$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbc5e25-f726-4ad0-b90d-33cea3f88be4.roa File: 8dbc5e25-f726-4ad0-b90d-33cea3f88be4.roa (raw, json) Hash identifier: YmFyjxXNf6mNjjh+L+7wo2ghdKhwgckyYXcKFg4kYOY= Subject key identifier: D3:8D:AA:E2:2E:75:08:15:00:5C:21:C8:13:31:5C:FB:B1:6A:60:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D486683BA813CD9D835AFF0D03DE07A58504D6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbc5e25-f726-4ad0-b90d-33cea3f88be4.roa Signing time: Fri 08 Aug 2025 00:21:22 +0000 ROA not before: Fri 08 Aug 2025 00:21:22 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.109.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:48:66:83:ba:81:3c:d9:d8:35:af:f0:d0:3d:e0:7a:58:50:4d:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:21:22 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=6b11f0ac0d910846997a5cf4fb0d5f87249cd376dc99b63b91dbe99afad88062, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4c:65:8a:35:a5:d0:0a:b1:ec:72:3e:b0:6c: ad:0c:c2:3a:8f:88:19:76:e7:18:af:c8:a0:72:ff: e3:d4:2a:dc:ea:1f:6a:83:e6:d6:6e:14:0a:0f:23: 8b:56:d8:ad:70:14:0a:7d:9e:af:1c:85:0c:d5:5c: 76:64:48:b0:37:fb:1f:d2:ed:0e:fd:bc:9a:2a:a1: e0:2e:db:42:d4:f6:a3:41:43:34:a8:3f:c6:06:93: 03:f4:fc:eb:87:da:3b:44:f8:ff:cf:27:e4:b8:5f: 8e:08:52:c8:fb:d2:56:39:de:24:ce:dd:35:92:46: ec:54:49:c9:5e:88:b3:ac:46:0c:a0:06:05:2d:af: 1a:9a:4c:15:7c:9b:30:48:91:73:8e:93:d6:2b:1c: cb:1d:72:48:aa:2d:b8:6d:85:4b:93:1b:ce:98:45: 54:01:55:29:e7:cb:eb:55:27:80:cd:f0:b3:58:fd: 8b:14:b4:c7:34:a4:85:f9:bc:1d:02:bc:1c:e0:9f: be:a5:d3:53:4c:d7:f2:3c:c1:b4:7d:16:a8:ba:4f: 7e:e2:c7:d2:af:1d:43:83:7e:04:bc:af:05:7a:c6: bc:37:0e:56:bb:b1:59:cd:4a:a1:70:e9:07:7e:90: b3:68:bf:6c:57:0b:ee:82:60:68:a6:de:b3:a2:db: ce:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8D:AA:E2:2E:75:08:15:00:5C:21:C8:13:31:5C:FB:B1:6A:60:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8dbc5e25-f726-4ad0-b90d-33cea3f88be4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:38:02:f9:89:f3:9c:4a:59:46:78:db:e5:24:54:61:b2:0e: bb:b3:da:04:0d:9c:cb:93:b8:bf:60:d5:51:b6:57:f2:00:2c: 1a:af:b0:64:e1:06:03:33:c1:69:b0:cb:11:9b:29:bb:26:9f: 24:ff:29:5f:4e:25:8a:1b:8f:84:5d:d1:9e:1a:b1:e5:37:46: 6c:2d:9d:86:77:40:08:d2:25:a6:62:e4:c1:e6:5a:11:a8:ff: 21:5d:85:18:5a:2c:34:d3:9f:96:16:f7:41:e3:98:47:a4:d2: 73:83:2f:0f:09:0b:f3:ac:24:b1:93:46:fe:9a:a5:50:4e:ce: 35:c5:17:ad:15:ab:ba:f0:b9:f0:99:e5:8d:d0:0e:db:07:6e: 37:21:e0:e1:16:a3:e0:f4:9c:ee:02:b3:da:56:51:7a:09:fa: 2f:01:44:a3:54:46:c6:5e:6b:6b:09:e5:76:27:fe:14:7f:2b: d4:54:50:d1:18:af:8b:1e:a0:6f:61:75:b3:68:1f:e9:76:4e: 18:45:b1:2c:e1:96:8a:98:02:18:26:84:19:b5:34:1e:55:53: 75:b7:64:94:7f:f9:80:1d:5e:70:0d:36:3a:79:8f:57:df:7b: d1:30:83:56:5c:9c:9a:54:60:81:09:a5:d0:84:c7:c7:78:0a: ca:5c:6a:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTUhmg7qBPNnYNa/w0D3gelhQTWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMTIyWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjExZjBhYzBkOTEwODQ2OTk3YTVjZjRmYjBkNWY4NzI0 OWNkMzc2ZGM5OWI2M2I5MWRiZTk5YWZhZDg4MDYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsTGWKNaXQCrHscj6wbK0MwjqPiBl25xivyKBy/+PUKtzq H2qD5tZuFAoPI4tW2K1wFAp9nq8chQzVXHZkSLA3+x/S7Q79vJoqoeAu20LU9qNB QzSoP8YGkwP0/OuH2jtE+P/PJ+S4X44IUsj70lY53iTO3TWSRuxUScleiLOsRgyg BgUtrxqaTBV8mzBIkXOOk9YrHMsdckiqLbhthUuTG86YRVQBVSnny+tVJ4DN8LNY /YsUtMc0pIX5vB0CvBzgn76l01NM1/I8wbR9Fqi6T37ix9KvHUODfgS8rwV6xrw3 Dla7sVnNSqFw6Qd+kLNov2xXC+6CYGim3rOi286vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU042q4i51CBUAXCHIEzFc+7FqYHAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkYmM1ZTI1LWY3MjYtNGFkMC1iOTBkLTMzY2VhM2Y4OGJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4bTANBgkqhkiG9w0BAQsFAAOCAQEATzgC+YnznEpZRnjb5SRUYbIOu7Pa BA2cy5O4v2DVUbZX8gAsGq+wZOEGAzPBabDLEZspuyafJP8pX04lihuPhF3Rnhqx 5TdGbC2dhndACNIlpmLkweZaEaj/IV2FGFosNNOflhb3QeOYR6TSc4MvDwkL86wk sZNG/pqlUE7ONcUXrRWruvC58JnljdAO2wduNyHg4Raj4PSc7gKz2lZRegn6LwFE o1RGxl5rawnldif+FH8r1FRQ0Rivix6gb2F1s2gf6XZOGEWxLOGWipgCGCaEGbU0 HlVTdbdklH/5gB1ecA02OnmPV9970TCDVlycmlRggQml0ITHx3gKylxq2g== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:47 2025 by rpki-client