$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64ebae17-f5e1-463d-899b-7418dd1add2f.roa File: 64ebae17-f5e1-463d-899b-7418dd1add2f.roa (raw, json) Hash identifier: 7RkjaL+JJ598lULPICzydhBI8jbT0B5rp0wvKV4ejA8= Subject key identifier: A8:7A:B3:60:83:D6:DF:A7:D8:14:2A:6A:37:63:45:DE:90:D5:7A:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1ABEBE4B72BB130EADF38343A504580C4B3C7FFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64ebae17-f5e1-463d-899b-7418dd1add2f.roa Signing time: Wed 13 Aug 2025 00:21:15 +0000 ROA not before: Wed 13 Aug 2025 00:21:15 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.236.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:be:be:4b:72:bb:13:0e:ad:f3:83:43:a5:04:58:0c:4b:3c:7f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:21:15 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=ccff630223c63e3f064ce9ea1ccd3c77d7a3fefa776d862752b1149a648559e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:67:af:98:65:4a:b9:1f:77:0b:d4:2f:5f:8c: d9:07:43:34:2f:d4:b0:da:5f:88:5b:46:16:d4:83: 66:8c:4e:9d:55:85:1b:6d:d7:2c:5e:b6:76:67:10: 5f:b8:24:b8:9d:2f:68:aa:30:5a:d0:52:d2:ac:70: 9b:df:2f:68:94:c9:3f:c9:3c:b5:02:93:e7:1f:ed: 16:1a:35:c9:06:b9:d1:43:5f:11:74:47:da:e4:b9: ca:7e:33:db:7a:7b:ce:f5:7f:7e:57:e5:f9:43:1c: cf:db:c1:d4:cf:49:b7:80:60:f9:ae:ed:cb:1e:1e: 17:ea:6b:98:f3:83:5b:7c:23:05:de:a4:fb:b0:fb: c0:7c:33:1a:f3:3d:cc:7a:c6:da:a6:40:a1:c5:31: 08:83:64:0e:92:22:fb:d6:61:16:32:24:b5:7c:28: 14:50:0a:98:16:de:5a:ef:59:e2:8b:37:37:75:bf: ec:1f:61:32:05:f7:2c:d6:c9:2f:01:8f:b6:65:2a: 1b:9b:1a:a7:5d:8f:6a:a0:7b:79:ab:6c:7c:0b:76: 22:b7:ae:e6:dc:de:01:cb:1b:1c:89:3a:b6:93:15: f6:75:ca:67:75:0b:88:c4:7f:d9:ef:41:81:3a:d9: 2d:97:83:6f:2f:ac:21:93:eb:60:9b:13:aa:67:46: 8d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7A:B3:60:83:D6:DF:A7:D8:14:2A:6A:37:63:45:DE:90:D5:7A:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64ebae17-f5e1-463d-899b-7418dd1add2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:1e:15:ec:cd:eb:48:d5:46:8d:38:64:92:2d:13:e6:37:58: 53:74:a3:b3:45:db:f9:27:15:bb:58:22:ff:f1:9d:9f:52:00: 83:0d:09:52:40:27:e8:1f:7c:db:d7:23:8d:d1:6b:e9:c7:01: c1:bc:70:eb:eb:62:c8:20:5f:d1:aa:1d:26:3d:5c:d1:86:22: a7:26:86:88:8b:b6:0d:5c:20:02:de:b3:26:3b:ed:e7:53:d7: a4:65:6b:5c:c5:d2:ea:84:7c:5d:4c:07:c2:0d:15:77:e3:72: 16:0c:92:53:40:0d:84:73:60:a8:52:6c:ab:a8:57:ce:e6:73: 40:42:95:cd:7c:24:d0:48:d2:75:79:63:42:ab:70:da:20:3e: 6e:eb:71:0a:7a:83:7a:3d:56:8c:7c:65:f2:24:5d:68:a1:23: bf:ca:26:b4:b9:7f:72:36:19:c5:9e:ac:a3:ca:b5:3d:c2:cb: 20:aa:0e:b6:91:ae:0f:cb:97:9d:32:60:ff:0c:ad:ce:99:fd: d1:13:bf:11:6d:4f:f0:c1:81:72:cf:a2:db:f3:63:57:1a:54: 30:6c:28:b2:99:7e:62:90:a3:71:e6:c4:6a:bb:10:49:ab:b8: c3:58:c7:88:cb:c8:f1:00:55:32:d9:dc:57:a9:7d:bd:4f:7e: 68:67:ca:cd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGr6+S3K7Ew6t84NDpQRYDEs8f/wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMTE1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2ZmNjMwMjIzYzYzZTNmMDY0Y2U5ZWExY2NkM2M3N2Q3 YTNmZWZhNzc2ZDg2Mjc1MmIxMTQ5YTY0ODU1OWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHZ6+YZUq5H3cL1C9fjNkHQzQv1LDaX4hbRhbUg2aMTp1V hRtt1yxetnZnEF+4JLidL2iqMFrQUtKscJvfL2iUyT/JPLUCk+cf7RYaNckGudFD XxF0R9rkucp+M9t6e871f35X5flDHM/bwdTPSbeAYPmu7cseHhfqa5jzg1t8IwXe pPuw+8B8MxrzPcx6xtqmQKHFMQiDZA6SIvvWYRYyJLV8KBRQCpgW3lrvWeKLNzd1 v+wfYTIF9yzWyS8Bj7ZlKhubGqddj2qge3mrbHwLdiK3rubc3gHLGxyJOraTFfZ1 ymd1C4jEf9nvQYE62S2Xg28vrCGT62CbE6pnRo2nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqHqzYIPW36fYFCpqN2NF3pDVeiowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0ZWJhZTE3LWY1ZTEtNDYzZC04OTliLTc0MThkZDFhZGQyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA47DANBgkqhkiG9w0BAQsFAAOCAQEAaB4V7M3rSNVGjThkki0T5jdYU3Sj s0Xb+ScVu1gi//Gdn1IAgw0JUkAn6B9829cjjdFr6ccBwbxw6+tiyCBf0aodJj1c 0YYipyaGiIu2DVwgAt6zJjvt51PXpGVrXMXS6oR8XUwHwg0Vd+NyFgySU0ANhHNg qFJsq6hXzuZzQEKVzXwk0EjSdXljQqtw2iA+butxCnqDej1WjHxl8iRdaKEjv8om tLl/cjYZxZ6so8q1PcLLIKoOtpGuD8uXnTJg/wytzpn90RO/EW1P8MGBcs+i2/Nj VxpUMGwospl+YpCjcebEarsQSau4w1jHiMvI8QBVMtncV6l9vU9+aGfKzQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:18:23 2025 by rpki-client