$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b31a2247-59e9-4e69-bf7c-c55f87670f23.roa File: b31a2247-59e9-4e69-bf7c-c55f87670f23.roa (raw, json) Hash identifier: 0e8CnDRy3ww5Cb6tHA2d2Coc5qzXGiBUPqLLi0exvrk= Subject key identifier: 8B:73:72:12:1A:8B:8B:C8:02:16:A4:D9:F3:6C:FE:E2:BA:F7:9D:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4214315F0DD1D93749B7919697DBF9EA368BA08B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b31a2247-59e9-4e69-bf7c-c55f87670f23.roa Signing time: Mon 16 Jun 2025 15:21:19 +0000 ROA not before: Mon 16 Jun 2025 15:21:19 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.211.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:14:31:5f:0d:d1:d9:37:49:b7:91:96:97:db:f9:ea:36:8b:a0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:21:19 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=0881e30bf7f798fb9297148cd4c4eb7edf0b8b9f0814024d7eca0d470dd72eb5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:f9:ac:b9:26:d7:15:4d:82:1f:31:5f:d0: 83:4f:2c:20:16:89:c3:24:75:b5:76:57:c7:a5:e2: e8:32:ee:3f:35:df:b7:7d:b3:88:79:5a:3b:8f:5d: 41:e9:ed:cc:ff:f9:14:3f:22:b9:46:6f:af:1d:51: 4d:fb:64:f8:3d:42:ce:ba:31:0c:5d:27:a8:20:ec: b1:09:ad:c0:93:42:56:e3:81:50:8f:3c:ff:36:d1: 67:97:fe:be:68:c9:41:89:ea:c1:20:42:c0:79:84: 0b:fa:e1:e8:5b:90:41:c3:56:56:fe:dc:3f:54:61: 99:09:5d:85:73:fc:49:51:ab:6a:57:06:5b:b8:4a: c7:7e:18:65:e6:c3:75:71:92:1d:b9:b3:80:67:82: d6:af:f4:83:2f:2c:77:71:d4:40:b6:46:ff:15:80: c7:75:ab:ef:b1:a9:08:d8:5a:92:15:50:81:79:dd: fa:f8:57:47:4d:98:b0:56:c7:70:cb:76:19:85:12: 5c:8a:07:9c:5e:46:ed:e4:39:6d:f9:a8:b9:bc:69: e2:7d:ac:0b:5a:b4:da:4f:52:31:38:95:de:bc:e5: f3:97:d0:25:57:cd:e7:1f:e8:eb:65:84:77:c7:f3: 6d:0e:e2:7f:32:c0:3f:ba:ce:f8:62:dc:56:cf:9a: 85:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:73:72:12:1A:8B:8B:C8:02:16:A4:D9:F3:6C:FE:E2:BA:F7:9D:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b31a2247-59e9-4e69-bf7c-c55f87670f23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.211.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:94:e5:28:7a:c2:05:e3:ab:13:22:22:fb:5c:68:88:90:6b: 9d:24:19:d3:d1:fb:c2:1d:32:ed:7d:93:d3:75:fd:ff:fa:d8: 45:23:3a:68:94:b6:b5:49:ff:27:2b:13:1a:c2:5d:f8:43:5c: d7:e0:0c:b9:d8:3d:fc:3e:6d:d0:fb:cc:09:24:88:3d:61:e2: f7:a6:40:9f:46:09:4a:a7:da:b6:29:1a:a4:91:eb:35:db:51: 4a:19:71:de:27:57:67:37:53:e0:25:ba:2d:00:a1:df:49:8c: c0:aa:c9:18:6f:cf:25:3d:b2:51:79:36:91:fd:63:d9:23:17: 64:5f:c5:a5:e4:2b:ce:ff:4e:bc:71:b4:29:82:e2:14:bf:a1: e9:7a:47:72:d1:c4:41:f3:75:f9:05:fa:09:b5:7c:45:4c:2c: fa:c7:50:56:bd:c9:c7:83:e8:8e:ba:2e:72:01:ad:fc:98:ae: 5a:0f:91:03:dc:42:7e:4e:4e:7f:62:e4:7a:9a:be:2e:b5:3c: 9b:23:14:8d:a6:64:01:dc:e1:2c:4e:6c:ee:78:33:7f:8e:c4: 0c:f5:49:92:a3:24:a9:69:36:1c:c0:97:4d:64:ce:5e:f9:2e: 60:69:eb:c3:11:01:a4:02:f7:af:ba:36:2b:47:5a:4d:0d:a1: 8a:3c:47:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQhQxXw3R2TdJt5GWl9v56jaLoIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUyMTE5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODgxZTMwYmY3Zjc5OGZiOTI5NzE0OGNkNGM0ZWI3ZWRm MGI4YjlmMDgxNDAyNGQ3ZWNhMGQ0NzBkZDcyZWI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC64vmsuSbXFU2CHzFf0INPLCAWicMkdbV2V8el4ugy7j81 37d9s4h5WjuPXUHp7cz/+RQ/IrlGb68dUU37ZPg9Qs66MQxdJ6gg7LEJrcCTQlbj gVCPPP820WeX/r5oyUGJ6sEgQsB5hAv64ehbkEHDVlb+3D9UYZkJXYVz/ElRq2pX Blu4Ssd+GGXmw3Vxkh25s4Bngtav9IMvLHdx1EC2Rv8VgMd1q++xqQjYWpIVUIF5 3fr4V0dNmLBWx3DLdhmFElyKB5xeRu3kOW35qLm8aeJ9rAtatNpPUjE4ld685fOX 0CVXzecf6OtlhHfH820O4n8ywD+6zvhi3FbPmoVDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi3NyEhqLi8gCFqTZ82z+4rr3nQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMWEyMjQ3LTU5ZTktNGU2OS1iZjdjLWM1NWY4NzY3MGYyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA40zANBgkqhkiG9w0BAQsFAAOCAQEAppTlKHrCBeOrEyIi+1xoiJBrnSQZ 09H7wh0y7X2T03X9//rYRSM6aJS2tUn/JysTGsJd+ENc1+AMudg9/D5t0PvMCSSI PWHi96ZAn0YJSqfatikapJHrNdtRShlx3idXZzdT4CW6LQCh30mMwKrJGG/PJT2y UXk2kf1j2SMXZF/FpeQrzv9OvHG0KYLiFL+h6XpHctHEQfN1+QX6CbV8RUws+sdQ Vr3Jx4PojroucgGt/JiuWg+RA9xCfk5Of2Lkepq+LrU8myMUjaZkAdzhLE5s7ngz f47EDPVJkqMkqWk2HMCXTWTOXvkuYGnrwxEBpAL3r7o2K0daTQ2hijxH4A== -----END CERTIFICATE-----Generated at Sun Jun 29 03:20:11 2025 by rpki-client