$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa File: 847e48cb-589d-4414-90c5-e5f31d38ad1a.roa (raw, json) Hash identifier: g/ZN0TtT28XKDT0ykVMVV0aRp7+ENanKpwi4e2OF5I0= Subject key identifier: 65:E5:F1:4D:30:F6:28:FD:A5:B6:2A:30:3A:93:CE:EC:42:EE:DC:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D5EC5866113E30F8E44CA62706AE08EADA1DE6E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa Signing time: Tue 12 Aug 2025 00:31:03 +0000 ROA not before: Tue 12 Aug 2025 00:31:03 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5e:c5:86:61:13:e3:0f:8e:44:ca:62:70:6a:e0:8e:ad:a1:de:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:31:03 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=d72adcd7c45be65cff9ae6aff2a119627458280e5d64cb7f33233f0fa6cc4074, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:39:b0:22:97:d3:33:10:ec:14:91:6e:d7: 6a:17:1c:b9:f6:3b:88:af:a8:7c:6c:5d:b3:2b:8e: 5c:f1:ff:20:47:a9:e5:f2:f1:9b:32:4e:40:a2:84: b1:8d:86:b5:4d:84:28:06:1f:d6:e8:13:f5:76:a9: cb:e8:9b:92:b3:1f:de:de:bb:ec:56:b2:38:f6:8b: 2b:52:2c:2b:d3:58:59:51:b9:3f:c7:13:11:26:b0: 4e:65:fa:33:cd:f6:b0:e7:0c:53:c0:b3:76:21:62: be:7a:51:95:04:e0:f2:6d:23:2d:eb:af:3d:f9:88: b6:9e:34:fb:27:37:df:a9:4a:62:28:5f:8f:13:5c: 7b:bd:16:a5:1b:f9:24:44:87:d3:90:e3:75:2c:f5: de:31:eb:ed:f8:7c:4c:42:88:c5:d0:3d:d8:82:2c: 10:cf:c5:d3:28:4f:95:23:96:ca:24:96:18:fd:57: 9e:49:d6:28:14:28:5b:12:16:6d:38:2b:03:3a:59: b3:50:98:69:9b:92:ae:45:15:1a:5a:09:de:9e:13: 61:c0:be:0f:87:5e:cb:da:b0:56:f4:0d:44:bc:ea: 42:9f:f6:bd:ba:d2:af:7e:1f:9d:2c:10:05:c6:3a: 32:8f:c3:c2:f1:25:32:47:2a:b2:69:88:cd:a2:08: 48:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E5:F1:4D:30:F6:28:FD:A5:B6:2A:30:3A:93:CE:EC:42:EE:DC:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:7d:bb:e1:62:5b:c4:67:98:47:58:ab:91:0a:19:73:7b:73: d2:88:ef:6e:45:06:39:c3:d6:4f:be:2b:a2:b3:77:69:dc:fb: 67:d1:ed:10:7b:a7:ff:f9:b8:4d:b8:ac:bb:ce:02:34:b2:a4: bd:88:6f:0d:1a:42:64:e1:cc:e0:61:ed:c1:a5:f6:14:66:43: 63:d8:27:40:d4:92:a3:ec:24:75:0a:97:8e:23:9a:65:dd:03: 60:a1:3c:4c:d3:0d:7e:22:c1:be:7d:2d:a9:ec:93:17:74:d3: ed:03:3f:76:bd:79:8b:b4:88:8d:fc:40:a7:54:ee:e4:89:1c: 58:fa:62:fb:d9:60:9b:08:f3:d2:b8:89:57:63:eb:01:5e:31: 6a:9f:67:a2:5a:14:3b:88:83:8b:44:e0:ad:09:b0:5d:70:cc: 07:af:dc:ea:8c:56:9b:99:aa:04:ca:1b:ff:2b:e5:36:9f:c3: c4:8b:c5:43:b9:69:f9:d0:86:e1:e3:73:29:73:de:7f:13:99: f2:df:59:a4:f4:50:5f:3b:55:e0:d8:6e:5c:0a:35:ac:d6:b9: 03:a0:a8:5b:f6:fa:22:7e:c4:91:85:31:7f:b5:b3:34:3e:94: 64:7d:1a:cf:f4:8f:a3:0a:60:c8:8e:04:f1:9f:b5:ce:89:fa: 7f:5d:a2:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPV7FhmET4w+ORMpicGrgjq2h3m4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMTAzWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzJhZGNkN2M0NWJlNjVjZmY5YWU2YWZmMmExMTk2Mjc0 NTgyODBlNWQ2NGNiN2YzMzIzM2YwZmE2Y2M0MDc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDINTmwIpfTMxDsFJFu12oXHLn2O4ivqHxsXbMrjlzx/yBH qeXy8ZsyTkCihLGNhrVNhCgGH9boE/V2qcvom5KzH97eu+xWsjj2iytSLCvTWFlR uT/HExEmsE5l+jPN9rDnDFPAs3YhYr56UZUE4PJtIy3rrz35iLaeNPsnN9+pSmIo X48TXHu9FqUb+SREh9OQ43Us9d4x6+34fExCiMXQPdiCLBDPxdMoT5Ujlsoklhj9 V55J1igUKFsSFm04KwM6WbNQmGmbkq5FFRpaCd6eE2HAvg+HXsvasFb0DUS86kKf 9r260q9+H50sEAXGOjKPw8LxJTJHKrJpiM2iCEiBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZeXxTTD2KP2ltiowOpPO7ELu3AQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0N2U0OGNiLTU4OWQtNDQxNC05MGM1LWU1ZjMxZDM4YWQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41DANBgkqhkiG9w0BAQsFAAOCAQEAH3274WJbxGeYR1irkQoZc3tz0ojv bkUGOcPWT74rorN3adz7Z9HtEHun//m4Tbisu84CNLKkvYhvDRpCZOHM4GHtwaX2 FGZDY9gnQNSSo+wkdQqXjiOaZd0DYKE8TNMNfiLBvn0tqeyTF3TT7QM/dr15i7SI jfxAp1Tu5IkcWPpi+9lgmwjz0riJV2PrAV4xap9noloUO4iDi0TgrQmwXXDMB6/c 6oxWm5mqBMob/yvlNp/DxIvFQ7lp+dCG4eNzKXPefxOZ8t9ZpPRQXztV4NhuXAo1 rNa5A6CoW/b6In7EkYUxf7WzND6UZH0az/SPowpgyI4E8Z+1zon6f12iWg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:46:00 2025 by rpki-client