$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eace1732-85ce-441d-b72a-18865e45354f.roa File: eace1732-85ce-441d-b72a-18865e45354f.roa (raw, json) Hash identifier: fX0Mzn5waMJDhgFCpT7dD7zzfhKD5GX3A1BQlqLJ774= Subject key identifier: 8F:07:0F:85:38:BA:67:F1:D3:15:5A:9E:3E:51:3C:0E:32:D3:C9:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 267AEAE8D32F633F2D53C78FF2E807566D493EA3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eace1732-85ce-441d-b72a-18865e45354f.roa Signing time: Tue 12 Aug 2025 00:31:30 +0000 ROA not before: Tue 12 Aug 2025 00:31:30 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.33.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:7a:ea:e8:d3:2f:63:3f:2d:53:c7:8f:f2:e8:07:56:6d:49:3e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:31:30 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=017fe3905dbc3f78597b2bf610fdb9e65993bc3609465a107cb8dc179b754d53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:87:ef:77:ba:71:f6:a4:5c:2b:14:99:28: a0:28:0d:74:48:53:6c:62:bc:b6:03:e5:84:2a:0e: aa:da:07:48:ce:2d:6a:d1:c7:f3:a3:55:2a:95:a7: 26:db:ef:e6:80:b9:6e:f6:46:b8:cc:b4:05:e2:3c: f8:11:ad:5d:85:e2:51:dd:65:f5:b3:95:7f:47:64: 42:bb:5b:1e:f5:0a:7a:9b:a1:1c:89:14:29:04:a5: 5a:6b:9c:11:e5:16:0c:c7:05:07:7d:9e:68:9b:9b: b3:17:25:d4:43:6a:80:2e:75:77:cc:9a:dd:f2:85: e4:92:48:ad:94:39:9f:10:1b:55:61:ab:f8:67:e4: 00:67:d0:3c:f2:b1:67:2e:99:0b:2c:3b:28:7f:21: 53:ad:cb:0b:14:75:3f:b9:08:07:85:29:b1:0c:56: 4d:13:17:44:ab:71:4b:60:5f:d4:5c:08:4a:19:52: 88:32:f7:ce:c9:78:cb:9b:c4:f4:1f:c7:af:9a:96: a8:58:72:52:18:e1:a3:c9:cd:0d:8f:60:a2:8e:dc: 59:ee:0c:d0:09:d0:5b:ed:90:bc:a1:9f:b0:91:7f: f2:e2:e2:a1:fa:1b:a1:5d:43:98:51:07:b1:e2:56: 71:43:eb:c9:97:64:99:a8:80:b2:13:45:0a:36:12: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:07:0F:85:38:BA:67:F1:D3:15:5A:9E:3E:51:3C:0E:32:D3:C9:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eace1732-85ce-441d-b72a-18865e45354f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.33.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:fd:38:05:bc:b8:52:d8:a6:dd:2b:b2:f0:1b:00:f7:87:44: 03:4c:e7:7c:96:20:e4:bf:1b:8f:bc:ef:4d:bf:12:0e:9f:8c: 51:75:41:bf:32:a5:10:d5:6f:49:0e:63:73:9f:9e:bf:76:4a: 69:91:82:ed:c8:f9:91:29:ed:1b:4a:31:04:3b:cb:4a:58:f6: 50:d1:4c:61:6c:92:8a:53:09:0f:6c:88:e3:f2:b7:aa:dd:7c: 1e:d6:c8:fd:40:8c:5e:5c:cc:b0:a7:4e:3d:e7:37:09:e8:ff: 49:05:5e:10:14:b4:b5:f6:a4:a6:7c:b1:2b:a5:e1:e9:35:ea: 7c:31:9b:39:0e:f3:61:d5:a0:47:2b:f1:47:7d:bf:ce:7d:74: c4:87:0d:2e:0c:c8:f4:f4:be:ba:60:37:a1:9d:bc:ac:c7:cd: d6:1c:2b:e6:f3:09:1a:14:66:cc:e0:e9:e7:eb:82:56:cf:38: a6:b7:9d:c7:a0:7a:9b:34:e2:3c:27:1c:4b:66:da:74:1e:6d: c5:30:28:6d:5b:b8:fc:e8:e5:db:50:04:57:21:df:f8:36:1e: 81:9f:7a:86:db:14:67:ad:66:09:b8:5d:a9:47:02:4a:15:df: 9e:fe:21:67:c1:8d:20:71:61:b9:84:c4:ae:26:ac:40:eb:12: 6e:55:a5:e4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJnrq6NMvYz8tU8eP8ugHVm1JPqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMTMwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTdmZTM5MDVkYmMzZjc4NTk3YjJiZjYxMGZkYjllNjU5 OTNiYzM2MDk0NjVhMTA3Y2I4ZGMxNzliNzU0ZDUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Q4fvd7px9qRcKxSZKKAoDXRIU2xivLYD5YQqDqraB0jO LWrRx/OjVSqVpybb7+aAuW72RrjMtAXiPPgRrV2F4lHdZfWzlX9HZEK7Wx71Cnqb oRyJFCkEpVprnBHlFgzHBQd9nmibm7MXJdRDaoAudXfMmt3yheSSSK2UOZ8QG1Vh q/hn5ABn0DzysWcumQssOyh/IVOtywsUdT+5CAeFKbEMVk0TF0SrcUtgX9RcCEoZ Uogy987JeMubxPQfx6+alqhYclIY4aPJzQ2PYKKO3FnuDNAJ0FvtkLyhn7CRf/Li 4qH6G6FdQ5hRB7HiVnFD68mXZJmogLITRQo2EiTlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjwcPhTi6Z/HTFVqePlE8DjLTyecwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhY2UxNzMyLTg1Y2UtNDQxZC1iNzJhLTE4ODY1ZTQ1MzU0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ITANBgkqhkiG9w0BAQsFAAOCAQEAef04Bby4Utim3Suy8BsA94dEA0zn fJYg5L8bj7zvTb8SDp+MUXVBvzKlENVvSQ5jc5+ev3ZKaZGC7cj5kSntG0oxBDvL Slj2UNFMYWySilMJD2yI4/K3qt18HtbI/UCMXlzMsKdOPec3Cej/SQVeEBS0tfak pnyxK6Xh6TXqfDGbOQ7zYdWgRyvxR32/zn10xIcNLgzI9PS+umA3oZ28rMfN1hwr 5vMJGhRmzODp5+uCVs84predx6B6mzTiPCccS2badB5txTAobVu4/Ojl21AEVyHf +DYegZ96htsUZ61mCbhdqUcCShXfnv4hZ8GNIHFhuYTEriasQOsSblWl5A== -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:33 2025 by rpki-client