$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa File: b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json) Hash identifier: oNbfoKqJHa4cKeQaM5P98e6Cf6vlcNEqy+df7Z6rEgk= Subject key identifier: B2:A8:C5:6B:A2:B1:50:79:DD:1B:A3:7E:10:44:2A:37:FB:5A:F8:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 690E2BEE86BB92CBC434B2C10A8DB63F634D7231 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa Signing time: Tue 12 Aug 2025 00:31:42 +0000 ROA not before: Tue 12 Aug 2025 00:31:42 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0e:2b:ee:86:bb:92:cb:c4:34:b2:c1:0a:8d:b6:3f:63:4d:72:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:31:42 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=076f67d08d28ae8040134fcd5a2030ca8f54467ce0b0cb378ac622489893fb3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:1f:db:77:60:6d:23:cc:30:12:e0:71:ad: 7e:fc:9e:ef:11:33:72:15:2f:a3:cf:4e:ce:8e:cb: 6b:4b:40:2e:ad:9f:00:05:3c:ae:6c:fb:b1:8c:10: 92:55:27:31:3c:2f:c3:8a:6b:7a:49:5a:b7:87:b0: 19:18:b0:34:56:43:88:52:87:11:9e:58:f8:a6:f4: 22:e2:d7:c7:16:5d:cd:20:35:8f:7f:38:0a:74:09: 45:b0:ed:bf:a6:0b:ff:f5:a5:47:89:77:f0:57:9d: ea:40:73:42:ac:98:02:32:13:84:e0:14:61:5a:fd: e0:d9:dd:76:86:2f:07:89:45:07:86:c8:34:48:f0: 4a:4f:77:cb:aa:88:44:60:6f:e5:c2:48:53:1a:40: 07:c7:df:8a:9e:a5:54:93:21:ff:ff:14:91:90:bc: 73:e7:1d:54:b5:46:dd:74:a9:c4:81:2c:43:74:66: 50:08:e1:19:14:62:d4:c0:7f:c9:79:0b:29:a6:27: 1f:f9:a0:3d:f9:59:34:bf:97:32:6d:d4:c9:fc:56: a8:e3:a9:57:b7:a0:87:30:34:88:9d:79:c3:3d:db: 2e:ba:65:68:47:e5:c5:d9:5f:60:f4:50:73:55:5c: e6:01:2e:48:d4:b6:df:bb:9d:ae:12:57:b3:7a:d9: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A8:C5:6B:A2:B1:50:79:DD:1B:A3:7E:10:44:2A:37:FB:5A:F8:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:92:05:6d:17:d6:2b:6c:cc:d3:91:f6:01:fc:8e:fc:53:f2: 0a:e3:a0:e7:58:4f:88:4e:26:bc:4f:1a:19:15:cc:cc:0d:97: 44:d2:d8:e5:cc:c6:24:1b:46:c9:f6:7d:d9:6e:81:78:c5:70: e3:64:d8:e9:05:6c:2a:11:4c:f4:cf:20:9c:79:8e:2a:62:e5: 0d:c3:28:c5:96:f6:ba:4d:b8:67:38:87:d8:f6:c3:1d:f9:df: b8:8d:23:2a:3d:04:ae:eb:7d:67:73:be:2d:12:2a:3f:13:45: f9:7f:ab:23:99:cf:a6:6f:1c:4a:c1:12:08:e5:43:07:95:17: b7:ac:f1:a2:a8:f1:87:ff:5e:0a:18:5e:67:75:5a:ff:c8:30: cd:3f:f2:2b:eb:f9:05:42:26:6f:31:b9:e8:82:69:ef:52:c9: 9e:73:9f:29:cc:9d:32:43:3e:21:cc:77:1b:3c:8a:6b:c4:12: 37:64:4a:48:44:26:f3:6c:dd:f2:ac:09:76:c3:c1:e5:8f:95: ac:78:54:da:ac:5f:99:33:da:42:ff:b8:54:5e:f7:ff:d8:1f: 00:f9:ce:b5:6b:2b:ef:c6:da:a5:fb:c8:9f:d6:b6:72:26:87: 95:9e:92:ab:82:75:7c:59:31:c1:d1:f3:f9:a0:7c:1d:4e:52: cc:92:41:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaQ4r7oa7ksvENLLBCo22P2NNcjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMTQyWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzZmNjdkMDhkMjhhZTgwNDAxMzRmY2Q1YTIwMzBjYThm NTQ0NjdjZTBiMGNiMzc4YWM2MjI0ODk4OTNmYjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA8B/bd2BtI8wwEuBxrX78nu8RM3IVL6PPTs6Oy2tLQC6t nwAFPK5s+7GMEJJVJzE8L8OKa3pJWreHsBkYsDRWQ4hShxGeWPim9CLi18cWXc0g NY9/OAp0CUWw7b+mC//1pUeJd/BXnepAc0KsmAIyE4TgFGFa/eDZ3XaGLweJRQeG yDRI8EpPd8uqiERgb+XCSFMaQAfH34qepVSTIf//FJGQvHPnHVS1Rt10qcSBLEN0 ZlAI4RkUYtTAf8l5CymmJx/5oD35WTS/lzJt1Mn8VqjjqVe3oIcwNIidecM92y66 ZWhH5cXZX2D0UHNVXOYBLkjUtt+7na4SV7N62RaVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsqjFa6KxUHndG6N+EEQqN/ta+KYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAcZIFbRfWK2zM05H2AfyO/FPyCuOg 51hPiE4mvE8aGRXMzA2XRNLY5czGJBtGyfZ92W6BeMVw42TY6QVsKhFM9M8gnHmO KmLlDcMoxZb2uk24ZziH2PbDHfnfuI0jKj0Erut9Z3O+LRIqPxNF+X+rI5nPpm8c SsESCOVDB5UXt6zxoqjxh/9eChheZ3Va/8gwzT/yK+v5BUImbzG56IJp71LJnnOf KcydMkM+Icx3GzyKa8QSN2RKSEQm82zd8qwJdsPB5Y+VrHhU2qxfmTPaQv+4VF73 /9gfAPnOtWsr78bapfvIn9a2ciaHlZ6Sq4J1fFkxwdHz+aB8HU5SzJJBpA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:18:13 2025 by rpki-client