$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa File: 957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa (raw, json) Hash identifier: YPMoPIAwf0+caE5937q7GhOJsZz/QgUmuHuIKPFPUWE= Subject key identifier: B9:20:AB:5D:3C:41:77:45:A7:2B:48:9C:9E:56:F4:EA:0F:6B:B9:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55A37A3AAAC166F496BB706885C45D7548B1248B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa Signing time: Fri 27 Jun 2025 15:00:23 +0000 ROA not before: Fri 27 Jun 2025 15:00:23 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a3:7a:3a:aa:c1:66:f4:96:bb:70:68:85:c4:5d:75:48:b1:24:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 15:00:23 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=d94bb44bce6107c0406cd3fe14747884955c987a93ed8d4b271bd8f9204a138b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ec:07:ce:6c:35:b8:0d:cf:ff:54:08:90:9e: 43:ac:e7:d1:ca:b8:ac:11:cc:f8:bc:68:bc:34:56: 4c:d9:1c:bc:91:49:65:a3:63:10:ee:e2:ed:d9:7c: 8c:b0:b3:9c:38:b6:d5:b2:c1:1c:d3:f0:c8:fc:b9: e9:26:60:a2:70:d5:e7:27:a8:63:2f:54:21:18:50: 02:80:cd:5f:db:cb:3d:24:d8:ae:65:91:1b:2d:a3: 59:8f:01:e7:65:19:be:98:38:fe:9e:69:bc:55:b0: c2:36:75:e5:c5:66:e1:cd:8e:1d:57:be:fd:89:88: 3f:41:24:4e:6a:28:04:19:75:8b:a2:a3:f6:32:c3: e4:b1:3a:4b:41:87:a8:4b:2a:07:66:49:e4:9f:43: 86:54:6c:1f:ca:38:ba:5c:81:b4:b1:6a:2e:75:ea: 9c:0c:5b:91:67:97:01:a5:8a:d2:e1:91:df:f4:ad: fd:04:42:8b:57:55:61:d5:08:45:6d:a1:87:af:a2: c4:a9:bf:ee:01:d1:6b:a5:9a:68:e3:be:9e:25:2d: 55:36:21:66:3b:0d:24:ff:49:14:19:3a:96:c9:70: 65:d5:ac:cb:14:5f:f3:e0:8e:d1:17:48:34:ce:c8: 25:ad:9b:b9:6e:7a:4c:2e:81:ce:65:c9:60:a4:8a: a7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:20:AB:5D:3C:41:77:45:A7:2B:48:9C:9E:56:F4:EA:0F:6B:B9:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 51:49:dd:42:b0:33:44:f8:1a:2c:d5:93:cf:cc:3c:9a:f6:a5: f6:f5:8e:07:62:35:3d:12:a8:26:5f:a1:77:98:99:61:d4:96: 5d:19:12:9d:c5:70:2c:89:73:0a:97:d8:0e:c5:96:c3:76:dd: 73:da:38:9e:e6:2f:d5:9c:b4:3c:33:70:a4:c2:ac:bc:c2:f7: c2:69:4a:61:6b:d4:d1:40:17:e7:45:2f:56:e5:42:d2:d8:81: c4:4e:66:b3:ea:b1:f1:aa:a3:47:b4:67:d9:1f:f5:0e:a9:10: c9:62:a7:4f:64:37:6f:0a:48:49:ee:0a:97:27:bc:e7:83:6d: 58:64:bf:c7:59:a5:52:9f:b8:10:a7:ee:93:ae:10:69:09:d3: 0a:bf:a4:05:ec:e7:8d:dd:1a:0b:d0:ef:46:f4:68:be:24:f8: db:1d:2b:80:fb:9e:8a:3b:d8:45:3f:77:b2:c8:c8:ac:b1:1b: 0d:86:c9:dc:01:a3:6e:f0:c6:42:fe:17:39:65:d1:cd:ec:cd: e7:23:bc:b5:dd:59:4b:e5:ab:ca:f0:c1:7a:2a:0e:48:e3:aa: d9:1d:4d:0a:e3:76:cb:92:00:0e:4c:82:ba:27:0a:de:5a:87: 70:6f:f2:ca:d9:7c:68:fb:5a:76:ab:7f:1b:8a:8d:4a:cf:16: a6:76:ba:a7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVaN6OqrBZvSWu3BohcRddUixJIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MTUwMDIzWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTRiYjQ0YmNlNjEwN2MwNDA2Y2QzZmUxNDc0Nzg4NDk1 NWM5ODdhOTNlZDhkNGIyNzFiZDhmOTIwNGExMzhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM7AfObDW4Dc//VAiQnkOs59HKuKwRzPi8aLw0VkzZHLyR SWWjYxDu4u3ZfIyws5w4ttWywRzT8Mj8uekmYKJw1ecnqGMvVCEYUAKAzV/byz0k 2K5lkRsto1mPAedlGb6YOP6eabxVsMI2deXFZuHNjh1Xvv2JiD9BJE5qKAQZdYui o/Yyw+SxOktBh6hLKgdmSeSfQ4ZUbB/KOLpcgbSxai516pwMW5FnlwGlitLhkd/0 rf0EQotXVWHVCEVtoYevosSpv+4B0Wulmmjjvp4lLVU2IWY7DST/SRQZOpbJcGXV rMsUX/PgjtEXSDTOyCWtm7luekwugc5lyWCkiqf5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuSCrXTxBd0WnK0icnlb06g9ruQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2YwYTc1LTJmZWEtNGZkNi1hYzU3LTFjODc3OTlkYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAUUndQrAzRPgaLNWTz8w8mval9vWO B2I1PRKoJl+hd5iZYdSWXRkSncVwLIlzCpfYDsWWw3bdc9o4nuYv1Zy0PDNwpMKs vML3wmlKYWvU0UAX50UvVuVC0tiBxE5ms+qx8aqjR7Rn2R/1DqkQyWKnT2Q3bwpI Se4Klye854NtWGS/x1mlUp+4EKfuk64QaQnTCr+kBeznjd0aC9DvRvRoviT42x0r gPueijvYRT93ssjIrLEbDYbJ3AGjbvDGQv4XOWXRzezN5yO8td1ZS+WryvDBeioO SOOq2R1NCuN2y5IADkyCuicK3lqHcG/yytl8aPtadqt/G4qNSs8Wpna6pw== -----END CERTIFICATE-----Generated at Tue Jul 1 00:35:35 2025 by rpki-client