$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa File: a58be878-74a8-4e7a-b5ae-92e8986f5567.roa (raw, json) Hash identifier: /6OH3p5nsLzLcsonQ/Kt9onLjIav39QPpYYKAwJGWxE= Subject key identifier: A7:96:01:0B:BF:FF:61:B1:AD:F6:66:A2:79:D6:4D:8C:6C:71:48:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 682DA882CC7462F34538C53E7FAA6E9661AF920A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa Signing time: Tue 12 Aug 2025 00:31:40 +0000 ROA not before: Tue 12 Aug 2025 00:31:40 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.54.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:2d:a8:82:cc:74:62:f3:45:38:c5:3e:7f:aa:6e:96:61:af:92:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:31:40 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=99b40aa9a92a6ec2a7ea1c15d55cbfdd994be38500edf1c6bdcb8cd8d0940d84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f2:1a:72:87:36:f1:a2:3d:6b:5f:68:8b:c0: fe:21:25:3c:62:36:cc:20:3f:1b:b4:f6:52:b8:06: 2e:3a:a6:e8:4a:71:14:4a:d5:11:52:70:bc:fe:e9: be:f3:d0:19:58:17:61:2c:1f:e5:ef:c9:9f:b6:7e: 41:d0:3e:e7:90:7f:51:64:30:60:a7:10:68:b5:70: 33:2f:e6:39:12:2b:74:34:0a:3e:91:aa:09:02:b7: 2e:08:6b:8c:a7:6e:46:17:fd:bd:e2:e6:7e:5f:99: e4:c5:fc:24:ca:11:63:cd:59:65:29:50:c9:c5:1b: 45:fc:b2:9c:90:ff:1f:63:5a:96:9e:57:86:47:f1: d2:3c:28:e9:4a:9e:2f:a8:3a:b7:17:5b:8d:2c:e7: 95:35:3c:2a:fd:00:b1:d3:48:9a:8f:96:e1:bb:87: d3:30:ee:7d:1b:84:fc:0c:d2:c1:a7:28:ff:7a:28: f6:b0:54:58:77:77:67:08:1c:74:b3:dd:1c:ff:1e: b9:c0:9a:88:f8:c2:99:cb:19:79:37:17:b1:93:f6: 0b:51:3e:9f:6b:4a:43:78:37:0c:43:26:f1:a7:4e: 98:44:a6:6f:24:e6:07:6d:b4:f8:7b:f8:d6:20:f9: 43:eb:21:ca:b0:55:ce:f2:ec:88:4a:78:62:f3:75: 09:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:96:01:0B:BF:FF:61:B1:AD:F6:66:A2:79:D6:4D:8C:6C:71:48:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58be878-74a8-4e7a-b5ae-92e8986f5567.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.54.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:44:d2:7e:20:ac:c2:2b:55:6c:52:bc:37:f9:ef:5a:ec:8f: 47:cb:df:31:1e:ad:47:94:c7:1d:4f:2b:28:e1:bd:e8:2d:8e: 9e:df:d3:f4:31:a0:d8:f9:48:01:45:77:25:8c:c8:ec:b6:3f: 9e:8d:63:f8:e3:a5:c7:9f:87:ab:95:8e:56:74:7a:cb:b8:9a: a6:f0:f1:07:0f:03:16:70:ff:3e:bd:04:0e:6c:ea:cc:de:37: f6:05:84:a9:f0:20:0d:8a:8c:f2:82:e5:e5:c8:07:fe:77:99: 76:c6:41:c0:73:4c:dc:3e:39:e2:ee:f5:03:23:b7:f9:e5:3b: fc:e7:a2:79:53:f8:ad:fa:b1:42:36:17:38:a5:93:46:67:89: a2:2d:78:60:8f:ec:dc:75:b6:91:3a:6d:5d:a6:20:fe:75:6d: a2:84:ef:08:93:06:33:25:1f:b2:92:d1:1e:60:a8:e8:4e:70: a4:02:c8:b7:2c:53:19:7e:17:43:df:bb:e8:19:70:c6:c7:4d: 89:e3:84:0b:d2:6f:1f:3e:4f:6d:f8:3d:90:f7:bc:25:0d:e8: e8:20:cc:cd:ff:33:49:b8:48:bc:2f:c1:5b:89:4b:52:7b:c1: a7:df:49:8c:e9:97:1a:79:01:1f:57:6f:4c:5d:5c:4e:38:9c: bd:5e:af:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaC2ogsx0YvNFOMU+f6pulmGvkgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMTQwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWI0MGFhOWE5MmE2ZWMyYTdlYTFjMTVkNTVjYmZkZDk5 NGJlMzg1MDBlZGYxYzZiZGNiOGNkOGQwOTQwZDg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO8hpyhzbxoj1rX2iLwP4hJTxiNswgPxu09lK4Bi46puhK cRRK1RFScLz+6b7z0BlYF2EsH+XvyZ+2fkHQPueQf1FkMGCnEGi1cDMv5jkSK3Q0 Cj6RqgkCty4Ia4ynbkYX/b3i5n5fmeTF/CTKEWPNWWUpUMnFG0X8spyQ/x9jWpae V4ZH8dI8KOlKni+oOrcXW40s55U1PCr9ALHTSJqPluG7h9Mw7n0bhPwM0sGnKP96 KPawVFh3d2cIHHSz3Rz/HrnAmoj4wpnLGXk3F7GT9gtRPp9rSkN4NwxDJvGnTphE pm8k5gdttPh7+NYg+UPrIcqwVc7y7IhKeGLzdQl1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUp5YBC7//YbGt9maiedZNjGxxSIUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1OGJlODc4LTc0YTgtNGU3YS1iNWFlLTkyZTg5ODZmNTU2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NjANBgkqhkiG9w0BAQsFAAOCAQEAMUTSfiCswitVbFK8N/nvWuyPR8vf MR6tR5THHU8rKOG96C2Ont/T9DGg2PlIAUV3JYzI7LY/no1j+OOlx5+Hq5WOVnR6 y7iapvDxBw8DFnD/Pr0EDmzqzN439gWEqfAgDYqM8oLl5cgH/neZdsZBwHNM3D45 4u71AyO3+eU7/OeieVP4rfqxQjYXOKWTRmeJoi14YI/s3HW2kTptXaYg/nVtooTv CJMGMyUfspLRHmCo6E5wpALItyxTGX4XQ9+76BlwxsdNieOEC9JvHz5Pbfg9kPe8 JQ3o6CDMzf8zSbhIvC/BW4lLUnvBp99JjOmXGnkBH1dvTF1cTjicvV6v2g== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:21 2025 by rpki-client