$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa File: 957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa (raw, json) Hash identifier: xj3ommMwwm9x6v9+WlDWR/Vw7YXJOKWZGUOe0nEAjW8= Subject key identifier: E4:5B:AB:90:02:BE:59:E2:5D:0C:52:F4:47:BC:A8:5B:57:51:65:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3182F5C5E276BA23506EBED7CB253A040E230144 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa Signing time: Mon 18 Aug 2025 15:51:06 +0000 ROA not before: Mon 18 Aug 2025 15:51:06 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:82:f5:c5:e2:76:ba:23:50:6e:be:d7:cb:25:3a:04:0e:23:01:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:51:06 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=c0b2473e0eb8858363cd8e75c2e8407235d8115b04e1cac2a3d54355abd8ca73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:82:7e:c6:f0:47:7c:ee:84:b2:01:4b:b1: b5:16:b1:60:c4:8c:b4:cf:80:43:9e:ae:8b:1a:18: cb:24:75:5c:5d:df:69:3b:58:02:dc:52:e6:3e:53: 41:ca:27:96:92:d7:56:f6:d8:ed:6f:69:ba:fc:19: c6:fc:4c:ac:70:73:c4:74:43:2d:99:c4:2e:6e:b7: 1d:90:5f:86:ad:ab:07:b6:30:7b:49:92:79:f7:fb: 56:1e:8a:62:64:a0:b5:e9:35:22:d8:ca:62:ed:3d: 09:d9:be:cb:d4:0e:46:0a:82:e1:54:6d:a3:90:c9: bf:97:d8:bb:aa:30:1d:32:bd:21:4b:3d:5b:7a:4b: ce:94:0f:4c:dc:0b:fe:b1:2e:d3:e5:cd:96:fa:a6: 8e:3d:66:0a:70:5e:0c:40:b1:46:a9:e1:89:be:ce: 86:b7:8f:2f:8a:a0:60:1f:26:5d:2e:57:b3:cd:cf: fb:e0:b2:9e:f8:7a:44:ab:92:ee:50:0d:80:cc:11: ef:f9:8b:8c:ec:ed:e9:28:15:fc:3f:db:ee:9a:0e: 49:c5:89:7b:33:7d:6d:22:26:9b:ae:68:bc:aa:5e: 91:3c:fd:ce:5f:95:e6:77:99:d5:8c:f7:ec:67:e9: 86:da:74:4a:ba:89:31:0f:4e:c3:94:86:df:b2:09: cc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5B:AB:90:02:BE:59:E2:5D:0C:52:F4:47:BC:A8:5B:57:51:65:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:75:e8:97:31:52:9b:5c:a4:01:cf:cd:b5:2a:92:7d:41:69: f0:77:39:db:1a:64:9f:7b:2a:f8:26:16:2d:54:ff:42:c9:6b: f7:6e:88:32:91:02:6e:8f:cb:24:5a:34:ea:35:5a:fb:2b:bd: 0e:ba:eb:17:88:37:12:05:05:31:6d:04:ec:16:2d:bc:1a:aa: 22:0d:cc:a5:e8:4e:8c:75:6f:ba:c6:fb:2f:71:d1:6b:92:f1: 7e:3e:ac:be:79:e5:20:e2:a5:17:89:56:73:fa:bc:5c:07:fd: 58:51:a6:48:1c:d1:fd:d9:26:2f:a5:a3:68:42:22:47:9c:df: 73:0e:c6:dd:f9:55:ab:9b:d5:a1:13:f6:5c:b5:af:a1:8f:a7: 68:84:33:9a:1e:39:34:ad:16:a3:e7:65:e6:b8:d0:80:2a:9c: 3f:52:ec:d9:cf:6b:2a:02:4e:e8:9f:fe:05:62:00:c6:7f:86: a4:ac:2f:de:88:9e:4e:67:3d:64:16:55:48:87:4b:bc:a3:a6: 9c:13:df:fe:3f:4a:06:cc:d4:ac:0f:27:20:e4:7c:79:93:9a: 41:cb:62:8c:fc:75:4a:1d:cf:c7:20:85:c0:cb:5b:62:78:eb: d7:1d:c7:3d:48:24:59:43:28:5e:c6:f1:ad:83:2c:ff:0e:00: 6f:97:d2:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMYL1xeJ2uiNQbr7XyyU6BA4jAUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MTA2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGIyNDczZTBlYjg4NTgzNjNjZDhlNzVjMmU4NDA3MjM1 ZDgxMTViMDRlMWNhYzJhM2Q1NDM1NWFiZDhjYTczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0vIJ+xvBHfO6EsgFLsbUWsWDEjLTPgEOerosaGMskdVxd 32k7WALcUuY+U0HKJ5aS11b22O1vabr8Gcb8TKxwc8R0Qy2ZxC5utx2QX4atqwe2 MHtJknn3+1YeimJkoLXpNSLYymLtPQnZvsvUDkYKguFUbaOQyb+X2LuqMB0yvSFL PVt6S86UD0zcC/6xLtPlzZb6po49ZgpwXgxAsUap4Ym+zoa3jy+KoGAfJl0uV7PN z/vgsp74ekSrku5QDYDMEe/5i4zs7ekoFfw/2+6aDknFiXszfW0iJpuuaLyqXpE8 /c5fleZ3mdWM9+xn6YbadEq6iTEPTsOUht+yCcxZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5FurkAK+WeJdDFL0R7yoW1dRZbQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2YwYTc1LTJmZWEtNGZkNi1hYzU3LTFjODc3OTlkYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAaXXolzFSm1ykAc/NtSqSfUFp8Hc5 2xpkn3sq+CYWLVT/Qslr926IMpECbo/LJFo06jVa+yu9DrrrF4g3EgUFMW0E7BYt vBqqIg3MpehOjHVvusb7L3HRa5Lxfj6svnnlIOKlF4lWc/q8XAf9WFGmSBzR/dkm L6WjaEIiR5zfcw7G3flVq5vVoRP2XLWvoY+naIQzmh45NK0Wo+dl5rjQgCqcP1Ls 2c9rKgJO6J/+BWIAxn+GpKwv3oieTmc9ZBZVSIdLvKOmnBPf/j9KBszUrA8nIOR8 eZOaQctijPx1Sh3PxyCFwMtbYnjr1x3HPUgkWUMoXsbxrYMs/w4Ab5fSxg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:49 2025 by rpki-client