$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff5e1b0-47da-4a73-89ef-f0714ed3fd6e.roa File: dff5e1b0-47da-4a73-89ef-f0714ed3fd6e.roa (raw, json) Hash identifier: aR6heoCqE5tWqS4NkkT+5S9CLMYDECqsjWcb7p7zSEU= Subject key identifier: 4F:AC:E1:AA:35:08:27:E0:EB:D8:92:3B:B8:0B:CB:50:4C:3A:78:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A8AF53882E7EFD951EA1969086BE1D1DFD8C892 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff5e1b0-47da-4a73-89ef-f0714ed3fd6e.roa Signing time: Fri 18 Jul 2025 00:31:19 +0000 ROA not before: Fri 18 Jul 2025 00:31:19 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.98.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8a:f5:38:82:e7:ef:d9:51:ea:19:69:08:6b:e1:d1:df:d8:c8:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:31:19 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=598665defe54d4a324754d939c32ca503e87ab732fb8184a9cb1bfe4baa3df29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d0:38:07:11:75:1d:12:90:2f:4b:fc:53:d8: 1a:bb:a1:a5:9c:67:5f:db:e9:f7:b6:5e:48:fa:90: fd:41:53:d1:5c:fc:2f:42:fb:a0:94:01:96:dd:d8: ec:da:c9:14:28:2a:48:2f:65:ea:df:fe:d3:3e:e2: 5b:c3:b3:11:ed:77:dc:6e:50:50:ec:93:fb:49:2f: 8d:5a:2b:f0:e2:57:e5:36:d9:a6:93:c9:b7:16:de: 8c:3e:c7:43:40:53:16:21:fa:86:84:1e:a2:48:5f: b2:9f:c3:e7:7f:5e:97:fe:64:7b:c3:af:d4:a3:e1: 72:7b:62:b9:92:a8:84:a6:b7:06:1f:e2:e6:c5:d1: d1:1d:4b:c3:62:8d:e5:be:4e:14:cf:85:0e:c6:ff: 09:96:be:f8:3e:9a:b2:2a:d6:d0:50:15:9a:3d:01: 34:45:df:8e:e7:32:d7:f2:3b:2a:83:79:54:79:69: 65:3c:b6:70:a9:b9:05:50:ec:9b:12:56:6f:11:5e: 56:fe:cf:9e:5f:0b:55:50:7e:4e:14:06:6e:c3:3d: 42:20:5f:6e:1c:38:33:71:d9:14:f3:9d:38:b3:66: 0c:c3:2c:33:14:42:53:de:e7:d8:35:01:59:58:a3: 5a:8b:b5:23:33:65:32:b2:47:01:75:48:d4:f1:d8: 86:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AC:E1:AA:35:08:27:E0:EB:D8:92:3B:B8:0B:CB:50:4C:3A:78:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff5e1b0-47da-4a73-89ef-f0714ed3fd6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.98.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:45:d9:de:bc:10:e0:0a:cf:17:ee:1f:9c:8b:07:c6:7f:f3: c6:72:cd:f8:36:ef:c2:0f:0c:3f:ae:64:7b:39:31:ba:bb:26: 46:e2:5c:88:30:0a:5e:9e:cb:e8:49:52:83:58:9a:9f:72:a5: 13:b6:4a:08:55:b7:ea:8b:83:85:28:37:d2:e5:eb:55:07:a3: ea:c7:d6:e2:fc:98:a6:c3:05:ee:ef:ba:28:28:46:5c:5e:a3: 7c:22:14:c4:04:6c:f5:7f:9b:65:03:1a:45:9a:9b:6a:41:4b: 29:27:18:c9:37:09:4f:0a:ef:81:fb:36:33:34:23:f3:72:10: 84:82:f8:c2:79:93:6c:9c:fa:5f:d8:3e:99:ed:3d:85:d2:4b: 03:99:57:b9:d6:02:09:a7:0f:7f:5a:bb:34:1d:36:7e:c3:72: a7:00:15:69:08:61:7d:16:1f:e8:08:5e:f6:29:dc:06:e9:71: 57:79:1c:bc:8a:a6:dd:7a:ab:20:76:36:13:2a:ce:db:dc:4b: 48:61:0a:92:19:ec:7e:9e:d7:60:f2:0e:f6:a2:7b:68:41:de: 97:89:f4:f3:6a:4f:ff:40:0d:d7:ca:bd:ff:c6:93:9f:dc:e0: 37:45:ae:80:2a:28:c3:c0:38:87:f9:ce:20:8a:bf:10:aa:71: ea:9f:ee:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOor1OILn79lR6hlpCGvh0d/YyJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAzMTE5WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTg2NjVkZWZlNTRkNGEzMjQ3NTRkOTM5YzMyY2E1MDNl ODdhYjczMmZiODE4NGE5Y2IxYmZlNGJhYTNkZjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ0DgHEXUdEpAvS/xT2Bq7oaWcZ1/b6fe2Xkj6kP1BU9Fc /C9C+6CUAZbd2OzayRQoKkgvZerf/tM+4lvDsxHtd9xuUFDsk/tJL41aK/DiV+U2 2aaTybcW3ow+x0NAUxYh+oaEHqJIX7Kfw+d/Xpf+ZHvDr9Sj4XJ7YrmSqISmtwYf 4ubF0dEdS8NijeW+ThTPhQ7G/wmWvvg+mrIq1tBQFZo9ATRF347nMtfyOyqDeVR5 aWU8tnCpuQVQ7JsSVm8RXlb+z55fC1VQfk4UBm7DPUIgX24cODNx2RTznTizZgzD LDMUQlPe59g1AVlYo1qLtSMzZTKyRwF1SNTx2Ia3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUT6zhqjUIJ+Dr2JI7uAvLUEw6eL0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZjVlMWIwLTQ3ZGEtNGE3My04OWVmLWYwNzE0ZWQzZmQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YjANBgkqhkiG9w0BAQsFAAOCAQEAUkXZ3rwQ4ArPF+4fnIsHxn/zxnLN +Dbvwg8MP65kezkxursmRuJciDAKXp7L6ElSg1ian3KlE7ZKCFW36ouDhSg30uXr VQej6sfW4vyYpsMF7u+6KChGXF6jfCIUxARs9X+bZQMaRZqbakFLKScYyTcJTwrv gfs2MzQj83IQhIL4wnmTbJz6X9g+me09hdJLA5lXudYCCacPf1q7NB02fsNypwAV aQhhfRYf6Ahe9incBulxV3kcvIqm3XqrIHY2EyrO29xLSGEKkhnsfp7XYPIO9qJ7 aEHel4n082pP/0AN18q9/8aTn9zgN0WugCoow8A4h/nOIIq/EKpx6p/uqA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:35 2025 by rpki-client