$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa File: 8e2ea47c-7af2-420d-8695-f2f769b2008c.roa (raw, json) Hash identifier: xLDgQGqYz7db6qPHlSfeLhALJINsO1QYZNvJvTSqYvo= Subject key identifier: C9:1B:4F:82:DB:3E:14:42:69:D5:67:44:19:9A:15:A8:19:38:01:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1284534B16D8A62E80D62EEF87A6F4A98EB780DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa Signing time: Fri 11 Jul 2025 00:30:13 +0000 ROA not before: Fri 11 Jul 2025 00:30:13 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:84:53:4b:16:d8:a6:2e:80:d6:2e:ef:87:a6:f4:a9:8e:b7:80:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:30:13 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=5eb2f9cedbb2cd3b977773bf27be41774516d6f63cfc63bece6cdacad4ca3948, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:00:5c:5a:3e:7c:15:3d:36:04:5d:c0:53:3f: b2:52:75:51:a1:f4:f1:17:9b:48:cb:b9:ee:2e:ae: 00:98:c7:4f:9c:80:94:c5:e6:ce:a7:e8:c6:d5:30: 93:16:f0:3d:4b:81:ea:83:ee:d3:92:c1:85:28:b2: 82:d9:12:da:c2:e0:68:41:76:56:9b:02:d1:4a:e5: 92:24:00:a6:aa:70:ee:87:14:c3:83:54:00:59:69: de:13:c9:86:23:ee:d7:29:b4:de:cd:b3:59:7a:e2: 62:50:ec:6a:5c:13:88:d8:09:25:c2:e4:07:bd:cd: 18:3a:dc:d1:c4:6e:80:5b:29:f5:25:39:5c:52:a4: e8:e2:45:8c:bf:e6:8d:c6:4a:7f:7a:bf:fd:72:6d: f0:4a:f5:f6:1b:6f:56:03:05:9a:04:ac:3b:0f:2a: 9f:bd:24:fd:14:1f:6b:e5:b8:a8:0c:2e:fb:31:b0: ad:07:0b:a1:87:cd:df:39:1b:97:1c:e7:ab:5c:f2: cf:12:34:c6:00:95:fc:78:64:ec:17:69:a1:be:f2: 6f:aa:51:b4:f7:72:29:27:42:67:75:66:dd:56:c0: ee:f3:32:ab:eb:4d:c0:cc:95:34:f5:7d:b0:d7:50: 00:bc:1e:ce:1b:94:52:77:dd:ce:e3:fb:ec:98:63: 68:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1B:4F:82:DB:3E:14:42:69:D5:67:44:19:9A:15:A8:19:38:01:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:e5:12:51:b3:d5:ca:63:40:96:3f:5e:c3:18:35:2d:68:33: c8:7b:fb:66:8c:90:b3:ff:97:3b:13:1d:e5:f8:40:94:76:51: 63:4f:58:66:9e:03:37:73:b1:f5:c1:85:3f:22:a5:23:84:8b: 13:ce:b1:b9:80:71:fd:f9:28:b8:12:a1:82:35:80:5a:aa:79: 6c:08:84:7e:9f:e0:50:eb:6a:62:15:52:3b:98:e2:4b:f1:18: 9e:e2:46:d3:fb:75:1f:65:72:35:52:9c:34:4c:b7:3c:6e:51: 9d:42:18:10:51:2c:bf:af:92:4a:0f:77:36:7b:55:08:21:b0: 35:e1:b4:69:21:dc:76:a6:9f:b9:84:11:2b:b1:ad:54:40:92: a7:cb:f9:43:a2:f7:26:da:29:cf:50:a4:66:46:fc:7c:88:1e: f8:e3:25:c9:ce:4c:8f:2b:0d:ab:45:36:ce:73:c9:b4:82:a7: 2e:d8:54:5c:ec:37:c2:e6:13:8e:88:43:51:b5:6c:a3:f1:3a: 01:db:a3:a1:13:1e:06:7d:cd:c4:d2:5d:98:ec:4d:2e:bd:f9: f5:d4:44:d9:92:2d:c0:36:4a:df:b8:85:ea:7e:d1:a5:f8:d9: 59:ad:29:b6:50:70:bb:2a:c3:4b:6c:82:11:f9:22:93:d5:2c: 1e:d9:dd:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEoRTSxbYpi6A1i7vh6b0qY63gN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAzMDEzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWIyZjljZWRiYjJjZDNiOTc3NzczYmYyN2JlNDE3NzQ1 MTZkNmY2M2NmYzYzYmVjZTZjZGFjYWQ0Y2EzOTQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmAFxaPnwVPTYEXcBTP7JSdVGh9PEXm0jLue4urgCYx0+c gJTF5s6n6MbVMJMW8D1LgeqD7tOSwYUosoLZEtrC4GhBdlabAtFK5ZIkAKaqcO6H FMODVABZad4TyYYj7tcptN7Ns1l64mJQ7GpcE4jYCSXC5Ae9zRg63NHEboBbKfUl OVxSpOjiRYy/5o3GSn96v/1ybfBK9fYbb1YDBZoErDsPKp+9JP0UH2vluKgMLvsx sK0HC6GHzd85G5cc56tc8s8SNMYAlfx4ZOwXaaG+8m+qUbT3ciknQmd1Zt1WwO7z MqvrTcDMlTT1fbDXUAC8Hs4blFJ33c7j++yYY2jJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyRtPgts+FEJp1WdEGZoVqBk4ATAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMmVhNDdjLTdhZjItNDIwZC04Njk1LWYyZjc2OWIyMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49TANBgkqhkiG9w0BAQsFAAOCAQEADeUSUbPVymNAlj9ewxg1LWgzyHv7 ZoyQs/+XOxMd5fhAlHZRY09YZp4DN3Ox9cGFPyKlI4SLE86xuYBx/fkouBKhgjWA Wqp5bAiEfp/gUOtqYhVSO5jiS/EYnuJG0/t1H2VyNVKcNEy3PG5RnUIYEFEsv6+S Sg93NntVCCGwNeG0aSHcdqafuYQRK7GtVECSp8v5Q6L3Jtopz1CkZkb8fIge+OMl yc5MjysNq0U2znPJtIKnLthUXOw3wuYTjohDUbVso/E6AdujoRMeBn3NxNJdmOxN Lr359dRE2ZItwDZK37iF6n7RpfjZWa0ptlBwuyrDS2yCEfkik9UsHtnd/A== -----END CERTIFICATE-----Generated at Mon Jul 21 18:28:44 2025 by rpki-client