$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa File: 4eaefb9e-609a-4802-b06c-b7139eb4af45.roa (raw, json) Hash identifier: CsHem29LACoKGSF1w+8LB1j9I/YpI+SwZeylx/w8odk= Subject key identifier: 11:1E:3E:B6:34:58:DC:60:E4:FF:9E:FE:97:7C:FA:C4:A9:EF:C9:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D3AACA6358E3CC3D2B5CFF4D61DF40FAA68BEF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa Signing time: Mon 14 Jul 2025 15:11:58 +0000 ROA not before: Mon 14 Jul 2025 15:11:58 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.57.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3a:ac:a6:35:8e:3c:c3:d2:b5:cf:f4:d6:1d:f4:0f:aa:68:be:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:11:58 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=83296e357e6b33db1fd4bc58a177802da9c587f91dc80a9f662e6a5c94351dc8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a3:6e:f3:c2:a3:92:3b:1a:df:0a:3f:d3:33: e1:b4:c7:c4:f5:41:86:48:4b:9f:7f:61:f1:d6:2e: 3e:5e:66:86:4b:67:17:b4:97:88:07:db:36:7c:d5: c3:dc:70:64:d2:e9:e3:06:f6:c8:d2:e3:0c:2a:aa: c5:e5:20:cd:82:10:dd:d3:bd:b3:1a:51:8d:68:03: 47:72:1d:4f:45:20:ab:e9:52:b6:43:06:8b:ae:f6: 1d:42:93:30:50:c9:65:5b:36:f6:67:0a:9f:58:a5: 39:68:42:08:a8:c7:7e:cf:89:00:8a:59:9e:a5:b4: 82:fa:de:77:f1:f2:f3:01:f6:ae:59:7c:eb:49:1e: 7c:a9:c5:46:4c:b0:27:9a:85:ee:9c:df:5a:ed:df: 21:8d:ca:eb:66:53:e7:cc:13:36:85:2a:74:33:a4: a5:3e:27:93:6e:9b:e8:cc:c5:05:60:8b:e8:1e:23: a4:ef:cf:0e:5e:36:a1:98:d0:20:c0:a0:8a:2d:fd: 69:e2:fb:98:88:b8:30:eb:af:7c:a5:fc:98:b0:5b: c7:e1:e8:ca:b2:3b:25:f5:11:35:c6:5b:7d:96:c3: e2:67:97:cc:b3:89:40:3e:18:eb:40:3a:fe:d0:ee: f0:d4:59:70:cf:e3:a2:38:d8:2d:c6:18:c2:7c:89: 70:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1E:3E:B6:34:58:DC:60:E4:FF:9E:FE:97:7C:FA:C4:A9:EF:C9:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eaefb9e-609a-4802-b06c-b7139eb4af45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.57.0.0/16 Signature Algorithm: sha256WithRSAEncryption d2:97:83:17:f1:f7:68:96:09:4a:a3:2a:c4:ae:78:7e:18:1e: 28:09:79:c2:a3:67:db:1b:23:51:69:5f:b4:62:30:b5:07:ff: 64:21:19:87:97:48:eb:08:d7:24:e4:9c:36:42:bc:00:69:e3: df:77:a0:4a:1a:8e:e7:8a:b1:49:59:c3:73:b1:82:f3:4b:c6: e1:9f:2e:45:e4:bb:01:f8:d8:c2:4d:f2:6e:33:44:06:e0:e2: d6:da:c9:ed:55:10:72:b0:98:0b:0f:b6:18:49:93:7d:1b:0b: fb:3a:1e:a4:0e:ba:7a:c8:74:81:89:a6:72:32:96:bb:a0:38: 4c:1b:85:89:5e:6d:d2:50:53:69:48:23:df:fa:59:e0:1f:6d: 2f:f1:97:81:c3:e8:7f:b5:6e:d9:1b:3b:bd:88:36:d8:90:65: cc:2c:ee:66:f0:09:6d:5c:49:24:2d:9f:d9:41:88:02:fe:7b: 79:9a:be:f4:80:f1:7d:af:c5:2c:1c:7d:9e:46:6f:b2:be:3a: 8b:65:8b:70:c9:12:51:ae:a5:7c:04:34:5d:7f:bb:12:08:a6: 0b:84:4b:14:29:7f:f9:b5:72:42:8e:65:97:1d:c2:04:04:95: b2:d1:c5:c8:73:92:41:6a:15:7a:5b:d0:86:cb:43:6f:c1:f1: 1a:20:01:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXTqspjWOPMPStc/01h30D6povvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUxMTU4WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzI5NmUzNTdlNmIzM2RiMWZkNGJjNThhMTc3ODAyZGE5 YzU4N2Y5MWRjODBhOWY2NjJlNmE1Yzk0MzUxZGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDro27zwqOSOxrfCj/TM+G0x8T1QYZIS59/YfHWLj5eZoZL Zxe0l4gH2zZ81cPccGTS6eMG9sjS4wwqqsXlIM2CEN3TvbMaUY1oA0dyHU9FIKvp UrZDBouu9h1CkzBQyWVbNvZnCp9YpTloQgiox37PiQCKWZ6ltIL63nfx8vMB9q5Z fOtJHnypxUZMsCeahe6c31rt3yGNyutmU+fMEzaFKnQzpKU+J5Num+jMxQVgi+ge I6Tvzw5eNqGY0CDAoIot/Wni+5iIuDDrr3yl/JiwW8fh6MqyOyX1ETXGW32Ww+Jn l8yziUA+GOtAOv7Q7vDUWXDP46I42C3GGMJ8iXDnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUER4+tjRY3GDk/57+l3z6xKnvyZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlYWVmYjllLTYwOWEtNDgwMi1iMDZjLWI3MTM5ZWI0YWY0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4OTANBgkqhkiG9w0BAQsFAAOCAQEA0peDF/H3aJYJSqMqxK54fhgeKAl5 wqNn2xsjUWlftGIwtQf/ZCEZh5dI6wjXJOScNkK8AGnj33egShqO54qxSVnDc7GC 80vG4Z8uReS7AfjYwk3ybjNEBuDi1trJ7VUQcrCYCw+2GEmTfRsL+zoepA66esh0 gYmmcjKWu6A4TBuFiV5t0lBTaUgj3/pZ4B9tL/GXgcPof7Vu2Rs7vYg22JBlzCzu ZvAJbVxJJC2f2UGIAv57eZq+9IDxfa/FLBx9nkZvsr46i2WLcMkSUa6lfAQ0XX+7 EgimC4RLFCl/+bVyQo5llx3CBASVstHFyHOSQWoVelvQhstDb8HxGiABrg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:42 2025 by rpki-client