$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa File: b21c677d-50e7-454f-babb-5348e47e691d.roa (raw, json) Hash identifier: 3b7+XPQ9Hxiqlfv3thNUT5TlFvj5WX8tMeIQkeai6PQ= Subject key identifier: 73:F8:A9:33:D4:45:D1:C4:06:8F:33:0B:9C:AF:82:EB:68:65:55:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0763193E2E2CCFCF7C6EC0FFA80487B5264F87F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa Signing time: Mon 18 Aug 2025 15:50:22 +0000 ROA not before: Mon 18 Aug 2025 15:50:22 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.185.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:63:19:3e:2e:2c:cf:cf:7c:6e:c0:ff:a8:04:87:b5:26:4f:87:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:50:22 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=9e04aac414374ab4beeb5606a432cb3ec5f6c8ec0de9ad87ba89e552aaf05c35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:b2:94:85:e2:92:15:53:9b:02:02:cb:e1: f2:ed:26:60:f3:fe:a7:c3:f2:ab:87:e1:75:9a:9d: 75:1b:13:d7:86:b2:81:6d:f2:28:95:cc:ad:54:0d: fc:20:b6:4d:f2:65:23:dc:75:e2:b6:6d:e4:81:5b: 21:09:8f:91:89:c5:0c:99:83:f0:77:04:84:08:ca: 09:8e:d0:26:13:79:21:a0:e0:e5:5a:20:ee:52:b6: fb:da:59:24:ec:dd:83:e6:16:ec:1d:55:dd:1f:c9: 7b:d6:cc:49:a8:7f:4f:91:df:04:f3:4b:6f:45:30: d2:62:db:11:bf:e6:62:a2:e4:e1:16:eb:0c:4a:31: 0b:17:eb:9f:21:83:f0:d2:fe:09:96:db:33:bc:87: 7b:9c:6a:ea:cd:a7:b3:b3:76:30:8a:62:74:c7:fc: 01:e1:b9:7d:8a:cc:86:6f:f2:a3:ce:66:b0:a1:b7: d0:6d:26:f6:8a:13:73:25:0c:58:bd:fe:52:3d:23: 89:b9:b9:71:f0:49:c0:24:dd:8b:d2:5e:fd:99:ff: 5f:e5:f2:8c:28:cc:48:c3:95:48:2c:4b:41:f0:a8: 3e:c4:2a:4d:fb:82:49:c3:c2:ef:43:52:b6:f0:3a: 65:76:88:f0:2a:2a:1c:62:96:e7:9d:b1:e6:0f:1a: e3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F8:A9:33:D4:45:D1:C4:06:8F:33:0B:9C:AF:82:EB:68:65:55:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.185.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:2b:bd:db:c5:4e:3b:bc:be:4b:6c:1f:b0:c1:79:3e:78:9f: 0a:54:08:64:d9:2a:7e:32:f9:4a:5f:7f:f5:c8:4c:8f:68:06: 5f:66:42:9d:4d:1b:54:4a:37:fe:b2:b0:a9:ef:a7:26:be:94: d0:c0:03:1f:ac:2d:b3:30:dd:4b:7f:e7:20:31:6c:6d:1f:38: 46:18:ab:77:1e:92:78:c3:8a:fd:28:e2:32:97:0b:b5:ca:71: 5a:98:fe:82:0e:7a:40:ad:8e:3d:90:2c:f5:32:2d:70:5a:be: 46:ef:ac:04:a1:13:7b:a6:55:4b:30:9d:3e:d2:85:d6:51:b7: 26:0d:d9:ec:5b:70:b8:02:ff:d5:e5:f5:45:63:f2:0a:8d:61: 29:b7:6b:01:a1:fa:bc:ce:e8:6d:54:6d:6a:7e:05:17:c5:b5: bd:53:c3:40:b6:41:00:35:d5:68:f8:4e:89:6b:24:b9:f1:b0: ea:e3:58:44:af:6d:d0:b0:0a:3b:54:09:49:f2:13:e0:ef:7b: 6e:2d:c8:03:2a:1a:0d:f3:ab:76:29:61:9f:d3:5e:93:d6:43: f3:8e:11:63:c7:f5:44:0f:3d:11:59:c9:73:46:57:04:10:25: 9a:9e:b8:9a:a6:c1:14:26:d8:00:8f:22:08:65:a7:91:1a:fa: b8:20:87:56 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB2MZPi4sz898bsD/qASHtSZPh/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MDIyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTA0YWFjNDE0Mzc0YWI0YmVlYjU2MDZhNDMyY2IzZWM1 ZjZjOGVjMGRlOWFkODdiYTg5ZTU1MmFhZjA1YzM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC177KUheKSFVObAgLL4fLtJmDz/qfD8quH4XWanXUbE9eG soFt8iiVzK1UDfwgtk3yZSPcdeK2beSBWyEJj5GJxQyZg/B3BIQIygmO0CYTeSGg 4OVaIO5StvvaWSTs3YPmFuwdVd0fyXvWzEmof0+R3wTzS29FMNJi2xG/5mKi5OEW 6wxKMQsX658hg/DS/gmW2zO8h3ucaurNp7OzdjCKYnTH/AHhuX2KzIZv8qPOZrCh t9BtJvaKE3MlDFi9/lI9I4m5uXHwScAk3YvSXv2Z/1/l8owozEjDlUgsS0HwqD7E Kk37gknDwu9DUrbwOmV2iPAqKhxiluedseYPGuPBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUc/ipM9RF0cQGjzMLnK+C62hlVRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMWM2NzdkLTUwZTctNDU0Zi1iYWJiLTUzNDhlNDdlNjkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uTANBgkqhkiG9w0BAQsFAAOCAQEAqCu928VOO7y+S2wfsMF5PnifClQI ZNkqfjL5Sl9/9chMj2gGX2ZCnU0bVEo3/rKwqe+nJr6U0MADH6wtszDdS3/nIDFs bR84Rhirdx6SeMOK/SjiMpcLtcpxWpj+gg56QK2OPZAs9TItcFq+Ru+sBKETe6ZV SzCdPtKF1lG3Jg3Z7FtwuAL/1eX1RWPyCo1hKbdrAaH6vM7obVRtan4FF8W1vVPD QLZBADXVaPhOiWskufGw6uNYRK9t0LAKO1QJSfIT4O97bi3IAyoaDfOrdilhn9Ne k9ZD844RY8f1RA89EVnJc0ZXBBAlmp64mqbBFCbYAI8iCGWnkRr6uCCHVg== -----END CERTIFICATE-----Generated at Sat Aug 23 12:24:04 2025 by rpki-client