$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa File: 5e83772b-20e7-44cd-b060-03d5950ee025.roa (raw, json) Hash identifier: H4LFXE1Yl1b1XpHWTvshmKhgjFDWthLyWPo31imer94= Subject key identifier: B0:67:9C:1D:15:22:31:DE:AF:CB:D9:FD:57:F9:56:81:CF:94:0F:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33752090FBE3D0CEB16A7E3F163022C88A5A5189 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa Signing time: Fri 08 Aug 2025 00:21:24 +0000 ROA not before: Fri 08 Aug 2025 00:21:24 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:75:20:90:fb:e3:d0:ce:b1:6a:7e:3f:16:30:22:c8:8a:5a:51:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:21:24 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=9dc24b8f39196601e99b59eeef348eaaaa67fd46e0d89e192eff47ac071f2ce3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:bd:21:ea:9c:1c:73:2a:7d:cf:4c:0b:15: d7:49:e5:55:ec:58:4b:08:08:f5:8d:c4:17:25:ab: 4f:07:2c:a7:e6:32:f8:b0:d9:fb:81:c3:e4:d3:ae: fc:ad:ec:81:db:0b:b6:82:35:96:81:37:41:99:a3: b4:7e:2a:bc:4d:c9:37:1b:e4:3c:d4:ce:c5:5f:99: ae:62:30:21:37:00:b0:07:e7:aa:84:52:25:21:5c: cc:93:cb:f8:33:3f:af:e6:8f:a3:37:f7:82:44:0e: 43:cf:83:1d:1a:bd:60:01:33:a2:2d:b0:cd:0b:ee: f7:77:ae:36:ce:66:1b:6d:98:d5:c5:ba:d5:3f:d9: 35:a6:43:d5:73:85:da:aa:a6:1b:b6:71:cd:62:b2: d9:df:9a:72:fb:64:f1:ca:72:20:c9:35:b5:0a:7a: 5b:e1:98:d8:8c:72:07:80:f3:a9:f2:66:2a:8f:d6: 56:2f:25:41:16:38:f3:f5:7c:27:64:d8:4c:d5:7c: 0a:a3:25:73:c2:09:58:cc:33:6a:39:62:80:54:14: f2:18:3c:77:c4:62:c9:37:a0:8f:8f:27:f0:c9:8d: 2c:d6:b0:1d:c8:ac:64:0f:b8:f9:da:93:98:2b:6d: 82:06:1c:ee:f1:3c:ce:be:09:4a:0f:09:0f:ec:36: 71:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:67:9C:1D:15:22:31:DE:AF:CB:D9:FD:57:F9:56:81:CF:94:0F:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e83772b-20e7-44cd-b060-03d5950ee025.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:88:9b:bf:20:5e:87:83:6a:0c:8a:8d:57:ff:f5:03:55:f1: d6:42:3b:4d:b8:9c:81:f0:a3:c5:1b:d3:fc:46:3c:77:86:3e: 58:e5:27:18:83:fc:4a:f4:43:57:5b:f6:be:ef:b3:4b:33:15: 47:2e:1c:6a:84:85:4e:31:06:40:61:7e:8c:53:fd:5c:04:c3: 8b:66:79:9a:93:f1:51:eb:35:b3:69:7d:6f:76:e3:9f:a3:a1: 1d:bb:de:a6:ad:a7:13:02:d4:81:3f:90:c1:2f:7e:c9:29:a8: 67:a7:c0:49:0c:73:0c:ff:c3:27:9e:ab:81:da:a9:a6:52:03: 94:ea:4a:34:25:e4:57:ac:2f:c9:ee:1e:92:7a:5f:82:5d:ab: b5:97:eb:9f:27:9f:e8:b6:40:ec:f9:4c:a3:2d:1c:0b:8b:6d: f1:e4:48:64:1e:b1:2f:7a:1c:92:73:0b:09:04:4e:97:8c:b5: 6c:f1:8f:4d:79:4c:ba:c0:2e:e3:66:91:b4:5a:f1:76:14:4a: a8:62:bb:fd:80:a5:90:7b:6d:0c:46:47:69:92:30:ef:61:ce: 0a:22:b2:47:20:9b:30:01:05:4b:52:3b:e7:fc:aa:b5:c9:e1: e1:ca:7c:cb:2f:a9:f1:78:3d:26:44:b2:26:8b:e9:0f:29:d5: cd:c4:d1:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM3UgkPvj0M6xan4/FjAiyIpaUYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMTI0WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGMyNGI4ZjM5MTk2NjAxZTk5YjU5ZWVlZjM0OGVhYWFh NjdmZDQ2ZTBkODllMTkyZWZmNDdhYzA3MWYyY2UzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGEL0h6pwccyp9z0wLFddJ5VXsWEsICPWNxBclq08HLKfm Mviw2fuBw+TTrvyt7IHbC7aCNZaBN0GZo7R+KrxNyTcb5DzUzsVfma5iMCE3ALAH 56qEUiUhXMyTy/gzP6/mj6M394JEDkPPgx0avWABM6ItsM0L7vd3rjbOZhttmNXF utU/2TWmQ9Vzhdqqphu2cc1istnfmnL7ZPHKciDJNbUKelvhmNiMcgeA86nyZiqP 1lYvJUEWOPP1fCdk2EzVfAqjJXPCCVjMM2o5YoBUFPIYPHfEYsk3oI+PJ/DJjSzW sB3IrGQPuPnak5grbYIGHO7xPM6+CUoPCQ/sNnGRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsGecHRUiMd6vy9n9V/lWgc+UD8IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlODM3NzJiLTIwZTctNDRjZC1iMDYwLTAzZDU5NTBlZTAyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4lTANBgkqhkiG9w0BAQsFAAOCAQEAloibvyBeh4NqDIqNV//1A1Xx1kI7 TbicgfCjxRvT/EY8d4Y+WOUnGIP8SvRDV1v2vu+zSzMVRy4caoSFTjEGQGF+jFP9 XATDi2Z5mpPxUes1s2l9b3bjn6OhHbvepq2nEwLUgT+QwS9+ySmoZ6fASQxzDP/D J56rgdqpplIDlOpKNCXkV6wvye4eknpfgl2rtZfrnyef6LZA7PlMoy0cC4tt8eRI ZB6xL3ocknMLCQROl4y1bPGPTXlMusAu42aRtFrxdhRKqGK7/YClkHttDEZHaZIw 72HOCiKyRyCbMAEFS1I75/yqtcnh4cp8yy+p8Xg9JkSyJovpDynVzcTRmw== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:18 2025 by rpki-client