$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa File: 86b0210e-c29a-4d8e-9093-155ac5d225de.roa (raw, json) Hash identifier: lbQRi+L5s6mk6Ze1uYZuH0I4MkjMWzIIpfqPRZMHRaA= Subject key identifier: 8A:5A:92:24:5C:7A:2C:B1:36:5C:01:D7:CD:DE:22:29:EB:89:FA:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58A1E5C647582A40B6B36BCC45B9E69C1367928F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa Signing time: Fri 27 Jun 2025 15:01:58 +0000 ROA not before: Fri 27 Jun 2025 15:01:58 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.103.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a1:e5:c6:47:58:2a:40:b6:b3:6b:cc:45:b9:e6:9c:13:67:92:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 15:01:58 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=c9f13c69421b695a465f74f42e4b0d681332f117f060d1f8cdfbba1813028b58, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:80:8a:16:91:cf:82:36:0b:0e:80:18:ff:75: 5b:1e:4f:f2:85:36:3e:79:37:db:5a:3c:9f:fb:5e: a6:96:b9:ca:b3:40:39:09:94:a1:d5:a7:68:56:69: bc:64:b0:77:62:bf:59:30:16:6f:84:21:b4:5a:bb: bd:0b:62:06:02:74:06:a7:54:d6:71:f2:f2:13:71: 70:76:7e:ec:13:a5:5c:08:6e:52:a3:e3:67:a5:2b: 02:b8:af:b3:f5:78:8d:e2:40:08:9d:ea:e8:58:c6: 95:72:d9:d6:ad:96:22:ce:19:85:3c:85:ef:5f:e8: 01:f0:1e:0f:ea:3a:80:af:36:6e:7e:35:b2:00:33: d0:75:68:12:55:9d:50:20:94:43:d5:72:fc:42:1c: b2:f3:57:7e:4d:a4:4f:7b:a7:d1:c0:5b:f6:32:da: c0:c0:d6:da:3e:f4:22:e8:4c:82:37:48:f1:2e:87: ff:c2:07:6d:12:bf:b4:58:af:c7:ba:02:2d:d9:8b: 51:b0:10:5e:0d:58:e6:bc:7d:ba:c3:5d:84:72:80: 37:06:31:b9:72:3c:ca:f2:c2:8e:b5:17:02:b9:83: 6a:c5:a5:44:f9:44:f8:b0:28:ea:be:17:7f:d9:59: 15:42:22:b4:28:78:ec:b5:a7:d0:f9:98:39:79:83: 03:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:5A:92:24:5C:7A:2C:B1:36:5C:01:D7:CD:DE:22:29:EB:89:FA:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:89:bc:0a:22:42:43:d9:d1:d0:26:49:b2:36:15:ac:6d:0a: 01:84:be:45:84:8c:26:99:31:6c:52:ee:3a:3e:20:e9:70:13: 3a:1c:69:23:fc:d8:01:be:22:e3:28:e7:45:9c:4f:44:98:ad: 95:46:de:77:b6:fa:c5:1d:3b:ec:f8:bb:8d:74:3b:27:a5:07: d0:31:da:13:dd:5f:cf:72:10:9f:88:d8:6d:38:db:53:5f:e2: 84:99:e8:3b:96:80:3b:5a:5c:e4:04:8e:3e:d3:1d:dd:b7:9b: 0b:4c:bf:36:2a:33:51:1c:bc:aa:0a:ab:7c:b8:2f:8d:2f:59: 4e:ca:e8:0b:1e:89:a9:00:bd:2d:0c:67:31:4d:60:ee:9b:0d: 0f:b3:14:3d:3a:95:24:3a:d5:28:d3:b9:41:ff:1e:bb:bd:14: 3a:89:a8:e1:33:c7:88:9f:7c:e5:bc:4a:3b:d9:11:27:8e:55: a2:4c:56:8e:e5:0c:22:39:c8:70:7c:70:11:1b:ae:bd:bf:26: 8d:ac:4d:09:cd:a8:c1:9e:0d:5a:01:da:e5:22:b4:51:d8:8a: c7:7f:ed:94:bd:63:c0:ba:7b:9b:20:88:fb:36:6c:4d:8d:d1: 3f:eb:38:8d:bf:9b:3e:0f:27:74:6f:3f:f4:e4:00:ed:71:b7: f0:15:fa:55 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWKHlxkdYKkC2s2vMRbnmnBNnko8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MTUwMTU4WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWYxM2M2OTQyMWI2OTVhNDY1Zjc0ZjQyZTRiMGQ2ODEz MzJmMTE3ZjA2MGQxZjhjZGZiYmExODEzMDI4YjU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbgIoWkc+CNgsOgBj/dVseT/KFNj55N9taPJ/7XqaWucqz QDkJlKHVp2hWabxksHdiv1kwFm+EIbRau70LYgYCdAanVNZx8vITcXB2fuwTpVwI blKj42elKwK4r7P1eI3iQAid6uhYxpVy2datliLOGYU8he9f6AHwHg/qOoCvNm5+ NbIAM9B1aBJVnVAglEPVcvxCHLLzV35NpE97p9HAW/Yy2sDA1to+9CLoTII3SPEu h//CB20Sv7RYr8e6Ai3Zi1GwEF4NWOa8fbrDXYRygDcGMblyPMrywo61FwK5g2rF pUT5RPiwKOq+F3/ZWRVCIrQoeOy1p9D5mDl5gwNPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUilqSJFx6LLE2XAHXzd4iKeuJ+m8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2YjAyMTBlLWMyOWEtNGQ4ZS05MDkzLTE1NWFjNWQyMjVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ZzANBgkqhkiG9w0BAQsFAAOCAQEAQom8CiJCQ9nR0CZJsjYVrG0KAYS+ RYSMJpkxbFLuOj4g6XATOhxpI/zYAb4i4yjnRZxPRJitlUbed7b6xR077Pi7jXQ7 J6UH0DHaE91fz3IQn4jYbTjbU1/ihJnoO5aAO1pc5ASOPtMd3bebC0y/NiozURy8 qgqrfLgvjS9ZTsroCx6JqQC9LQxnMU1g7psND7MUPTqVJDrVKNO5Qf8eu70UOomo 4TPHiJ985bxKO9kRJ45VokxWjuUMIjnIcHxwERuuvb8mjaxNCc2owZ4NWgHa5SK0 UdiKx3/tlL1jwLp7myCI+zZsTY3RP+s4jb+bPg8ndG8/9OQA7XG38BX6VQ== -----END CERTIFICATE-----Generated at Tue Jul 1 11:06:07 2025 by rpki-client