$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa File: 847e48cb-589d-4414-90c5-e5f31d38ad1a.roa (raw, json) Hash identifier: GSthcfhfVOGYSlY123d7s9hL7A4Zf6Lt/nt+YuLiwaw= Subject key identifier: B0:D1:8D:34:A8:1E:75:0D:9A:96:97:89:17:49:9B:05:53:D8:A1:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66F66423ADC233BC2285EE2DCC3781C7142C2C54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa Signing time: Mon 23 Jun 2025 15:30:31 +0000 ROA not before: Mon 23 Jun 2025 15:30:31 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f6:64:23:ad:c2:33:bc:22:85:ee:2d:cc:37:81:c7:14:2c:2c:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:30:31 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=edba3aa738e83525ca144ec827b9f11c850beeada365cbb2a991af654a66a381, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:31:1f:8b:4e:71:34:d9:62:34:1a:9c:db: 64:cf:4c:ef:73:2e:9c:25:60:29:0f:d5:23:68:1c: f8:f8:73:fe:ce:7a:94:64:41:75:d9:c3:8b:04:1b: 08:7e:bb:b0:73:c8:bc:67:6d:32:c5:0f:d5:38:85: 64:e1:6d:d2:c9:9b:b7:91:d2:f4:b3:1e:02:3e:40: f7:62:ee:29:e4:98:87:ac:a0:ee:39:c7:66:15:e5: 3c:71:3c:8b:66:9d:8e:86:13:c2:3b:dc:78:a7:d8: 61:1a:63:06:42:47:7e:0f:2c:a5:eb:12:b4:dc:29: e2:c1:34:08:ed:4d:bd:2e:2f:be:fc:27:ed:49:28: ea:2a:da:85:aa:11:d3:2d:9a:e5:39:96:f3:f6:cd: fc:e0:e3:e8:9e:02:23:e2:03:16:d6:0c:5e:48:77: 87:d6:7e:1f:a3:a0:4f:8d:84:8f:14:59:77:d7:28: 19:c4:67:34:91:5c:f0:7d:1a:16:72:2d:7b:ae:69: 69:04:6c:1a:e3:67:51:7d:eb:71:ce:d7:46:c5:f2: 54:95:89:25:fb:74:31:cb:8f:32:ba:88:20:fa:51: b2:42:d3:69:c5:b5:b3:65:4f:3c:54:78:3e:8b:3a: 60:b0:04:61:f9:4b:8e:e7:95:85:ad:53:21:1f:d8: cd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D1:8D:34:A8:1E:75:0D:9A:96:97:89:17:49:9B:05:53:D8:A1:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/847e48cb-589d-4414-90c5-e5f31d38ad1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:89:c0:91:56:b8:64:b1:f8:20:00:19:63:76:45:25:69:5b: 4d:53:41:40:75:21:1c:a0:f5:5a:30:75:f9:9c:0d:af:44:a2: f6:2c:13:8f:55:59:72:02:6e:36:35:83:85:35:ef:e3:de:27: 62:0b:36:5a:31:dd:4f:d8:11:ed:95:fc:c6:2a:ba:8a:ae:90: 00:1b:ba:65:bf:bb:48:bd:f2:9d:e0:d2:73:22:2d:04:b6:94: 12:ae:40:8c:e0:c7:0d:6e:fc:43:c0:c0:d9:53:54:7a:7b:97: ff:51:d9:ca:fb:50:2d:ad:2d:e8:14:4b:67:cd:16:7f:14:4b: 32:d5:93:77:12:23:e4:b9:27:91:5e:cb:80:f8:44:f1:17:61: ec:a5:28:ef:25:d5:be:e6:46:7c:ab:4c:b1:7e:14:f4:e0:52: c2:c3:4d:26:40:ce:d0:60:7d:13:ee:60:ec:07:03:12:5e:b1: b1:f0:1c:b8:a2:79:40:7f:cb:68:d6:ba:1b:f1:cd:91:a0:b6: a9:95:78:fa:4d:11:ac:c9:77:35:ae:c7:9c:0a:86:5e:76:5a: 9a:fb:52:38:45:59:df:dd:eb:89:7b:86:4e:d3:7c:52:16:15: d2:4f:bd:1e:13:14:c8:bc:89:0f:17:23:d1:87:cf:76:0a:fc: b0:a0:d8:27 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZvZkI63CM7wihe4tzDeBxxQsLFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUzMDMxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGJhM2FhNzM4ZTgzNTI1Y2ExNDRlYzgyN2I5ZjExYzg1 MGJlZWFkYTM2NWNiYjJhOTkxYWY2NTRhNjZhMzgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGYzEfi05xNNliNBqc22TPTO9zLpwlYCkP1SNoHPj4c/7O epRkQXXZw4sEGwh+u7BzyLxnbTLFD9U4hWThbdLJm7eR0vSzHgI+QPdi7inkmIes oO45x2YV5TxxPItmnY6GE8I73Hin2GEaYwZCR34PLKXrErTcKeLBNAjtTb0uL778 J+1JKOoq2oWqEdMtmuU5lvP2zfzg4+ieAiPiAxbWDF5Id4fWfh+joE+NhI8UWXfX KBnEZzSRXPB9GhZyLXuuaWkEbBrjZ1F963HO10bF8lSViSX7dDHLjzK6iCD6UbJC 02nFtbNlTzxUeD6LOmCwBGH5S47nlYWtUyEf2M1HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsNGNNKgedQ2alpeJF0mbBVPYoQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0N2U0OGNiLTU4OWQtNDQxNC05MGM1LWU1ZjMxZDM4YWQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41DANBgkqhkiG9w0BAQsFAAOCAQEAiYnAkVa4ZLH4IAAZY3ZFJWlbTVNB QHUhHKD1WjB1+ZwNr0Si9iwTj1VZcgJuNjWDhTXv494nYgs2WjHdT9gR7ZX8xiq6 iq6QABu6Zb+7SL3yneDScyItBLaUEq5AjODHDW78Q8DA2VNUenuX/1HZyvtQLa0t 6BRLZ80WfxRLMtWTdxIj5LknkV7LgPhE8Rdh7KUo7yXVvuZGfKtMsX4U9OBSwsNN JkDO0GB9E+5g7AcDEl6xsfAcuKJ5QH/LaNa6G/HNkaC2qZV4+k0RrMl3Na7HnAqG XnZamvtSOEVZ393riXuGTtN8UhYV0k+9HhMUyLyJDxcj0YfPdgr8sKDYJw== -----END CERTIFICATE-----Generated at Sun Jun 29 08:50:20 2025 by rpki-client