$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: jX8OL4RjHElrmWk7i3bQlchK3tPuQR6CPJKU0Jj2+PQ= Subject key identifier: 24:35:36:A9:F5:D3:4A:6F:DF:5B:24:B1:FE:1C:7B:20:EB:CB:91:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1594962D45A0DF30CE35AF7FA385A57869E74AD7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Sat 06 Sep 2025 00:32:05 +0000 ROA not before: Sat 06 Sep 2025 00:32:05 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:94:96:2d:45:a0:df:30:ce:35:af:7f:a3:85:a5:78:69:e7:4a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:32:05 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=bf96d6834145612dc7b156b8c97f9ba7fc684f4c14a24c2165d7e98fbabba825, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:41:ad:2d:d1:65:2e:4c:76:80:cb:40:2b:ff: c4:17:44:fe:4d:b8:41:fe:ce:66:d2:b8:52:16:4c: cc:e2:f5:b5:69:a5:45:49:b5:a8:d7:4f:09:fe:bf: b1:b4:cf:ce:40:e8:d9:d6:c3:1c:aa:05:4b:ca:cb: fb:bc:ec:94:2c:09:b5:80:fe:db:46:28:7c:eb:d0: 73:7d:11:10:b8:98:72:d1:c1:60:43:78:eb:7f:54: 95:ee:88:b2:a5:11:83:4e:19:19:0f:53:19:3b:95: 3f:3b:9a:84:d1:42:4e:ca:35:64:7b:5c:50:67:39: e3:a5:38:c8:a4:0f:30:10:33:db:86:49:c0:b3:d1: b9:d0:e8:ce:42:8e:32:31:71:c3:44:89:4f:5a:7e: 0c:c3:d7:1c:4d:b0:d2:5b:c6:6f:96:fd:c2:0b:b9: 04:57:e5:59:4f:5b:e0:5a:05:fe:4d:84:8b:c5:94: 21:da:74:be:49:64:29:0a:52:97:9c:f1:91:1a:ab: b6:12:ce:06:7b:1c:09:92:1d:ec:45:00:2c:35:e8: 78:32:bc:d3:bb:f7:c1:b4:d4:48:ce:d1:7d:4d:bc: 51:5a:2b:c4:03:13:b1:a0:1d:96:a8:2c:13:65:22: a5:f3:41:4a:40:4f:41:e9:fa:14:09:ca:a2:05:da: 9b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:35:36:A9:F5:D3:4A:6F:DF:5B:24:B1:FE:1C:7B:20:EB:CB:91:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:bb:f8:bc:b6:f3:7e:57:d2:35:1f:16:89:81:87:1b:1d:b7: 2c:7d:63:bf:2b:55:b1:88:09:e5:0c:02:14:88:87:29:2c:26: 2f:d3:9d:3b:f2:d9:fa:0a:0c:a4:aa:bc:2b:57:a8:dd:2e:e2: a9:94:d0:d1:7b:ab:9b:e3:a8:33:ec:58:a6:13:07:60:cf:a3: 6f:f0:cc:f3:f3:af:9e:b5:de:1a:00:bd:37:f6:90:12:de:b0: a0:9e:b7:6b:c5:da:21:1a:0a:3d:9f:6d:62:45:a5:20:9b:9a: 97:1c:00:4e:10:5d:b7:cd:03:20:da:87:5c:6b:a8:6d:60:97: 02:05:94:8f:d2:05:b2:05:3b:95:fe:0e:cf:a5:e9:ca:83:78: 90:b2:aa:3d:89:97:6e:ae:8c:b0:38:7a:31:b1:1f:4d:d2:12: a8:09:7b:93:86:7b:02:69:93:fd:2f:95:e6:46:55:4f:dd:14: 1e:97:e8:c1:48:a0:94:c1:67:aa:6d:3e:a7:f1:28:0c:f7:71: 24:1a:ac:a4:9d:f1:be:4e:91:b8:6b:60:64:79:5b:37:20:ed: ee:73:45:e0:ab:8c:2e:7f:85:38:f3:42:1f:23:9a:2a:ed:20: d1:b0:fc:61:07:6c:fb:89:73:03:6e:01:0b:44:59:69:67:f4: 7f:8f:d3:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFZSWLUWg3zDONa9/o4WleGnnStcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMjA1WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjk2ZDY4MzQxNDU2MTJkYzdiMTU2YjhjOTdmOWJhN2Zj Njg0ZjRjMTRhMjRjMjE2NWQ3ZTk4ZmJhYmJhODI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXQa0t0WUuTHaAy0Ar/8QXRP5NuEH+zmbSuFIWTMzi9bVp pUVJtajXTwn+v7G0z85A6NnWwxyqBUvKy/u87JQsCbWA/ttGKHzr0HN9ERC4mHLR wWBDeOt/VJXuiLKlEYNOGRkPUxk7lT87moTRQk7KNWR7XFBnOeOlOMikDzAQM9uG ScCz0bnQ6M5CjjIxccNEiU9afgzD1xxNsNJbxm+W/cILuQRX5VlPW+BaBf5NhIvF lCHadL5JZCkKUpec8ZEaq7YSzgZ7HAmSHexFACw16HgyvNO798G01EjO0X1NvFFa K8QDE7GgHZaoLBNlIqXzQUpAT0Hp+hQJyqIF2ptnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJDU2qfXTSm/fWySx/hx7IOvLkf8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAGbv4vLbzflfSNR8WiYGHGx23LH1j vytVsYgJ5QwCFIiHKSwmL9OdO/LZ+goMpKq8K1eo3S7iqZTQ0Xurm+OoM+xYphMH YM+jb/DM8/OvnrXeGgC9N/aQEt6woJ63a8XaIRoKPZ9tYkWlIJualxwAThBdt80D INqHXGuobWCXAgWUj9IFsgU7lf4Oz6XpyoN4kLKqPYmXbq6MsDh6MbEfTdISqAl7 k4Z7AmmT/S+V5kZVT90UHpfowUiglMFnqm0+p/EoDPdxJBqspJ3xvk6RuGtgZHlb NyDt7nNF4KuMLn+FOPNCHyOaKu0g0bD8YQds+4lzA24BC0RZaWf0f4/Tfg== -----END CERTIFICATE-----Generated at Thu Sep 18 17:58:33 2025 by rpki-client