$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e937c6a-8e10-4e53-9373-621e5d8a7276.roa File: 7e937c6a-8e10-4e53-9373-621e5d8a7276.roa (raw, json) Hash identifier: KIPGZu9gMIWyUnI9B3D0THLwJwEPDIZJYy6mzhbxFrk= Subject key identifier: 65:52:DF:53:9A:A0:6B:25:2A:60:89:72:F5:EC:3A:B5:B9:A5:41:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34114909A72433BD54EE9C0E5E9CADD6E83779AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e937c6a-8e10-4e53-9373-621e5d8a7276.roa Signing time: Mon 16 Jun 2025 15:21:23 +0000 ROA not before: Mon 16 Jun 2025 15:21:23 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.216.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:11:49:09:a7:24:33:bd:54:ee:9c:0e:5e:9c:ad:d6:e8:37:79:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:21:23 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8feab17c7a3ffa3672b0216d866ace4a3e5d69efa52ccac80939d760afb53ffe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:09:b7:62:a7:3c:14:20:67:1d:2a:12:3d:e5: f1:1a:0a:41:fc:74:21:ea:e3:25:17:e7:e5:3f:60: ef:8a:b3:18:e0:b8:d2:a6:f8:04:e2:88:6c:25:f6: 58:fc:ae:91:9a:90:a2:1b:21:dc:77:dd:ac:7c:cd: 12:fe:5c:62:47:40:7e:43:f9:74:90:8d:f6:d3:15: fd:f5:82:64:03:55:ce:eb:cc:99:b1:9b:b0:6f:13: 0f:f0:03:a4:23:ac:c7:65:2f:68:10:1b:42:49:fa: 70:27:0b:92:8a:28:06:5e:70:07:24:9e:ba:76:6c: 72:89:95:4e:46:2d:8d:c6:f8:9d:03:6f:0d:9a:0b: 5a:77:69:b9:2d:15:1b:86:fe:4d:91:96:93:d5:b6: ca:51:e6:eb:e5:16:04:e9:7a:59:63:83:55:a4:8c: c5:11:fa:75:a7:29:28:b6:57:2d:ba:7b:91:47:f8: 90:b3:91:2a:84:42:27:be:f1:54:d5:a6:be:55:af: b6:ac:be:7e:9f:9c:44:c5:37:42:0c:13:66:68:a0: 7e:ab:2d:24:a0:6a:02:12:88:b8:4a:d7:53:3e:43: 69:d1:9e:4e:d7:02:0c:56:16:4d:7b:d4:50:d8:73: 7e:f4:2a:c2:67:06:5b:35:23:03:eb:ef:d6:29:29: 39:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:52:DF:53:9A:A0:6B:25:2A:60:89:72:F5:EC:3A:B5:B9:A5:41:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e937c6a-8e10-4e53-9373-621e5d8a7276.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.216.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:b8:27:9c:8f:83:27:f2:da:ac:fb:f1:02:38:c9:28:9f:0f: b0:09:28:a6:37:f2:b5:33:9f:db:bd:11:9c:de:7c:c3:0b:21: 04:cd:c8:ba:2c:74:98:78:f5:f4:71:64:96:94:e5:03:42:13: 93:d4:1d:88:c5:88:23:eb:f8:49:4c:47:5d:b4:a0:a2:07:96: 57:0c:4a:88:87:d2:58:a3:f0:18:96:fa:ec:c8:40:25:62:e2: 2a:1f:c1:aa:7f:32:18:04:1c:1c:c7:40:3f:3c:55:d3:b9:67: 9a:b8:8a:d1:aa:59:49:ee:aa:ee:6a:3d:a9:ac:07:ae:5d:65: e9:3f:fc:3e:af:6a:1a:51:d1:68:09:08:6e:83:18:be:fb:0f: 17:18:d1:3c:b9:34:f1:ed:93:fb:fc:41:d9:50:4f:83:1e:b5: f7:42:c3:1a:70:11:83:6f:3a:98:31:86:a3:d0:a1:40:da:d3: 54:ce:92:0a:f4:c2:dc:fb:50:16:57:c3:f3:29:2f:8c:80:98: 61:5c:12:58:e4:ca:45:c5:83:57:fe:d8:e0:5e:f7:64:99:91: c0:7d:1e:56:f8:3e:c6:d5:17:38:0b:a5:85:29:5b:bb:f5:0f: 5e:f8:ca:af:b6:79:7b:a9:03:e9:19:9c:54:76:18:14:1f:9e: f6:b5:07:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNBFJCackM71U7pwOXpyt1ug3eaowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUyMTIzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmVhYjE3YzdhM2ZmYTM2NzJiMDIxNmQ4NjZhY2U0YTNl NWQ2OWVmYTUyY2NhYzgwOTM5ZDc2MGFmYjUzZmZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6CbdipzwUIGcdKhI95fEaCkH8dCHq4yUX5+U/YO+Ksxjg uNKm+ATiiGwl9lj8rpGakKIbIdx33ax8zRL+XGJHQH5D+XSQjfbTFf31gmQDVc7r zJmxm7BvEw/wA6QjrMdlL2gQG0JJ+nAnC5KKKAZecAcknrp2bHKJlU5GLY3G+J0D bw2aC1p3abktFRuG/k2RlpPVtspR5uvlFgTpelljg1WkjMUR+nWnKSi2Vy26e5FH +JCzkSqEQie+8VTVpr5Vr7asvn6fnETFN0IME2ZooH6rLSSgagISiLhK11M+Q2nR nk7XAgxWFk171FDYc370KsJnBls1IwPr79YpKTkrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZVLfU5qgayUqYIly9ew6tbmlQbkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlOTM3YzZhLThlMTAtNGU1My05MzczLTYyMWU1ZDhhNzI3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA42DANBgkqhkiG9w0BAQsFAAOCAQEASLgnnI+DJ/LarPvxAjjJKJ8PsAko pjfytTOf270RnN58wwshBM3Iuix0mHj19HFklpTlA0ITk9QdiMWII+v4SUxHXbSg ogeWVwxKiIfSWKPwGJb67MhAJWLiKh/Bqn8yGAQcHMdAPzxV07lnmriK0apZSe6q 7mo9qawHrl1l6T/8Pq9qGlHRaAkIboMYvvsPFxjRPLk08e2T+/xB2VBPgx6190LD GnARg286mDGGo9ChQNrTVM6SCvTC3PtQFlfD8ykvjICYYVwSWOTKRcWDV/7Y4F73 ZJmRwH0eVvg+xtUXOAulhSlbu/UPXvjKr7Z5e6kD6RmcVHYYFB+e9rUHIw== -----END CERTIFICATE-----Generated at Tue Jul 1 20:40:07 2025 by rpki-client