$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa File: cc0cfc1a-62af-4984-9516-b068332cb387.roa (raw, json) Hash identifier: TwQTSvFNi9Xo68a7iaUnd564JlWS4VZsElOnNklTFmo= Subject key identifier: E0:49:60:AF:3D:35:A7:25:4B:4C:38:77:51:46:58:F7:D9:0E:46:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FB3CA5156C8FF93A6C27649B6EA9CB093BDCDA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa Signing time: Fri 27 Jun 2025 15:00:19 +0000 ROA not before: Fri 27 Jun 2025 15:00:19 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b3:ca:51:56:c8:ff:93:a6:c2:76:49:b6:ea:9c:b0:93:bd:cd:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 15:00:19 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=fb7aeb3555c797dc7d68407a021950051d6836cbe7148e03b7261812811b780a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cb:8d:ae:df:55:c8:e7:9c:ad:4d:33:4c:3a: 14:99:36:0f:3a:ba:98:e4:d2:b5:d1:14:25:02:98: e0:14:b2:1d:e6:39:64:e9:b3:7c:1c:dd:2a:41:c6: 36:b3:1b:31:af:5c:d9:25:3d:a4:4d:8b:b4:eb:be: bf:3a:70:1b:ce:8e:1a:b9:22:3f:7b:9f:a2:b4:36: 6b:3f:65:77:59:0e:86:29:3a:a7:fc:f0:7a:06:2d: 1e:af:7e:3a:24:c7:ea:1a:12:fe:72:73:c6:46:ed: 1c:10:5e:8f:7e:18:44:2e:c9:f8:07:5e:e7:6d:93: 29:09:fc:cd:82:ab:3e:8d:8b:e9:ac:dd:73:7d:b3: 15:e2:78:05:11:e9:84:76:8c:b5:a8:8f:df:74:de: b6:f8:75:78:a8:5e:ab:cc:d4:11:66:3d:35:e1:79: 84:55:6c:e3:86:0a:83:b9:72:55:c7:b0:fc:18:d9: 8e:67:e9:9f:3f:ca:28:82:a2:2b:bd:92:8b:a7:f1: 12:ae:97:8f:87:4a:30:6f:59:d2:dc:35:1b:ad:03: 6b:30:7d:6a:d0:83:20:6b:2a:9c:cc:7c:0d:d7:6a: 11:a8:b2:c5:81:48:26:7f:5f:1e:18:6e:a9:40:13: 12:af:70:25:e9:a2:9c:90:76:47:9d:a0:82:c0:47: 45:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:49:60:AF:3D:35:A7:25:4B:4C:38:77:51:46:58:F7:D9:0E:46:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:ac:93:dc:bf:d4:2e:53:43:8d:e5:9a:69:73:3d:a3:1e:33: ec:81:5b:95:73:bd:9d:ba:07:6d:96:f4:4b:f3:29:c7:8a:bf: 74:25:84:e1:e0:0b:db:62:21:90:cc:47:b4:03:18:40:0d:03: 4f:61:5d:1e:3f:59:e1:d4:2a:da:5b:1a:84:69:20:f9:92:e0: 0d:30:3b:b0:16:ca:d9:31:b2:04:30:2a:2d:ae:0a:e7:9f:42: 7d:19:4e:a3:a0:b1:db:83:a3:e5:25:b7:99:af:26:4c:b0:52: 91:9d:f8:8a:da:6f:88:4a:94:b8:bb:65:ea:18:7d:85:b6:8d: 85:e6:5e:03:5c:43:ad:2d:57:5f:b1:c1:31:8e:c7:13:98:e7: c0:37:58:64:6a:98:7c:30:43:be:ff:e7:2d:f9:73:51:52:da: 38:d3:8d:cc:b5:2f:3f:80:b2:7c:55:ac:a9:12:6e:60:cb:f5: 3d:c1:4e:e6:40:21:74:e7:97:10:8d:0e:df:3e:dc:db:d3:2f: f2:d9:27:7d:fe:3b:a6:25:6c:f1:2a:e5:24:f0:e1:d8:e0:aa: e4:e8:5f:b8:9c:1a:e3:fc:43:f7:13:2d:8c:1b:3e:83:2e:fa: c9:53:43:7a:97:df:5b:08:22:3c:b0:e6:ad:53:94:4b:bf:51: 05:8a:2b:f9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD7PKUVbI/5OmwnZJtuqcsJO9zaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MTUwMDE5WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjdhZWIzNTU1Yzc5N2RjN2Q2ODQwN2EwMjE5NTAwNTFk NjgzNmNiZTcxNDhlMDNiNzI2MTgxMjgxMWI3ODBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzy42u31XI55ytTTNMOhSZNg86upjk0rXRFCUCmOAUsh3m OWTps3wc3SpBxjazGzGvXNklPaRNi7Trvr86cBvOjhq5Ij97n6K0Nms/ZXdZDoYp Oqf88HoGLR6vfjokx+oaEv5yc8ZG7RwQXo9+GEQuyfgHXudtkykJ/M2Cqz6Ni+ms 3XN9sxXieAUR6YR2jLWoj9903rb4dXioXqvM1BFmPTXheYRVbOOGCoO5clXHsPwY 2Y5n6Z8/yiiCoiu9koun8RKul4+HSjBvWdLcNRutA2swfWrQgyBrKpzMfA3XahGo ssWBSCZ/Xx4YbqlAExKvcCXpopyQdkedoILAR0VnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4Elgrz01pyVLTDh3UUZY99kORqIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjMGNmYzFhLTYyYWYtNDk4NC05NTE2LWIwNjgzMzJjYjM4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4VjANBgkqhkiG9w0BAQsFAAOCAQEAcqyT3L/ULlNDjeWaaXM9ox4z7IFb lXO9nboHbZb0S/Mpx4q/dCWE4eAL22IhkMxHtAMYQA0DT2FdHj9Z4dQq2lsahGkg +ZLgDTA7sBbK2TGyBDAqLa4K559CfRlOo6Cx24Oj5SW3ma8mTLBSkZ34itpviEqU uLtl6hh9hbaNheZeA1xDrS1XX7HBMY7HE5jnwDdYZGqYfDBDvv/nLflzUVLaONON zLUvP4CyfFWsqRJuYMv1PcFO5kAhdOeXEI0O3z7c29Mv8tknff47piVs8SrlJPDh 2OCq5OhfuJwa4/xD9xMtjBs+gy76yVNDepffWwgiPLDmrVOUS79RBYor+Q== -----END CERTIFICATE-----Generated at Thu Jul 3 05:07:32 2025 by rpki-client