$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: xPXGRacLS4vhyjF8PXK3uQO69Gx9m4t7cA9W1Hgl+gc= Subject key identifier: AD:89:58:21:AA:F1:DF:46:2E:48:6C:81:3F:60:8D:A1:9B:55:D3:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E253F9072C993A2E0876C345191D907A73373FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Mon 23 Jun 2025 15:31:23 +0000 ROA not before: Mon 23 Jun 2025 15:31:23 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:25:3f:90:72:c9:93:a2:e0:87:6c:34:51:91:d9:07:a7:33:73:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:31:23 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=634e946a158366a4a7253d905c4dfa8e0b1d51a94ac01e57f26de34f1b6ce7db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e5:7d:3f:aa:1f:e7:33:e3:ca:21:45:e7:43: 35:8a:d7:e4:91:54:0b:48:08:41:4c:31:a7:f5:07: cf:e7:90:76:2e:f7:35:85:98:2b:2b:39:4b:6c:72: 11:40:dc:da:6b:34:6e:eb:94:cf:a5:e5:4f:bb:ac: bb:a3:61:ad:1a:6f:8b:3b:93:cd:1b:80:93:b5:ca: 98:ea:20:88:e3:7f:cd:5d:80:ef:68:d9:39:62:20: e6:38:6e:a9:12:60:25:09:69:e5:9b:c6:ae:4c:2e: e1:da:a9:c8:ea:4c:7f:c4:5f:53:34:b0:01:c5:20: ff:c9:7b:1b:1a:94:5e:68:f9:28:7f:10:69:20:d0: e7:1e:f8:99:97:e6:8c:64:27:0e:09:20:00:66:0d: 22:24:de:01:d4:70:ff:9d:b3:48:b4:45:41:5d:df: c9:af:b8:06:f4:05:14:9e:6c:3b:dd:31:08:71:2d: eb:6b:26:8c:78:06:b6:42:4f:7f:51:ba:91:f3:ca: bb:ba:4f:4a:bf:82:ce:7b:c4:23:8a:78:72:46:ea: 63:ba:90:a8:ad:d6:c6:ba:00:50:48:24:cb:50:0a: 84:7b:7d:a4:3b:99:18:92:04:f2:f0:cd:cf:fd:d9: 35:1d:f2:1f:81:12:12:ac:6f:7f:9d:e5:dd:b2:22: 05:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:89:58:21:AA:F1:DF:46:2E:48:6C:81:3F:60:8D:A1:9B:55:D3:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:bc:6e:81:75:54:61:ca:0e:17:e9:d3:9a:3d:5e:08:f8:46: 5e:a1:ef:f8:fb:61:2b:b1:b2:c3:2d:2e:80:6d:d3:09:be:eb: 83:a7:6a:28:35:9e:aa:5b:c9:e5:e8:ac:ec:ca:ee:c7:46:51: 08:81:50:d4:6a:57:0d:57:1e:b2:58:15:5f:d6:70:db:fe:d6: 95:26:93:00:fc:b1:4d:4f:0f:f0:51:20:86:a3:e7:7c:8c:38: 6d:ea:ac:6b:2b:0f:d1:81:4f:9b:00:63:39:fa:9f:34:11:47: 74:1f:1c:a4:7d:a7:9f:ab:e0:76:6f:5a:eb:a6:8a:db:1e:3c: 9a:85:62:75:58:d7:34:01:d1:75:2d:dc:9d:4a:50:2d:c0:e0: 79:5a:b8:46:a5:98:0e:ad:cf:94:21:74:9c:23:86:f7:eb:3f: 37:7a:75:94:b1:96:2a:d9:90:84:21:37:b4:d4:fa:92:6f:fa: 39:03:8b:a9:fe:42:35:6d:58:d0:b6:9f:14:9e:95:91:87:70: 28:00:38:42:5b:89:16:82:d3:1f:a0:af:8d:f7:0d:ad:f7:e8: c6:5d:0f:b2:da:ee:26:eb:3c:f2:66:84:f2:36:0b:24:4d:bd: ff:e2:ac:34:a3:c7:52:ba:96:e4:43:c4:58:38:b2:37:1d:08: 5d:bb:f5:77 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDiU/kHLJk6Lgh2w0UZHZB6czc/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUzMTIzWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzRlOTQ2YTE1ODM2NmE0YTcyNTNkOTA1YzRkZmE4ZTBi MWQ1MWE5NGFjMDFlNTdmMjZkZTM0ZjFiNmNlN2RiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ5X0/qh/nM+PKIUXnQzWK1+SRVAtICEFMMaf1B8/nkHYu 9zWFmCsrOUtschFA3NprNG7rlM+l5U+7rLujYa0ab4s7k80bgJO1ypjqIIjjf81d gO9o2TliIOY4bqkSYCUJaeWbxq5MLuHaqcjqTH/EX1M0sAHFIP/JexsalF5o+Sh/ EGkg0Oce+JmX5oxkJw4JIABmDSIk3gHUcP+ds0i0RUFd38mvuAb0BRSebDvdMQhx LetrJox4BrZCT39RupHzyru6T0q/gs57xCOKeHJG6mO6kKit1sa6AFBIJMtQCoR7 faQ7mRiSBPLwzc/92TUd8h+BEhKsb3+d5d2yIgVBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrYlYIarx30YuSGyBP2CNoZtV098wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAqrxugXVUYcoOF+nTmj1eCPhGXqHv +PthK7Gywy0ugG3TCb7rg6dqKDWeqlvJ5eis7Mrux0ZRCIFQ1GpXDVceslgVX9Zw 2/7WlSaTAPyxTU8P8FEghqPnfIw4beqsaysP0YFPmwBjOfqfNBFHdB8cpH2nn6vg dm9a66aK2x48moVidVjXNAHRdS3cnUpQLcDgeVq4RqWYDq3PlCF0nCOG9+s/N3p1 lLGWKtmQhCE3tNT6km/6OQOLqf5CNW1Y0LafFJ6VkYdwKAA4QluJFoLTH6CvjfcN rffoxl0PstruJus88maE8jYLJE29/+KsNKPHUrqW5EPEWDiyNx0IXbv1dw== -----END CERTIFICATE-----Generated at Tue Jul 1 06:49:18 2025 by rpki-client