$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa File: cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa (raw, json) Hash identifier: MyNS5L8GSUVVNPXeZvGMHQDdFLx1bxl/p9kvcLFK2v4= Subject key identifier: DE:3C:92:2D:D4:78:2F:C3:84:82:1C:84:99:87:77:85:12:88:51:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17991A23D62F331D9BD821B514B00BF00464FD91 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa Signing time: Fri 11 Jul 2025 00:30:14 +0000 ROA not before: Fri 11 Jul 2025 00:30:14 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:99:1a:23:d6:2f:33:1d:9b:d8:21:b5:14:b0:0b:f0:04:64:fd:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:30:14 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=40a377195de62e195e58b6cb17f16423ae9e7b6693421c8792c7b0a7cb61aade, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c4:b1:77:cf:90:86:a8:74:e1:fb:29:bf:46: cf:7f:23:55:9e:0a:e2:39:34:bc:49:01:03:a1:e2: 26:76:16:5b:48:2b:31:c4:49:e1:2a:e8:54:5b:7e: 7b:45:25:39:51:97:66:5c:f8:8c:2f:0a:80:c3:84: 9b:7e:2f:39:23:e1:a4:50:95:91:d8:b2:de:0a:21: 9f:07:2a:78:3b:4e:73:9a:b4:98:77:85:4b:03:2f: c3:f9:b4:76:67:5c:df:53:e1:34:6a:a5:99:13:2d: d0:0e:1b:b1:a2:cf:f5:ac:31:ce:0c:20:e0:f0:36: 7c:fa:e4:f4:bb:3a:08:e2:59:08:d0:6b:7c:5f:90: 84:80:6d:9c:54:20:6b:08:7d:5d:c6:b6:71:3e:94: ef:82:8a:21:00:69:71:10:28:fd:da:03:87:2a:79: 18:8d:ca:97:77:90:df:33:de:7e:d0:1e:66:f3:4f: 05:10:e4:b4:64:02:51:9d:0e:59:4f:bb:99:2b:54: df:42:c7:45:7f:25:89:8a:23:3a:b8:3a:3d:cf:85: 52:ff:34:56:9d:80:75:37:29:64:4a:cd:9c:ad:52: c4:c8:9e:5a:a5:de:f6:67:03:82:00:b1:9e:72:fc: bd:6d:2d:f2:b5:c9:a8:03:0d:2e:fb:1e:92:87:8b: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3C:92:2D:D4:78:2F:C3:84:82:1C:84:99:87:77:85:12:88:51:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:36:78:0c:2d:64:4d:49:b9:67:fc:76:77:c2:07:d8:ec:66: bb:d0:26:38:14:b5:ae:68:d9:65:df:0d:cc:2b:40:cb:9b:dd: 39:22:3e:38:dd:d8:f6:bb:60:ab:6e:c9:77:a2:89:0e:5d:7f: f4:2c:c1:3e:f1:0f:19:be:ea:11:4f:35:4e:ea:76:5c:84:e7: d3:62:86:ed:ca:6f:35:8d:07:67:ca:fa:32:c6:5b:30:e7:c7: 47:f2:e8:0c:42:2f:e9:46:ef:2c:42:00:19:87:2d:6f:74:0c: 5f:96:67:b2:d8:6f:fa:a3:98:90:15:37:a4:fe:9c:52:2a:fb: 90:ba:29:a9:0b:57:5b:39:e9:8a:14:3c:dd:eb:b8:89:5e:7b: 09:38:05:0a:72:6a:17:2b:bd:44:5a:cc:23:bd:bf:50:3d:45: 1e:dc:ac:ce:c9:bc:2f:36:52:7d:28:52:f2:c1:e6:a9:a1:0c: 0f:ad:3d:a8:d5:d1:85:55:5b:e0:37:2d:67:7c:f1:55:35:b5: c8:08:98:64:4b:8f:71:57:43:a6:9a:d9:3b:3d:a7:e4:e6:e3: 2e:74:ab:2b:a6:36:36:dc:3d:7a:33:e5:ae:bf:9d:03:83:d2: 32:08:4a:cc:2f:1b:0a:fe:c7:d9:9b:fa:19:07:82:59:31:f6: 73:55:4c:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUF5kaI9YvMx2b2CG1FLAL8ARk/ZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAzMDE0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGEzNzcxOTVkZTYyZTE5NWU1OGI2Y2IxN2YxNjQyM2Fl OWU3YjY2OTM0MjFjODc5MmM3YjBhN2NiNjFhYWRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYxLF3z5CGqHTh+ym/Rs9/I1WeCuI5NLxJAQOh4iZ2FltI KzHESeEq6FRbfntFJTlRl2Zc+IwvCoDDhJt+Lzkj4aRQlZHYst4KIZ8HKng7TnOa tJh3hUsDL8P5tHZnXN9T4TRqpZkTLdAOG7Giz/WsMc4MIODwNnz65PS7OgjiWQjQ a3xfkISAbZxUIGsIfV3GtnE+lO+CiiEAaXEQKP3aA4cqeRiNypd3kN8z3n7QHmbz TwUQ5LRkAlGdDllPu5krVN9Cx0V/JYmKIzq4Oj3PhVL/NFadgHU3KWRKzZytUsTI nlql3vZnA4IAsZ5y/L1tLfK1yagDDS77HpKHiwBTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3jySLdR4L8OEghyEmYd3hRKIUeswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkYmNhOGM5LWM1MjctNDg3NS1iNThlLWZjNTBkMDEwNGVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49jANBgkqhkiG9w0BAQsFAAOCAQEAfTZ4DC1kTUm5Z/x2d8IH2Oxmu9Am OBS1rmjZZd8NzCtAy5vdOSI+ON3Y9rtgq27Jd6KJDl1/9CzBPvEPGb7qEU81Tup2 XITn02KG7cpvNY0HZ8r6MsZbMOfHR/LoDEIv6UbvLEIAGYctb3QMX5Znsthv+qOY kBU3pP6cUir7kLopqQtXWznpihQ83eu4iV57CTgFCnJqFyu9RFrMI72/UD1FHtys zsm8LzZSfShS8sHmqaEMD609qNXRhVVb4DctZ3zxVTW1yAiYZEuPcVdDpprZOz2n 5ObjLnSrK6Y2Ntw9ejPlrr+dA4PSMghKzC8bCv7H2Zv6GQeCWTH2c1VMjg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:11 2025 by rpki-client