$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f99b7609-a255-427f-92d2-7e12449f3d9d.roa File: f99b7609-a255-427f-92d2-7e12449f3d9d.roa (raw, json) Hash identifier: ffXBZG7SQf9OSHjXSCH9FLzb9mqRd3cUawiS/oDH8qE= Subject key identifier: 84:48:57:98:2D:62:0D:E7:27:D2:32:C0:E9:BE:59:4E:00:7C:35:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AF439590B356CF4C5A13132BE1F8BAA09F3ABCC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f99b7609-a255-427f-92d2-7e12449f3d9d.roa Signing time: Fri 11 Jul 2025 00:30:22 +0000 ROA not before: Fri 11 Jul 2025 00:30:22 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.34.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f4:39:59:0b:35:6c:f4:c5:a1:31:32:be:1f:8b:aa:09:f3:ab:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:30:22 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=b4b6e670eac32c35c2022809aad94066b3511627d7889a51946a7d5834849a41, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:bd:dd:c7:2e:6d:ac:f7:43:a7:e7:3c:1a: 1e:b1:3b:bc:07:47:99:4e:74:ee:42:51:33:d4:42: 7f:1b:2f:30:9f:25:ee:8e:cf:38:16:ef:2f:d7:06: e3:44:6d:ed:0d:1b:b4:1e:c7:6e:eb:c3:f5:c8:22: 80:11:fa:36:70:82:5a:c9:d5:56:aa:33:4c:fb:8d: 42:85:47:a3:2c:d1:52:45:38:d8:3b:70:7c:eb:13: 27:2e:34:82:b3:85:62:26:da:fe:ec:43:ea:48:40: 78:fe:75:b0:ca:4b:e6:51:fb:dc:09:99:db:76:20: 2c:50:4d:42:47:b2:2d:7b:50:ea:75:4d:45:e1:28: ee:8c:d0:00:51:eb:a6:1a:16:97:1d:a1:a9:50:fc: fd:62:e3:3d:70:28:17:34:3d:64:7a:4b:81:24:68: 39:45:38:4b:6e:44:ce:73:13:24:d6:be:8c:b6:16: e7:9a:71:38:14:3d:bd:11:9e:33:e3:21:db:7f:61: b5:02:03:91:69:78:60:35:2c:c7:4c:cd:da:0b:50: 40:6b:59:ff:06:cc:87:38:e0:2d:5f:a0:5a:74:41: dd:17:a0:b2:3a:24:3b:72:dd:2c:5b:ab:7c:18:2b: fa:4e:25:fe:59:f9:19:3d:7d:cb:f2:fa:29:7a:55: 55:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:48:57:98:2D:62:0D:E7:27:D2:32:C0:E9:BE:59:4E:00:7C:35:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f99b7609-a255-427f-92d2-7e12449f3d9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.34.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:99:11:74:7e:4a:13:ae:f9:58:c5:d0:5c:68:f4:8b:83:32: 65:97:91:9e:44:18:d3:3c:cb:23:79:58:71:0d:5d:ed:27:0a: d9:77:f6:97:b5:3f:5b:c7:85:b4:8d:0e:64:7d:95:1a:da:f4: d4:fa:d1:89:01:28:9b:ad:1b:2f:47:4b:c3:79:e6:78:f1:c4: 2c:c8:c1:6d:d5:5e:bd:35:a0:f9:cb:2f:62:d4:31:ba:f8:c4: 3e:c8:a9:62:86:1f:41:f4:92:a4:92:27:82:9f:1f:10:9a:06: cb:c8:61:0c:d3:91:10:37:0d:8c:34:f3:cd:b6:4f:e1:41:12: 52:1c:8e:d4:d7:41:3d:dc:b5:ef:2c:81:92:3e:d0:c8:4d:f2: ac:3a:ca:1a:5c:df:73:75:54:88:1d:b4:5f:9b:8b:2c:90:cb: 73:75:1d:ae:b2:8a:0a:3b:d9:64:49:98:71:c3:44:79:4d:e6: ff:27:9b:c5:19:5c:f3:c2:57:fd:e3:7f:8d:63:0a:5c:90:76: 06:ff:1d:53:41:07:f4:c6:33:98:dc:7f:5f:0e:8a:b1:c2:55: 02:05:6d:62:5f:b0:3e:26:ef:4b:82:7f:80:e5:27:1a:e8:b4: 3b:2f:38:8e:bc:44:5d:47:f1:f8:6a:5b:c3:84:f6:8b:36:69: fc:16:5e:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOvQ5WQs1bPTFoTEyvh+Lqgnzq8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAzMDIyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGI2ZTY3MGVhYzMyYzM1YzIwMjI4MDlhYWQ5NDA2NmIz NTExNjI3ZDc4ODlhNTE5NDZhN2Q1ODM0ODQ5YTQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI8b3dxy5trPdDp+c8Gh6xO7wHR5lOdO5CUTPUQn8bLzCf Je6OzzgW7y/XBuNEbe0NG7Qex27rw/XIIoAR+jZwglrJ1VaqM0z7jUKFR6Ms0VJF ONg7cHzrEycuNIKzhWIm2v7sQ+pIQHj+dbDKS+ZR+9wJmdt2ICxQTUJHsi17UOp1 TUXhKO6M0ABR66YaFpcdoalQ/P1i4z1wKBc0PWR6S4EkaDlFOEtuRM5zEyTWvoy2 FueacTgUPb0RnjPjIdt/YbUCA5FpeGA1LMdMzdoLUEBrWf8GzIc44C1foFp0Qd0X oLI6JDty3Sxbq3wYK/pOJf5Z+Rk9fcvy+il6VVVlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhEhXmC1iDecn0jLA6b5ZTgB8Nf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OWI3NjA5LWEyNTUtNDI3Zi05MmQyLTdlMTI0NDlmM2Q5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4IjANBgkqhkiG9w0BAQsFAAOCAQEAvZkRdH5KE675WMXQXGj0i4MyZZeR nkQY0zzLI3lYcQ1d7ScK2Xf2l7U/W8eFtI0OZH2VGtr01PrRiQEom60bL0dLw3nm ePHELMjBbdVevTWg+csvYtQxuvjEPsipYoYfQfSSpJIngp8fEJoGy8hhDNOREDcN jDTzzbZP4UESUhyO1NdBPdy17yyBkj7QyE3yrDrKGlzfc3VUiB20X5uLLJDLc3Ud rrKKCjvZZEmYccNEeU3m/yebxRlc88JX/eN/jWMKXJB2Bv8dU0EH9MYzmNx/Xw6K scJVAgVtYl+wPibvS4J/gOUnGui0Oy84jrxEXUfx+Gpbw4T2izZp/BZeSA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:25:08 2025 by rpki-client