$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa File: 40022edc-7d4c-49da-b461-30d23c93029d.roa (raw, json) Hash identifier: 9jN+SB6aEptThqE/aU+dQir9SbOxIZo5NT1IOZexf3g= Subject key identifier: 97:4B:98:32:C6:0D:D6:42:27:A1:E1:77:14:E2:06:15:88:AA:1E:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23415BD67F89534F4C4FDAAEFC823C1C63FD9A23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa Signing time: Wed 13 Aug 2025 00:30:19 +0000 ROA not before: Wed 13 Aug 2025 00:30:19 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:41:5b:d6:7f:89:53:4f:4c:4f:da:ae:fc:82:3c:1c:63:fd:9a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:30:19 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=e4c38af37e1037402899e490612c3783b02a8d50985175058efb01cf7ca49b4d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:91:27:ad:02:da:51:20:13:d7:f0:9b:ea:b0: 0d:2c:bc:e9:73:05:8a:4b:34:c4:27:75:6b:2a:65: d8:10:e6:60:ed:99:ab:39:86:8d:95:a4:80:30:6a: 93:1c:e3:46:5b:2c:07:45:3a:30:87:c3:ea:88:71: 3e:0b:36:c5:d1:04:d9:69:96:b5:4e:3a:be:88:aa: 9a:2f:23:9d:7f:dd:fd:ae:d2:21:fb:35:5f:8e:12: de:10:e6:14:c4:14:28:53:c4:93:e7:ac:f1:c7:35: 85:4a:ba:39:ae:af:56:bb:59:ac:8e:ff:b7:42:7e: 61:5b:f9:16:b3:ab:2f:7b:5a:3d:4a:3f:32:5c:72: c9:78:c8:a3:ae:d5:f8:d2:e9:da:ba:96:f3:76:d9: 37:be:7d:c5:39:8a:56:a0:4b:a3:96:14:90:c4:6a: 56:fd:ec:8d:d4:9b:39:73:35:d6:34:65:49:ce:b9: 1a:d1:1c:36:99:dd:d6:cc:df:48:a1:3e:97:f8:27: 24:49:7d:a8:5b:41:ff:5a:91:06:11:2c:cd:14:84: e8:74:f2:4f:1a:f3:31:a8:fc:09:11:99:19:ff:70: e6:b9:95:28:16:1a:f3:57:e6:89:02:ff:a2:fb:24: f4:ee:cf:58:89:f3:19:7d:09:8f:a6:34:79:f5:b1: 2a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:4B:98:32:C6:0D:D6:42:27:A1:E1:77:14:E2:06:15:88:AA:1E:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:42:ca:d4:27:3d:65:80:50:84:ba:be:f6:0f:04:f9:6d:7e: 18:49:2d:fb:8f:22:23:b5:00:59:12:d8:d8:12:81:a1:4a:78: 05:7c:b0:7f:8a:a3:01:e7:4f:f3:20:05:ba:34:e5:e2:d3:a1: cf:72:ed:cf:9e:13:90:af:ea:b6:64:dd:c6:01:28:ef:38:72: 28:c0:c9:34:a9:8b:51:09:b8:05:9e:cc:14:35:8d:42:d6:08: c8:06:39:e3:86:7b:8e:12:4a:ba:2a:3c:c7:9a:94:9a:eb:21: 3d:83:4d:b3:6b:c2:78:5e:47:78:4d:2f:b7:b9:a3:1d:d2:bf: 13:53:fb:12:8e:fb:80:aa:03:69:d8:b5:28:21:15:b8:d6:fc: 31:5b:e6:77:89:91:49:d1:07:f8:d6:93:e8:73:56:1d:2e:f4: 29:03:d2:fb:2d:2a:13:92:50:e6:6a:de:b6:b0:a7:b3:76:9e: ca:96:1d:02:71:ab:1a:3e:90:cf:fa:42:5b:6d:4a:5c:c0:69: 35:b7:57:5c:35:59:e8:14:70:08:85:7b:97:78:b1:ad:7a:9a: 40:70:25:4d:8b:8d:27:13:df:69:0f:f8:6c:be:4f:0b:67:36: 46:be:d9:36:86:4b:b0:5b:ed:37:ca:5e:4d:d3:95:f6:57:d3: b5:30:3c:ad -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI0Fb1n+JU09MT9qu/II8HGP9miMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMDE5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGMzOGFmMzdlMTAzNzQwMjg5OWU0OTA2MTJjMzc4M2Iw MmE4ZDUwOTg1MTc1MDU4ZWZiMDFjZjdjYTQ5YjRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOkSetAtpRIBPX8JvqsA0svOlzBYpLNMQndWsqZdgQ5mDt mas5ho2VpIAwapMc40ZbLAdFOjCHw+qIcT4LNsXRBNlplrVOOr6IqpovI51/3f2u 0iH7NV+OEt4Q5hTEFChTxJPnrPHHNYVKujmur1a7WayO/7dCfmFb+Razqy97Wj1K PzJccsl4yKOu1fjS6dq6lvN22Te+fcU5ilagS6OWFJDEalb97I3UmzlzNdY0ZUnO uRrRHDaZ3dbM30ihPpf4JyRJfahbQf9akQYRLM0UhOh08k8a8zGo/AkRmRn/cOa5 lSgWGvNX5okC/6L7JPTuz1iJ8xl9CY+mNHn1sSqDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUl0uYMsYN1kInoeF3FOIGFYiqHowwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMDIyZWRjLTdkNGMtNDlkYS1iNDYxLTMwZDIzYzkzMDI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4TzANBgkqhkiG9w0BAQsFAAOCAQEAC0LK1Cc9ZYBQhLq+9g8E+W1+GEkt +48iI7UAWRLY2BKBoUp4BXywf4qjAedP8yAFujTl4tOhz3Ltz54TkK/qtmTdxgEo 7zhyKMDJNKmLUQm4BZ7MFDWNQtYIyAY544Z7jhJKuio8x5qUmushPYNNs2vCeF5H eE0vt7mjHdK/E1P7Eo77gKoDadi1KCEVuNb8MVvmd4mRSdEH+NaT6HNWHS70KQPS +y0qE5JQ5mretrCns3aeypYdAnGrGj6Qz/pCW21KXMBpNbdXXDVZ6BRwCIV7l3ix rXqaQHAlTYuNJxPfaQ/4bL5PC2c2Rr7ZNoZLsFvtN8peTdOV9lfTtTA8rQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:15 2025 by rpki-client