$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa File: a5a28861-ee8e-44d9-b363-30a1f04e1125.roa (raw, json) Hash identifier: nyIIU8zNhWXeZjxfRQIhzcCax3Xaw1epyb436wknplE= Subject key identifier: CF:FD:20:90:30:B3:01:95:83:6B:D2:A1:C5:2A:73:0C:50:E5:80:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2517CF7004C49AB3CA1CAC1BD563F3C9EC18D894 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa Signing time: Mon 16 Jun 2025 15:21:46 +0000 ROA not before: Mon 16 Jun 2025 15:21:46 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.163.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:17:cf:70:04:c4:9a:b3:ca:1c:ac:1b:d5:63:f3:c9:ec:18:d8:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:21:46 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=4e9eedbca1e28689f9c7aee11a9f7ecc1c9be6e29e3f1110dc9d3e2572311d31, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:bf:ee:68:b9:89:0e:a4:ad:4a:fe:00:4e:53: 49:0a:b9:03:85:39:f7:8f:d5:21:e0:30:e4:8b:01: 49:be:be:6a:e3:ba:52:ef:d5:7f:d9:40:a1:77:96: 9e:91:c5:be:8d:00:a2:eb:37:c2:fa:3b:92:6b:17: aa:63:fb:54:78:78:b9:d3:65:ce:86:91:18:12:c0: 4e:ea:60:9c:43:e6:b6:f3:62:ef:99:2e:c6:7d:63: 64:b6:a6:0c:ab:d6:c2:10:8b:54:93:bd:e5:d7:b2: c2:8e:71:6a:84:5d:6e:9e:b5:3f:09:01:4b:be:7c: 6e:78:c9:be:9b:f9:b4:d7:13:5c:51:fd:b0:b8:2c: 6b:c7:4c:86:1d:06:e7:f9:5f:ee:90:d2:4f:fb:83: 12:35:1c:21:16:cd:76:e0:b7:5e:da:4f:a2:e1:76: 82:31:d2:60:85:7f:ad:85:70:80:d4:b6:53:de:37: 03:7c:5d:86:f2:4e:0d:d4:72:ca:0f:b4:9e:ca:1a: 9d:25:50:7b:0c:b5:81:c8:0f:92:bc:2a:82:1c:13: 87:bf:9d:c9:e5:91:78:29:6c:36:09:cc:93:e2:15: bb:be:25:e1:d6:2c:6b:13:bf:60:c9:43:e0:3f:1c: b7:f4:49:c8:31:c8:32:d1:1b:87:23:17:ea:d6:da: 92:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FD:20:90:30:B3:01:95:83:6B:D2:A1:C5:2A:73:0C:50:E5:80:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.163.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:8a:05:d8:5a:64:fd:81:f8:79:d7:12:92:8c:25:ad:5f:7b: ad:86:b5:83:35:b9:80:b3:68:54:f7:b9:4e:79:41:b8:30:fd: 31:7e:c0:3b:31:0c:b5:5a:87:ed:ee:b6:c0:01:85:30:c0:4f: ff:08:a0:d3:44:7e:81:6a:d7:b2:51:8d:6f:aa:38:90:e0:ea: aa:12:96:4e:34:9e:8b:6f:63:81:a8:5c:cb:48:4b:dc:41:8e: 71:43:b1:5e:c7:14:56:2a:91:8c:cc:b3:b9:14:2d:6a:0f:c7: 59:13:7d:85:00:41:7d:9c:38:17:69:02:0d:ce:9e:e0:ce:6c: 37:8b:f0:b7:03:05:ef:af:14:ef:e2:be:fe:e3:99:a4:ce:0e: f3:fb:6d:af:ca:e4:19:6a:ca:a1:22:24:2c:5b:f4:ac:a7:0e: f1:a9:c7:bd:b5:a7:74:ef:5e:18:c1:33:93:dd:71:f9:ab:f5: fb:72:4f:2b:2b:f1:f4:48:bd:a0:5f:0f:17:c5:ea:30:47:8a: 4b:7a:1e:06:a6:60:a4:c7:78:0b:cb:70:9b:a2:ed:8a:90:65: 72:0b:f8:ac:5f:8f:9d:78:b9:12:86:0d:2c:b3:d0:f6:82:af: a4:bb:df:ea:4d:35:6f:1e:28:1d:cf:c3:9e:ee:26:ee:36:a2: 8c:d7:d3:4b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJRfPcATEmrPKHKwb1WPzyewY2JQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUyMTQ2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTllZWRiY2ExZTI4Njg5ZjljN2FlZTExYTlmN2VjYzFj OWJlNmUyOWUzZjExMTBkYzlkM2UyNTcyMzExZDMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqv+5ouYkOpK1K/gBOU0kKuQOFOfeP1SHgMOSLAUm+vmrj ulLv1X/ZQKF3lp6Rxb6NAKLrN8L6O5JrF6pj+1R4eLnTZc6GkRgSwE7qYJxD5rbz Yu+ZLsZ9Y2S2pgyr1sIQi1STveXXssKOcWqEXW6etT8JAUu+fG54yb6b+bTXE1xR /bC4LGvHTIYdBuf5X+6Q0k/7gxI1HCEWzXbgt17aT6LhdoIx0mCFf62FcIDUtlPe NwN8XYbyTg3UcsoPtJ7KGp0lUHsMtYHID5K8KoIcE4e/ncnlkXgpbDYJzJPiFbu+ JeHWLGsTv2DJQ+A/HLf0ScgxyDLRG4cjF+rW2pLpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUz/0gkDCzAZWDa9KhxSpzDFDlgAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTI4ODYxLWVlOGUtNDRkOS1iMzYzLTMwYTFmMDRlMTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ozANBgkqhkiG9w0BAQsFAAOCAQEAFooF2Fpk/YH4edcSkowlrV97rYa1 gzW5gLNoVPe5TnlBuDD9MX7AOzEMtVqH7e62wAGFMMBP/wig00R+gWrXslGNb6o4 kODqqhKWTjSei29jgahcy0hL3EGOcUOxXscUViqRjMyzuRQtag/HWRN9hQBBfZw4 F2kCDc6e4M5sN4vwtwMF768U7+K+/uOZpM4O8/ttr8rkGWrKoSIkLFv0rKcO8anH vbWndO9eGMEzk91x+av1+3JPKyvx9Ei9oF8PF8XqMEeKS3oeBqZgpMd4C8twm6Lt ipBlcgv4rF+PnXi5EoYNLLPQ9oKvpLvf6k01bx4oHc/Dnu4m7jaijNfTSw== -----END CERTIFICATE-----Generated at Mon Jun 30 21:07:26 2025 by rpki-client