$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa File: 6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa (raw, json) Hash identifier: iCX4xlzl+WhlOJcbDWrV+fRZH1/bTIVWEhsOiLPiGqQ= Subject key identifier: 22:57:F3:77:8F:F4:25:0E:5B:80:EA:9B:03:B1:5B:42:A9:6B:54:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39D0A8FE361EB999D08B93352BFF7CD9AA34F2EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa Signing time: Mon 30 Jun 2025 15:10:17 +0000 ROA not before: Mon 30 Jun 2025 15:10:17 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.126.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d0:a8:fe:36:1e:b9:99:d0:8b:93:35:2b:ff:7c:d9:aa:34:f2:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:10:17 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=b0bc937524b919836685eaa73d5ae19fa32496d7d66186f956adeab4cc47277d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:2e:e8:5d:5d:4b:65:1a:55:00:6f:b6:25: c6:db:81:a8:e6:2a:41:22:a3:f3:79:f2:78:9a:e6: 24:51:16:4c:de:23:e6:21:a1:57:46:18:7d:23:66: f7:ff:77:e9:08:d5:75:fe:e9:99:7a:72:b6:94:f9: 0e:d4:6d:c2:4f:0a:24:dc:0d:2c:f3:3d:1e:0e:ec: 8a:7b:7b:7f:f9:52:a8:58:39:fa:3f:9f:a0:ab:89: 95:d0:07:58:1e:c6:44:69:22:27:63:70:50:6a:01: 53:e2:cd:ed:b9:fc:38:0c:33:7c:a1:78:f1:8a:5c: 88:67:f8:1e:6f:fa:46:c2:01:58:78:84:9a:e0:de: 08:15:b0:2f:6d:e0:0a:66:e1:86:ca:f5:6f:1c:a1: 3a:4c:80:95:ca:e0:cd:05:d2:1b:8e:84:e2:b8:1e: 4e:96:c8:e7:3e:d0:2e:ce:1f:20:20:b3:da:f3:74: ce:da:24:e3:f5:51:f2:f0:44:c2:f2:3b:ae:12:f9: 44:5c:1d:04:1f:7a:cc:b9:4e:f0:61:60:a9:13:78: cf:22:33:24:c8:15:9a:8a:4a:4b:f9:70:c0:15:82: ca:e1:f6:99:eb:ca:58:7d:ff:da:f0:4e:47:90:58: f0:ea:75:45:60:f5:dc:fa:ed:81:9e:d0:ec:af:3c: ea:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:57:F3:77:8F:F4:25:0E:5B:80:EA:9B:03:B1:5B:42:A9:6B:54:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:f9:8c:0b:09:45:71:7f:f1:26:48:06:a7:7d:6e:d2:c2:97: 4a:48:d6:9b:d3:1e:97:74:ed:fc:16:ee:d3:8f:23:77:86:1a: 02:14:71:e2:ba:2c:4e:98:ca:5d:a4:a5:99:cc:54:2f:d0:25: 35:f1:6f:42:e4:b3:98:ab:0a:7d:bb:c2:ef:73:17:b4:33:97: 06:da:24:d4:8c:74:be:dc:71:eb:30:77:45:13:ec:ee:34:46: a6:8d:59:23:4b:0a:8c:6a:87:85:2a:62:80:45:b7:69:47:24: a1:19:b3:3d:a5:00:14:82:79:c8:c6:a9:a4:06:bb:42:44:66: 8e:37:e4:e6:c0:3f:02:00:b1:2b:6d:4a:34:79:fe:52:94:9b: 65:c0:d2:be:c6:7d:83:57:35:4d:3c:0c:a6:c6:3a:09:0b:01: 7a:33:8d:ef:75:b5:61:83:14:b1:c0:fc:e4:1f:de:5c:6a:f5: b0:d2:a1:6d:86:85:2f:29:20:68:60:df:8d:fc:e5:23:ae:80: da:37:4e:ba:89:d6:a3:8c:ff:2b:74:98:65:37:5b:b8:e7:9d: e1:c5:6a:e0:b1:8f:46:85:33:7e:7f:8f:47:a1:33:cb:08:54: 3d:23:26:54:60:bc:ad:0f:20:fc:8a:6d:74:1f:d6:bd:53:b5: 8d:e8:71:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOdCo/jYeuZnQi5M1K/982ao08u8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUxMDE3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGJjOTM3NTI0YjkxOTgzNjY4NWVhYTczZDVhZTE5ZmEz MjQ5NmQ3ZDY2MTg2Zjk1NmFkZWFiNGNjNDcyNzdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2xS7oXV1LZRpVAG+2JcbbgajmKkEio/N58nia5iRRFkze I+YhoVdGGH0jZvf/d+kI1XX+6Zl6craU+Q7UbcJPCiTcDSzzPR4O7Ip7e3/5UqhY Ofo/n6CriZXQB1gexkRpIidjcFBqAVPize25/DgMM3yhePGKXIhn+B5v+kbCAVh4 hJrg3ggVsC9t4Apm4YbK9W8coTpMgJXK4M0F0huOhOK4Hk6WyOc+0C7OHyAgs9rz dM7aJOP1UfLwRMLyO64S+URcHQQfesy5TvBhYKkTeM8iMyTIFZqKSkv5cMAVgsrh 9pnrylh9/9rwTkeQWPDqdUVg9dz67YGe0OyvPOpVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIlfzd4/0JQ5bgOqbA7FbQqlrVLswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmYWFmNGNhLTVlMzMtNGRkMy1iMTI5LTUxNGI0MGM4NTU1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fjANBgkqhkiG9w0BAQsFAAOCAQEATfmMCwlFcX/xJkgGp31u0sKXSkjW m9Mel3Tt/Bbu048jd4YaAhRx4rosTpjKXaSlmcxUL9AlNfFvQuSzmKsKfbvC73MX tDOXBtok1Ix0vtxx6zB3RRPs7jRGpo1ZI0sKjGqHhSpigEW3aUckoRmzPaUAFIJ5 yMappAa7QkRmjjfk5sA/AgCxK21KNHn+UpSbZcDSvsZ9g1c1TTwMpsY6CQsBejON 73W1YYMUscD85B/eXGr1sNKhbYaFLykgaGDfjfzlI66A2jdOuonWo4z/K3SYZTdb uOed4cVq4LGPRoUzfn+PR6EzywhUPSMmVGC8rQ8g/IptdB/WvVO1jehxew== -----END CERTIFICATE-----Generated at Fri Jul 4 06:49:52 2025 by rpki-client