$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa File: 70571ce4-58f3-4cc6-b162-737a20af972d.roa (raw, json) Hash identifier: Z6Wr+wARYqwXpXQAxDpojwrm9jgGiBOpatGxz8p27Dw= Subject key identifier: E0:12:4F:6F:A1:64:EE:E4:B6:BE:35:0C:17:8B:AB:F8:66:1C:94:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B9BC103160B007C14672D9E5C4C9CF125A563D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa Signing time: Sat 03 May 2025 00:42:15 +0000 ROA not before: Sat 03 May 2025 00:42:15 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.251.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b9:bc:10:31:60:b0:07:c1:46:72:d9:e5:c4:c9:cf:12:5a:56:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:42:15 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=32b1d329a251f6e3c7aed07a55ad3b62f503fd4d2f00d53750699e404bc0fbc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:c3:64:2d:c2:b6:01:23:b8:b6:25:c2:fb: ed:a2:77:cb:e4:ed:45:25:dc:d6:6a:a2:84:2e:1a: f3:46:a3:6b:8a:94:39:e7:35:b9:9c:56:36:62:17: 03:bc:ee:34:9d:1e:60:56:3e:dd:43:70:0c:46:d5: 37:c0:ac:24:6e:4f:d5:c0:39:23:6c:6e:68:46:e8: 4e:24:11:17:bd:11:11:65:20:6d:b1:96:88:6b:a7: d5:a4:a9:ce:77:93:85:0c:ed:19:c1:93:24:da:1f: 4e:ae:ac:69:94:cf:9e:47:d5:22:5d:4b:eb:dc:b8: 6f:d6:6c:c6:83:53:f4:b6:80:d9:6a:95:71:20:73: 17:33:82:5e:98:ee:d3:dd:58:23:5d:6c:cd:34:4e: 8a:4f:e8:21:75:88:a9:3b:3e:73:71:b5:b9:f7:16: 46:c0:fd:f9:6c:05:42:b7:71:5d:5b:69:db:22:d7: 95:e7:77:08:96:89:87:24:3c:03:91:9e:e2:5d:2b: b3:08:eb:23:b8:34:fe:82:6f:20:2c:e0:2a:26:fa: 15:06:8d:e8:6a:3f:84:41:e4:fa:84:64:a0:47:0d: 46:a6:09:8c:d4:4f:e3:c5:40:22:13:92:69:c6:e0: 84:9b:6b:97:c6:73:12:af:07:97:33:97:ad:7a:7e: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:12:4F:6F:A1:64:EE:E4:B6:BE:35:0C:17:8B:AB:F8:66:1C:94:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.251.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6b:5e:5c:65:fb:5a:e3:15:29:bb:4f:64:7a:87:ce:f0:eb:0f: 3c:8d:c4:06:5f:fd:c4:da:e9:c9:4b:8f:5b:d2:d4:79:c2:57: d5:22:d4:ce:c4:b8:9b:a0:b2:75:8f:52:d2:8f:19:a0:5d:3d: 94:48:e9:4a:df:96:2a:a8:81:88:f6:8c:34:5d:a0:58:77:7a: ef:cb:ca:6d:f9:0b:bf:2a:57:e7:4c:18:e4:4c:e8:50:1b:79: e1:34:0f:af:fe:9f:2f:4e:74:2b:fa:d1:39:3c:71:24:ed:a4: ef:da:20:f8:3e:e5:fa:d2:7c:a5:0f:4b:b7:a6:ec:3c:63:51: 6f:59:99:33:2a:14:e2:d9:1a:d5:ee:a4:e7:85:f6:13:97:21: e7:c7:2d:43:0d:ea:43:34:dc:c9:28:a5:4b:b5:8b:1a:13:53: 18:38:19:dc:f7:94:f8:c0:70:00:ae:92:ed:5a:b3:fc:3a:f6: c8:8d:00:28:7f:a8:68:73:9a:4f:b0:af:29:f9:a0:4d:a0:36: f0:6f:12:1a:a3:25:db:4b:09:01:66:e1:e2:11:a1:05:1b:75: bd:3f:76:f0:03:54:72:ee:af:ba:6b:c8:83:52:2d:1d:65:61: 92:60:32:8f:e0:ca:00:84:33:75:ef:34:72:b0:4f:34:08:2b: 01:b5:44:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV7m8EDFgsAfBRnLZ5cTJzxJaVj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MjE1WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmIxZDMyOWEyNTFmNmUzYzdhZWQwN2E1NWFkM2I2MmY1 MDNmZDRkMmYwMGQ1Mzc1MDY5OWU0MDRiYzBmYmM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxzsNkLcK2ASO4tiXC++2id8vk7UUl3NZqooQuGvNGo2uK lDnnNbmcVjZiFwO87jSdHmBWPt1DcAxG1TfArCRuT9XAOSNsbmhG6E4kERe9ERFl IG2xlohrp9Wkqc53k4UM7RnBkyTaH06urGmUz55H1SJdS+vcuG/WbMaDU/S2gNlq lXEgcxczgl6Y7tPdWCNdbM00TopP6CF1iKk7PnNxtbn3FkbA/flsBUK3cV1badsi 15XndwiWiYckPAORnuJdK7MI6yO4NP6CbyAs4Com+hUGjehqP4RB5PqEZKBHDUam CYzUT+PFQCITkmnG4ISba5fGcxKvB5czl616fqSxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4BJPb6Fk7uS2vjUMF4ur+GYclOwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwNTcxY2U0LTU4ZjMtNGNjNi1iMTYyLTczN2EyMGFmOTcyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG+0AwDQYJKoZIhvcNAQELBQADggEBAGteXGX7WuMVKbtPZHqHzvDrDzyN xAZf/cTa6clLj1vS1HnCV9Ui1M7EuJugsnWPUtKPGaBdPZRI6UrfliqogYj2jDRd oFh3eu/Lym35C78qV+dMGORM6FAbeeE0D6/+ny9OdCv60Tk8cSTtpO/aIPg+5frS fKUPS7em7DxjUW9ZmTMqFOLZGtXupOeF9hOXIefHLUMN6kM03MkopUu1ixoTUxg4 Gdz3lPjAcACuku1as/w69siNACh/qGhzmk+wryn5oE2gNvBvEhqjJdtLCQFm4eIR oQUbdb0/dvADVHLur7pryINSLR1lYZJgMo/gygCEM3XvNHKwTzQIKwG1RC0= -----END CERTIFICATE-----Generated at Tue May 13 10:35:44 2025 by rpki-client