$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa File: b50e29db-8ea8-465e-b77b-6bb4903e7932.roa (raw, json) Hash identifier: /1RNwsQcHCKPJStYo434E3vh0W19BrJfcwYPrIGCPbs= Subject key identifier: 1F:8A:8C:56:30:A3:8F:DE:9E:15:D8:9C:09:B0:4D:9A:6D:89:5C:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2391F18736F03E763D1050EC919212DDBD128DCA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa Signing time: Sat 30 Aug 2025 00:32:02 +0000 ROA not before: Sat 30 Aug 2025 00:32:02 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:91:f1:87:36:f0:3e:76:3d:10:50:ec:91:92:12:dd:bd:12:8d:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:32:02 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=120311d97e52baad5ae54f75a72a30455bcba1f44010d744b582b2c1d86e9af5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:ed:13:67:1e:74:a7:1d:13:20:15:8f:fd: 6e:ed:fa:db:9a:09:d5:00:34:5a:02:d8:7e:7a:d4: 1b:b5:6a:e4:26:47:b0:e0:f6:02:71:b6:99:0c:03: 18:69:39:2b:e7:f7:15:bd:11:7e:dd:ef:ae:27:37: 70:5f:d1:70:88:77:2e:d9:5d:d1:6a:1d:59:f0:77: ed:6a:d1:65:de:48:7d:0e:99:2c:70:cf:93:1b:e8: a5:23:ed:82:7d:e4:66:1e:61:88:6f:56:2e:6c:72: 41:95:1b:db:02:89:52:82:22:d6:9e:a9:bb:3e:93: 03:39:9f:54:11:94:1d:e9:19:7f:1f:f0:22:ca:81: bf:ca:b0:81:0d:c2:30:c4:b3:12:4d:a4:13:08:5b: 9a:0b:98:b1:0a:f7:14:f3:e2:22:82:86:43:97:36: 1f:99:2d:e6:bd:e0:f9:c0:3b:57:07:ae:44:f7:68: 57:39:f1:70:fa:24:d8:3d:ff:f7:df:e7:a2:0d:32: e2:9a:be:9d:1b:78:2c:55:d3:b1:8d:50:4a:ff:54: 46:c7:ca:84:03:9e:38:3f:a5:c7:36:29:b1:02:10: ff:14:f9:c3:5a:44:9d:2f:63:de:fc:65:dc:4a:8a: 58:0e:61:0b:3d:9a:de:c8:19:b6:29:31:04:08:3f: 36:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8A:8C:56:30:A3:8F:DE:9E:15:D8:9C:09:B0:4D:9A:6D:89:5C:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b50e29db-8ea8-465e-b77b-6bb4903e7932.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:56:78:17:96:95:d8:ea:1e:ca:17:e3:5f:77:ab:b2:5b:4f: fc:46:b4:18:00:8b:ce:0b:2a:a6:32:84:d3:28:ea:d9:03:6f: bf:b0:97:65:89:52:c2:7b:b9:45:03:23:9a:2c:a4:23:72:06: 82:20:0e:72:fb:a0:40:44:8a:15:a4:2e:0f:7f:62:1b:a6:ae: cc:d2:2e:d2:32:50:87:00:d9:76:2e:92:48:d3:7a:f8:57:ad: c3:4e:8c:20:35:19:61:72:b2:47:dc:a1:d7:05:43:e0:8d:eb: 18:1a:a0:c3:10:1c:69:4c:4b:21:2c:71:1d:86:66:23:c5:dd: b7:42:e2:0b:84:94:5c:9d:0d:dd:e7:6c:a8:a6:7b:92:8e:6f: ef:bd:22:c9:cf:43:0f:e9:e4:d7:65:98:6c:2c:96:94:0c:e8: c8:92:cc:e7:d4:1c:98:e0:68:ed:77:e8:fa:8d:48:c6:5f:d9: 45:92:5a:13:82:b2:20:76:e1:c9:54:f0:9c:a9:1e:f4:4b:07: ba:00:90:79:8f:e1:28:d6:a0:f4:a8:61:ea:ff:13:60:79:e4: eb:07:8e:ea:1a:c6:01:31:d0:7e:1e:dd:e1:58:75:f4:21:bd: 63:d4:7f:35:5c:8f:29:f6:f0:a7:a1:64:c5:b2:52:9b:88:e7: d7:22:b5:56 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI5HxhzbwPnY9EFDskZIS3b0SjcowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAzMjAyWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjAzMTFkOTdlNTJiYWFkNWFlNTRmNzVhNzJhMzA0NTVi Y2JhMWY0NDAxMGQ3NDRiNTgyYjJjMWQ4NmU5YWY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsre0TZx50px0TIBWP/W7t+tuaCdUANFoC2H561Bu1auQm R7Dg9gJxtpkMAxhpOSvn9xW9EX7d764nN3Bf0XCIdy7ZXdFqHVnwd+1q0WXeSH0O mSxwz5Mb6KUj7YJ95GYeYYhvVi5sckGVG9sCiVKCItaeqbs+kwM5n1QRlB3pGX8f 8CLKgb/KsIENwjDEsxJNpBMIW5oLmLEK9xTz4iKChkOXNh+ZLea94PnAO1cHrkT3 aFc58XD6JNg9//ff56INMuKavp0beCxV07GNUEr/VEbHyoQDnjg/pcc2KbECEP8U +cNaRJ0vY978ZdxKilgOYQs9mt7IGbYpMQQIPzZlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUH4qMVjCjj96eFdicCbBNmm2JXD0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1MGUyOWRiLThlYTgtNDY1ZS1iNzdiLTZiYjQ5MDNlNzkzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41zANBgkqhkiG9w0BAQsFAAOCAQEAGFZ4F5aV2OoeyhfjX3ersltP/Ea0 GACLzgsqpjKE0yjq2QNvv7CXZYlSwnu5RQMjmiykI3IGgiAOcvugQESKFaQuD39i G6auzNIu0jJQhwDZdi6SSNN6+Fetw06MIDUZYXKyR9yh1wVD4I3rGBqgwxAcaUxL ISxxHYZmI8Xdt0LiC4SUXJ0N3edsqKZ7ko5v770iyc9DD+nk12WYbCyWlAzoyJLM 59QcmOBo7Xfo+o1Ixl/ZRZJaE4KyIHbhyVTwnKke9EsHugCQeY/hKNag9Khh6v8T YHnk6weO6hrGATHQfh7d4Vh19CG9Y9R/NVyPKfbwp6FkxbJSm4jn1yK1Vg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:02 2025 by rpki-client