$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa File: 6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa (raw, json) Hash identifier: zLAlyAWMBXQ2n4vGHV1mILaRT2/gBQ+3O7oyqYWWnhw= Subject key identifier: C5:9D:66:BB:36:B5:7B:4C:D3:0B:31:E8:21:ED:03:3C:2E:B1:B2:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D68E0C3AD9FDD54478B1DFAE53A58CCB2DDD03B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa Signing time: Tue 19 Aug 2025 00:11:35 +0000 ROA not before: Tue 19 Aug 2025 00:11:35 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.126.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:68:e0:c3:ad:9f:dd:54:47:8b:1d:fa:e5:3a:58:cc:b2:dd:d0:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:11:35 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=ce34c23768550e95c9bc5478060919c0ba8b1d84d89ab3a9795b0f2f7433f1c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:97:ba:f3:7e:3d:69:ab:b1:81:01:fd:b4:1e: b6:20:2f:20:93:57:32:92:90:0f:db:ae:9a:b6:de: 10:51:f5:bd:98:84:92:6a:6c:97:5a:cd:2c:47:58: 78:06:61:60:8d:df:14:b7:80:6c:fd:08:7d:61:e8: 17:db:b4:90:3c:db:4e:01:e4:b2:7d:d9:3e:ab:f7: b4:8f:ee:ee:b7:05:86:8b:d8:dc:e9:f2:85:df:c4: f2:13:3a:5e:e4:24:02:6f:e6:45:08:92:6d:52:91: 65:99:e6:86:31:a9:88:c8:f2:60:9a:6e:62:f8:fe: 23:f8:83:ba:71:3b:43:3a:48:25:ef:35:15:be:d5: 08:2e:44:05:5e:e8:f9:be:6b:67:86:34:7d:98:cc: 94:29:b1:4b:2f:e0:3e:79:66:3b:55:f7:c1:2a:8c: fe:ee:33:4c:70:af:67:28:33:1c:d3:76:91:65:ba: 67:cf:de:59:ce:46:53:42:4e:89:da:56:91:87:69: b6:e2:6e:f0:d9:57:58:e5:f3:16:f9:43:9f:81:99: 1f:4b:18:72:28:43:c4:c7:1b:a2:e2:4e:58:18:8e: 4a:5e:b4:00:54:d3:2e:9f:59:2c:f1:e3:92:3f:47: 3f:72:d4:9b:82:f4:ad:dc:08:a3:06:7e:98:9d:3d: 3f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9D:66:BB:36:B5:7B:4C:D3:0B:31:E8:21:ED:03:3C:2E:B1:B2:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6faaf4ca-5e33-4dd3-b129-514b40c8555d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 45:3b:42:98:95:e7:a8:c9:3f:f2:43:49:86:de:b5:0d:d7:8b: c2:aa:0f:7e:a1:32:ab:7b:72:3c:6e:49:a6:7d:ec:40:85:8c: 6a:d1:16:c6:54:ce:65:e3:5f:9d:bb:58:95:81:23:d5:af:40: 10:af:ed:3d:8c:b9:14:43:a1:72:24:ab:5f:4e:f3:63:5e:99: 0a:29:4a:5d:70:89:66:a8:75:81:bd:dd:0f:85:c0:3d:61:3f: bf:02:4f:79:cd:ab:de:d8:79:7c:e5:b8:3f:aa:68:9b:d2:bc: 46:be:bf:ad:b6:c0:4f:fa:97:6b:4a:b7:1a:11:4c:85:9d:b1: 91:99:ff:0d:06:f1:98:8a:d2:84:98:39:65:8e:a1:a1:a2:bd: 60:fe:8a:ee:61:9d:1c:65:27:0e:1c:cc:7c:9b:c8:33:43:c1: da:b5:e8:15:29:7c:72:f2:10:a3:f0:a9:df:14:37:3b:2f:07: d2:f1:34:89:eb:9b:f0:80:7c:55:29:2b:5c:3c:97:cb:a5:71: de:c2:f9:66:47:9f:46:82:d3:65:fc:0a:12:06:d8:df:96:66: 00:71:e0:55:04:01:7a:e4:4a:37:02:87:63:48:e3:c8:91:63: 98:4d:da:8a:41:0d:77:14:39:26:08:da:ae:ac:52:45:c1:b5: bd:81:ea:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXWjgw62f3VRHix365TpYzLLd0DswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAxMTM1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTM0YzIzNzY4NTUwZTk1YzliYzU0NzgwNjA5MTljMGJh OGIxZDg0ZDg5YWIzYTk3OTViMGYyZjc0MzNmMWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDal7rzfj1pq7GBAf20HrYgLyCTVzKSkA/brpq23hBR9b2Y hJJqbJdazSxHWHgGYWCN3xS3gGz9CH1h6BfbtJA8204B5LJ92T6r97SP7u63BYaL 2Nzp8oXfxPITOl7kJAJv5kUIkm1SkWWZ5oYxqYjI8mCabmL4/iP4g7pxO0M6SCXv NRW+1QguRAVe6Pm+a2eGNH2YzJQpsUsv4D55ZjtV98EqjP7uM0xwr2coMxzTdpFl umfP3lnORlNCTonaVpGHabbibvDZV1jl8xb5Q5+BmR9LGHIoQ8THG6LiTlgYjkpe tABU0y6fWSzx45I/Rz9y1JuC9K3cCKMGfpidPT8pAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxZ1muza1e0zTCzHoIe0DPC6xsm8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmYWFmNGNhLTVlMzMtNGRkMy1iMTI5LTUxNGI0MGM4NTU1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fjANBgkqhkiG9w0BAQsFAAOCAQEARTtCmJXnqMk/8kNJht61DdeLwqoP fqEyq3tyPG5Jpn3sQIWMatEWxlTOZeNfnbtYlYEj1a9AEK/tPYy5FEOhciSrX07z Y16ZCilKXXCJZqh1gb3dD4XAPWE/vwJPec2r3th5fOW4P6pom9K8Rr6/rbbAT/qX a0q3GhFMhZ2xkZn/DQbxmIrShJg5ZY6hoaK9YP6K7mGdHGUnDhzMfJvIM0PB2rXo FSl8cvIQo/Cp3xQ3Oy8H0vE0ieub8IB8VSkrXDyXy6Vx3sL5ZkefRoLTZfwKEgbY 35ZmAHHgVQQBeuRKNwKHY0jjyJFjmE3aikENdxQ5JgjarqxSRcG1vYHqlg== -----END CERTIFICATE-----Generated at Sat Aug 23 07:01:12 2025 by rpki-client