$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa File: 940bd107-87a1-467d-a6ff-57aca7389c67.roa (raw, json) Hash identifier: UpWJ+YwnWuV02kPCr9dX1rU2usdNCEnLLJV8/K4qb3o= Subject key identifier: D3:DA:D2:B8:B0:35:A0:0E:26:5A:C5:18:A0:25:3C:9D:24:80:C0:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A4C0F12E44678873910A1F5A0A92E577D620837 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa Signing time: Tue 22 Jul 2025 15:00:13 +0000 ROA not before: Tue 22 Jul 2025 15:00:13 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4c:0f:12:e4:46:78:87:39:10:a1:f5:a0:a9:2e:57:7d:62:08:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 15:00:13 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=3c82629b28b8e671150efea3a94f825ef711b0dcb0597ff31befed610fd6e076, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:63:a5:11:5c:51:15:d6:87:83:c3:5c:cb: 08:df:ea:25:3c:9f:5d:41:f1:57:ed:98:c1:31:48: 23:ce:51:e2:87:5c:bf:7f:a9:21:0e:92:f9:ce:8e: af:db:11:d4:67:72:81:6e:58:15:9c:dc:63:37:ff: 64:16:60:ea:ea:6f:2e:f7:6b:69:87:52:41:16:97: e9:b8:46:f9:2c:98:10:d7:c1:a5:19:d5:3c:1e:01: 67:6d:cc:bf:50:74:dc:2a:73:6c:26:9c:ca:40:ba: 0d:ab:b2:2f:fc:ef:3d:36:74:6b:d7:7a:86:da:5d: aa:ea:b0:4f:47:7c:9b:73:cc:8d:de:16:00:5d:42: 6a:21:aa:98:6e:c2:c2:92:b3:5b:f5:57:fb:2a:ad: a0:11:e2:8e:90:84:5b:0d:3e:4a:97:b5:f9:f4:de: be:75:a5:bc:55:e7:04:3f:62:96:76:46:58:03:7d: 7e:41:88:a0:46:82:3a:b7:e1:0f:68:4d:03:d8:31: 18:ad:2a:2b:b0:b4:6b:63:62:99:df:ec:fa:07:1a: 8d:b3:4d:1b:45:5f:f0:34:f3:6c:8a:e6:4b:56:43: b5:dd:c5:2a:37:85:05:db:62:8a:b0:c6:b9:99:2f: aa:68:77:e9:fa:20:22:37:c4:4a:d2:b2:d9:c7:26: 6b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DA:D2:B8:B0:35:A0:0E:26:5A:C5:18:A0:25:3C:9D:24:80:C0:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption c8:6e:79:33:85:49:c1:f7:91:ee:79:7d:19:91:13:f6:6b:96: a1:c1:8e:df:fa:b6:8b:6d:26:03:15:90:2e:bd:e8:ae:f3:41: 16:43:a4:81:45:ff:9a:84:d2:d6:99:a9:08:fb:d2:92:6d:52: 9e:2c:5c:65:d2:77:92:4b:e4:db:ae:e0:1c:37:21:d9:09:c3: 2e:5b:17:15:dd:27:b4:7e:c6:dd:67:c5:54:c2:53:be:00:4a: 0d:35:8c:28:42:c1:1a:b5:c9:da:30:4e:bb:a6:07:20:d7:02: d8:33:26:b5:2b:b1:ec:ad:a1:ff:09:05:58:d3:02:27:e1:ac: 6d:76:00:db:03:fa:c4:f4:a1:52:37:30:3d:bd:cd:33:57:f7: 85:b3:bf:c6:59:f9:a7:f4:05:50:1d:d1:be:c5:2b:e7:89:60: 3c:99:51:3e:02:e4:91:5b:28:8e:3c:9b:72:f5:40:1f:a0:3f: 8e:74:22:9e:1e:f6:b7:67:ec:3c:8c:2a:87:3b:33:c3:bb:08: 67:95:fd:44:8b:cd:3a:98:07:7d:e6:ed:76:56:cd:8e:ca:1c: ec:3a:28:49:b5:8e:b5:96:25:a0:10:01:3b:91:20:b7:05:9b: d2:88:79:8e:8d:05:6c:15:b5:88:5c:02:2d:e1:2f:1c:94:2a: 13:49:44:d1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOkwPEuRGeIc5EKH1oKkuV31iCDcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMTUwMDEzWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzgyNjI5YjI4YjhlNjcxMTUwZWZlYTNhOTRmODI1ZWY3 MTFiMGRjYjA1OTdmZjMxYmVmZWQ2MTBmZDZlMDc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpM2OlEVxRFdaHg8Ncywjf6iU8n11B8VftmMExSCPOUeKH XL9/qSEOkvnOjq/bEdRncoFuWBWc3GM3/2QWYOrqby73a2mHUkEWl+m4RvksmBDX waUZ1TweAWdtzL9QdNwqc2wmnMpAug2rsi/87z02dGvXeobaXarqsE9HfJtzzI3e FgBdQmohqphuwsKSs1v1V/sqraAR4o6QhFsNPkqXtfn03r51pbxV5wQ/YpZ2RlgD fX5BiKBGgjq34Q9oTQPYMRitKiuwtGtjYpnf7PoHGo2zTRtFX/A082yK5ktWQ7Xd xSo3hQXbYoqwxrmZL6pod+n6ICI3xErSstnHJmslAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU09rSuLA1oA4mWsUYoCU8nSSAwPUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MGJkMTA3LTg3YTEtNDY3ZC1hNmZmLTU3YWNhNzM4OWM2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA44TANBgkqhkiG9w0BAQsFAAOCAQEAyG55M4VJwfeR7nl9GZET9muWocGO 3/q2i20mAxWQLr3orvNBFkOkgUX/moTS1pmpCPvSkm1SnixcZdJ3kkvk267gHDch 2QnDLlsXFd0ntH7G3WfFVMJTvgBKDTWMKELBGrXJ2jBOu6YHINcC2DMmtSux7K2h /wkFWNMCJ+GsbXYA2wP6xPShUjcwPb3NM1f3hbO/xln5p/QFUB3RvsUr54lgPJlR PgLkkVsojjybcvVAH6A/jnQinh72t2fsPIwqhzszw7sIZ5X9RIvNOpgHfebtdlbN jsoc7DooSbWOtZYloBABO5EgtwWb0oh5jo0FbBW1iFwCLeEvHJQqE0lE0Q== -----END CERTIFICATE-----Generated at Wed Jul 23 02:41:50 2025 by rpki-client