95q9jOdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU68KiBKsJN0ScBi1e1z67qcmc/zcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmZWU2ZDc4LTE3MjgtNDRiZC1iNzk5LWNhOTc1OTI3YzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ujANBgkqhkiG9w0BAQsFAAOCAQEAzy+zHUAnIWMh39yOMCByuA5sNTLi YJ+OKGFRLSYA3VBwnkqLwHMVKLBqidvV/gACx9jamE/Uni9ez8t/1vLfKVQ5mHfI IGbKxTlz4iJxpUr9PPcfiG1RCotk4f64oajc28LPAilmAA0TaT8gd2Yy8uwrvGHf 0Aq8ZxgyJ3ovipxgjOptp3Fhr6wpGEjoWUXvy8bTld5FItt7OrxkWYQZFYvfTGNU AvH1pqeK8XbTgk15praj4gSL96tABo3tg+pJ7KvsUgP2y6aB/DqIxSVbhUXtpQoK tj2x7diggnUXutS/tTQBHmES3VWRrWwCvd5X6ikS7k/29W6KGDjviFNQJQ== -----END CERTIFICATE-----Generated at Sat Aug 23 09:06:30 2025 by rpki-client