$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa File: ee072b22-d511-4e36-bf63-9dea3fed9955.roa (raw, json) Hash identifier: RKcQ1G76FrP2VBpxT6Ielp8/95MvQD8hfIo+xAhZucA= Subject key identifier: CE:EA:0D:D3:BC:26:D5:94:09:56:2F:A0:FD:9F:90:20:39:12:0E:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CDBDA83BCC5270F74F70CE8C0456B006E992C1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa Signing time: Tue 17 Jun 2025 00:20:34 +0000 ROA not before: Tue 17 Jun 2025 00:20:34 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:db:da:83:bc:c5:27:0f:74:f7:0c:e8:c0:45:6b:00:6e:99:2c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:20:34 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=05e1c753e3eb52441f18a2b3f32c3eaa166d8548340c363a8559bce87edfba2a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:22:16:3c:0e:67:e5:a5:4d:60:ee:2e:b9: d8:79:f1:33:36:40:5a:a4:57:0a:c8:4e:b3:87:c5: dc:1d:43:58:a0:23:f7:d7:cf:10:29:2e:4b:53:8d: 4f:16:51:e4:85:2c:64:99:21:4f:9f:46:56:39:57: 51:2b:77:3c:fd:b3:08:84:92:1e:9e:e7:7e:3a:3a: a2:d4:93:bb:48:1c:f7:f4:4c:4b:c4:52:61:5a:d5: c0:ff:bd:73:ea:9d:8e:91:72:89:4b:bc:a7:e9:0a: cb:44:5c:e4:e2:46:7b:0d:0b:2f:d2:4a:c4:72:ab: d9:22:6d:21:96:0d:14:dc:4c:7d:9d:ec:7e:a9:e7: 26:90:fc:53:6b:6e:68:04:84:53:7a:4c:40:ad:08: eb:cd:b5:35:b7:16:a8:57:65:b4:29:40:4f:cf:eb: 1f:7c:47:73:b1:f5:9c:f1:62:89:97:a4:19:c5:72: 72:85:9a:80:04:d4:fa:09:40:85:b9:a7:14:50:d6: c7:98:5d:59:70:10:e0:e4:47:c5:5f:b8:dc:82:6b: 78:f6:df:dd:80:fc:63:53:84:a8:f1:e7:ad:66:80: fe:1a:3d:e7:6a:06:77:8f:08:8e:56:6f:7c:c3:e1: 6c:0a:10:b0:11:0a:03:73:cf:e7:57:db:e6:2b:fc: c9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EA:0D:D3:BC:26:D5:94:09:56:2F:A0:FD:9F:90:20:39:12:0E:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:52:52:7a:34:df:2a:8a:38:58:e9:44:9f:7c:57:62:0d:65: cf:2e:23:73:e5:d2:3c:53:26:ff:5a:77:3c:dd:42:c5:bd:ee: 4d:e0:53:c8:ed:66:75:08:b6:a3:89:1c:40:1d:ab:93:04:62: b2:70:28:1c:bd:e6:69:5a:12:88:9c:5b:90:91:d8:ec:52:28: 43:85:cb:29:6c:34:a2:28:19:95:b9:f1:22:04:ec:8f:66:1e: d1:d8:8e:bd:33:05:d9:8e:31:88:8b:66:1b:e7:10:7e:e4:2b: 11:74:8d:e3:9d:f9:62:c7:dc:be:0d:64:d4:e2:59:5f:a1:15: 1a:e2:86:1a:a4:9f:fa:e2:c3:6c:35:de:af:dc:4d:c8:e1:7e: 12:b5:d8:af:a0:49:fe:65:8a:f6:7a:7e:e0:52:12:89:21:a7: 89:28:c8:76:f4:80:43:3c:d1:82:0e:34:e0:03:72:b7:40:c7: 0b:12:9f:b8:ed:19:7b:a3:ca:3d:55:4b:b0:20:6f:7c:fe:0c: 4a:08:36:df:cf:f6:13:0c:dc:f3:88:d4:fa:70:8c:d2:a7:3d: 1a:b8:d1:bb:b6:1a:0e:fe:9b:46:9f:a3:0d:48:7d:88:25:af: a0:b7:14:9c:bc:ee:e5:9b:fa:7a:de:f8:01:fe:6e:0b:84:e7: d6:0f:09:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDNvag7zFJw909wzowEVrAG6ZLB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAyMDM0WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWUxYzc1M2UzZWI1MjQ0MWYxOGEyYjNmMzJjM2VhYTE2 NmQ4NTQ4MzQwYzM2M2E4NTU5YmNlODdlZGZiYTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9niIWPA5n5aVNYO4uudh58TM2QFqkVwrITrOHxdwdQ1ig I/fXzxApLktTjU8WUeSFLGSZIU+fRlY5V1Erdzz9swiEkh6e5346OqLUk7tIHPf0 TEvEUmFa1cD/vXPqnY6RcolLvKfpCstEXOTiRnsNCy/SSsRyq9kibSGWDRTcTH2d 7H6p5yaQ/FNrbmgEhFN6TECtCOvNtTW3FqhXZbQpQE/P6x98R3Ox9ZzxYomXpBnF cnKFmoAE1PoJQIW5pxRQ1seYXVlwEODkR8VfuNyCa3j2392A/GNThKjx561mgP4a PedqBnePCI5Wb3zD4WwKELARCgNzz+dX2+Yr/MkDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzuoN07wm1ZQJVi+g/Z+QIDkSDpcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMDcyYjIyLWQ1MTEtNGUzNi1iZjYzLTlkZWEzZmVkOTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KDANBgkqhkiG9w0BAQsFAAOCAQEAtFJSejTfKoo4WOlEn3xXYg1lzy4j c+XSPFMm/1p3PN1Cxb3uTeBTyO1mdQi2o4kcQB2rkwRisnAoHL3maVoSiJxbkJHY 7FIoQ4XLKWw0oigZlbnxIgTsj2Ye0diOvTMF2Y4xiItmG+cQfuQrEXSN4535Ysfc vg1k1OJZX6EVGuKGGqSf+uLDbDXer9xNyOF+ErXYr6BJ/mWK9np+4FISiSGniSjI dvSAQzzRgg404ANyt0DHCxKfuO0Ze6PKPVVLsCBvfP4MSgg238/2Ewzc84jU+nCM 0qc9GrjRu7YaDv6bRp+jDUh9iCWvoLcUnLzu5Zv6et74Af5uC4Tn1g8JpA== -----END CERTIFICATE-----Generated at Mon Jun 30 19:52:25 2025 by rpki-client